Concerns Over Cryptocurrency Security in a Post-Quantum World
Recent findings indicate that a popular mechanism utilized by cryptocurrency exchanges to create deposit addresses while keeping private keys secure might be compromised if blockchains transition to post-quantum cryptography. Major exchanges like Coinbase and Binance currently depend on a method known as hierarchical deterministic wallets, defined in Bitcoin Improvement Proposal 32 (BIP32). This system enables exchanges to generate unique deposit addresses from a public key stored on their servers, while keeping the crucial private signing key safely offline in cold storage.
The Importance of BIP32 for Custodial Platforms
This design is essential for the functioning of custodial crypto platforms as it allows them to create addresses for users on demand without placing the keys that manage customer assets at risk. However, researchers from Project Eleven have raised concerns about the viability of this structure under several upcoming post-quantum signature methodologies, particularly the ML-DSA standard endorsed by the U.S. National Institute of Standards and Technology as part of its efforts to develop resistant security protocols against quantum computing.
Project Eleven’s Mission and Insights
Founded in 2024 and supported by notable investors including Castle Island Ventures and Coinbase Ventures, Project Eleven aims to develop solutions for transitioning financial and blockchain systems to quantum-resistant security measures. Conor Deegan, the Chief Technology Officer and co-founder of the firm, stressed that if Bitcoin were to adopt ML-DSA without additional protective frameworks, the ability to perform non-hardened derivation could be lost. He explained that this would hinder systems from generating new receiving addresses solely based on a public key.
Challenges of Post-Quantum Key Derivation
In such a scenario, each derived child key would involve the private key, which complicates the process. While there are alternatives like hardware security modules and air-gapped tools that can handle these operations, they introduce additional complexity and operational challenges. Deegan pointed out that the straightforward approach provided by BIP32, which keeps the public key on an online server and the private key offline, would no longer be possible.
Innovative Solutions from Project Eleven
Earlier this month, Project Eleven made its insights available through the IACR research archive and unveiled a prototype wallet that aims to preserve this essential functionality with quantum-safe methodologies. Their new design aims to replicate a fundamental BIP32 feature, non-hardened key derivation, allowing for the derivation of new public keys without revealing private keys, even in a post-quantum landscape. This implementation specifically addresses wallet-level operations, meaning that blockchains would only need to accommodate the foundational signature system of the wallet.
Future Implications for Bitcoin and Ethereum
Currently, Bitcoin does not support ML-DSA or the proposed framework from Project Eleven’s prototype, signifying that an upgrade to the protocol would be necessary to adopt such innovations on its network. Conversely, Deegan noted that similar wallet functionalities might already be executed on Ethereum through account abstraction, catering to more adaptable signature logic without necessitating changes at the protocol level.
