Stellar unveils 3-stage quantum defense plan as Q-Day threat nears 2029

Stellar's account architecture gives it a structural edge over Bitcoin and Ethereum in the race to quantum-safe cryptography.

The Stellar Development Foundation on Tuesday unveiled a three-stage Quantum Preparedness Plan to migrate the network to post-quantum cryptography, citing an accelerating threat timeline that now targets 2029 as the year quantum computers could break elliptic curve security.

"Quantum computers will eventually break the elliptic curve cryptography that secures nearly every blockchain, including Stellar," Nicolas Barry, a contributor at the Stellar Development Foundation, said in a blog post. "This is not speculative — it is a mathematical certainty given a sufficiently powerful quantum computer."

The plan exploits a structural advantage unique to Stellar: account identity (the G... address) is separated from signing keys, meaning users can swap in quantum-safe cryptography without changing their address or migrating their balance. On Bitcoin and Ethereum, rotating keys typically requires moving assets to a new account. Stellar's existing set_options operation lets accounts add a quantum-safe signer and remove the legacy Ed25519 key while keeping the same address and transaction history.

The roadmap unfolds in three stages. In 2026, post-quantum signature verification using NIST-standard ML-DSA-44 and ML-DSA-65 will be added to Soroban, Stellar's smart contract layer, allowing enterprise wallets to begin migrating immediately. In 2027, a Core Advancement Proposal will introduce quantum-safe signer types as first-class options on every classic account. The third stage — fully deprecating Ed25519 — has no fixed date and will be determined by quantum computing progress and community readiness.

Recent research has compressed the timeline. In early 2026, INRIA researchers showed that breaking 256-bit elliptic curves requires only 1,193 logical qubits — a 44% reduction from prior estimates. The National Institute of Standards and Technology, which previously placed the danger zone at 2030 and beyond, has updated its guidance to 2029. Google has set 2029 as its internal deadline for post-quantum readiness across its systems.

Stellar faces two distinct threats: attackers forging validator signatures to compromise the network's consensus mechanism, and the ability to derive private keys from public ones, enabling account takeover. The latter is the harder problem and the primary focus of the QPP, the foundation said. Unlike Bitcoin and Ethereum, where addresses are hashes of public keys and only become exposed after first use, Stellar's G... addresses directly encode the Ed25519 public key, making every account — including dormant ones — a target.

One unresolved challenge involves dormant accounts whose holders are unreachable. Any hard cutoff would effectively freeze those accounts, and the foundation said that decision will require open community discussion rather than a top-down resolution. Stellar supports seed-based recovery mechanisms that could provide a path for reactivation.

The broader industry is moving in parallel. Bitcoin developers are considering BIP-360, Ethereum developers have formed a post-quantum team and drafted an emergency hard fork plan, and Algorand has deployed Falcon-based state proofs. Regulatory frameworks including CNSA 2.0 in the US and DORA in the EU are recommending post-quantum migration timelines for financial infrastructure.

The QPP does not yet address pairing-based zero-knowledge protocols built on Stellar, which rely on curves such as BN254 and BLS12-381 that Shor's algorithm also breaks. The foundation said it will convene ZK protocol teams to develop a shared research agenda, noting that unlike signature schemes, there is no drop-in post-quantum replacement for pairing-based SNARKs with comparable performance.

XLM, the Stellar network's native token, traded at $0.196 as of Tuesday, down nearly 12% over the past week amid a broader crypto market rout but up about 15% over the last 30 days.

This article is for informational purposes only and does not constitute investment advice.