Falcon-512 Demo
Post-Quantum Signatures on Starknet
Verify Falcon signatures with production Cairo metrics and account abstraction deployment flows on Starknet Sepolia testnet.
- Steps
- 63K
- Calldata felts
- 62
- Storage slots
- 29
Why Post-Quantum?
Quantum Threat
Shor's algorithm on a cryptographically-relevant quantum computer breaks ECDSA. Every Ethereum and Starknet wallet using ECDSA becomes vulnerable.
Account Abstraction
Starknet's native account abstraction lets wallets upgrade their signature verification logic without changing addresses. No hard fork needed.
Falcon-512
NIST-standardized lattice-based signature scheme. 666-byte signatures, 896-byte public keys. Based on NTRU lattices with tight security proofs.
Hint-Based Verification
Off-chain signer provides a precomputed hint, reducing on-chain work from 4 NTTs to 2 NTTs. Cuts verification cost by ~50%.
Performance Stats
| Operation | Steps | L2 Gas |
|---|---|---|
| verify | 63,177 | ~13.2M L2 |
| verify_with_msg_point | 26,301 | ~5.5M L2 |
| hash_to_point | 5,988 | ~1.3M L2 |
| NTT-512 | ~15,000 | ~3.1M L2 |
Calldata Efficiency
Packing reduces calldata by 17x, from about 1,030 felts to 62 felts.