Circle, the primary issuer of the USDC stablecoin, has unveiled a long-term roadmap aimed at preparing USDC and its broader blockchain infrastructure for the eventual arrival of quantum computers capable of breaking today’s public-key cryptography.
In a newly published post-quantum security whitepaper on Friday, the company detailed how it plans to upgrade its systems, blockchain products, and stablecoin ecosystem to address future cryptographic risks. The initiative spans Circle’s upcoming Arc blockchain, USDC smart contracts, validator infrastructure, wallets, and internal systems.
The roadmap centers on a phased migration strategy that would allow Circle to gradually transition from existing cryptographic standards while maintaining compatibility with current blockchain networks.
Why quantum computing matters for USDC
Most blockchain networks today rely on elliptic curve cryptography (ECC), including standards such as ECDSA, Ed25519, and BLS signatures. Circle said sufficiently advanced quantum computers running Shor’s algorithm could eventually derive private keys from public keys, undermining the security assumptions that support modern blockchains.
Unlike conventional cybersecurity threats that emerge gradually, the company described quantum computing as a potential “cliff event” in which exposed public keys could become vulnerable once cryptographically relevant quantum computers are developed.
For Circle, the issue extends beyond a single blockchain. As the issuer of USDC across more than 30 networks and the developer of Arc, the company said quantum readiness will require coordinated changes across smart contracts, custody systems, validators, infrastructure providers, and wallet technologies.
Three-stage migration plan
Circle’s roadmap is divided into three phases: readiness, transition, and full migration.
The first phase focuses on identifying systems that depend on quantum-vulnerable cryptography, strengthening infrastructure, and protecting sensitive information from so-called “harvest now, decrypt later” attacks, where encrypted data is collected today and decrypted in the future.
The second phase introduces hybrid operations. Existing cryptographic systems would continue functioning alongside post-quantum alternatives, allowing users, developers, and infrastructure providers to migrate gradually without disrupting existing blockchain activity.
The final phase envisions a complete shift toward post-quantum security. At that stage, classical signature schemes could be retired, vulnerable systems phased out, and non-migrated accounts potentially restricted to protect user assets.
Circle emphasized that the timeline for these steps will depend on technological readiness, ecosystem adoption, and evolving standards.
Arc Blockchain to launch with quantum-resistant features
As part of the roadmap, Arc is expected to incorporate several post-quantum security measures from launch. These include native support for verifying SLH-DSA signatures, a hash-based signature standard designed to remain secure against quantum attacks. Arc will also support post-quantum encrypted communications using technologies such as HPKE and X-Wing.
The blockchain’s privacy architecture will rely on trusted execution environments (TEEs), including AWS Nitro Enclaves, to process encrypted transactions and protect transaction data, balances, and smart contract execution details.
According to the whitepaper, these features are intended to provide immediate protection against future decryption risks while broader blockchain ecosystems continue evaluating post-quantum standards.
USDC contracts planned for gradual upgrade
Circle said existing USDC smart contracts that support upgrades will eventually be modified to accept both traditional and post-quantum signatures.
This dual-signature approach would allow users to migrate over time while preserving compatibility with existing blockchain infrastructure. Once adoption reaches sufficient levels, support for older signature schemes could be disabled without requiring another contract redesign.
The company also addressed a major challenge facing the wider blockchain industry: Ethereum’s widely used “ecrecover” function, which relies on ECDSA signatures. Because many deployed smart contracts are immutable, Circle argues that protocol-level solutions may be necessary to preserve compatibility while introducing post-quantum cryptography.
Protecting wallets and user assets
The roadmap outlines several approaches to account security during the transition period. These include account abstraction frameworks that allow smart accounts to verify post-quantum signatures, key-rotation mechanisms that reduce exposure of public keys, and wallet systems capable of generating both traditional and post-quantum credentials from a single recovery phrase.
Circle also proposed public-key registries that would allow users to associate blockchain addresses with post-quantum keys before quantum computers become a practical threat. The company said these measures are intended to reduce disruption while preserving access to user assets throughout the migration process.
Recovery plans for non-migrated accounts
A notable feature of the roadmap is its focus on asset recovery. Circle argues that users who fail to migrate their accounts should not automatically lose ownership of their digital assets. Instead, the company proposes recovery frameworks that could allow ownership claims through cryptographic proofs, seed phrase verification, trusted execution environments, exchange records, legal documentation, or court orders.
The whitepaper also calls for regulatory guidance on issues such as recovery timelines, ownership verification standards, abandoned assets, and custody obligations.
Focus extends beyond cryptography
While the roadmap centers on replacing vulnerable cryptographic systems, Circle describes the challenge as broader than a software upgrade.
The company said post-quantum readiness will require changes across cloud infrastructure, hardware security modules, validator operations, consensus systems, key management processes, and third-party service providers.
Circle also highlighted long-term concerns around blockchain history protection, noting that compromised validator keys could potentially be used to forge historical records on proof-of-stake networks. To address this risk, the roadmap proposes validator migration, post-quantum-secured checkpoints, and chain history validation mechanisms.
Long-term transition rather than immediate replacement
Throughout the whitepaper, Circle stresses that quantum computing does not currently represent the most immediate threat facing blockchain systems. The company notes that conventional cybersecurity risks remain more pressing today, while the timeline for practical quantum attacks remains uncertain.
As a result, the roadmap favors gradual migration, hybrid security models, and recovery mechanisms rather than rapid replacement of existing infrastructure.
For Circle, the objective is to prepare USDC, Arc, and supporting systems for a future in which quantum-capable computers may challenge the cryptographic foundations of today’s blockchain networks while minimizing disruption for users and developers.
Also Read: Circle Blocks Zama Confidential USDC Contract Freezing $12.6M in User Funds
