Securing the DNS in a Post-Quantum World: New DNSSEC Algorithms on the Horizon – CircleID
This is the fourth in a multi-part series on cryptography and the Domain Name System (DNS).
One of the "key" questions cryptographers have been asking for the past decade or more is what to do about the potential future development of a large-scale quantum computer.
If theory holds, a quantum computer could break established public-key algorithms including RSA and elliptic curve cryptography (ECC), building on Peter Shor's groundbreaking result from 1994.
This prospect has motivated research into new so-called "post-quantum" algorithms that are less vulnerable to quantum computing advances. These algorithms, once standardized, may well be added into the Domain Name System Security Extensions (DNSSEC) thus also adding another dimension to a cryptographer's perspective on the DNS.
(Caveat: Once again, the concepts I'm discussing in this post are topics we're studying in our long-term research program as we evaluate potential future applications of technology. They do not necessarily represent Verisign's plans or position on possible new products or services.)
The National Institute of Standards and Technology (NIST) started a Post-Quantum Cryptography project in 2016 to "specify one or more additional unclassified, publicly disclosed digital signature, public-key encryption, and key-establishment algorithms that are capable of protecting sensitive government information well into the foreseeable future, including after the advent of quantum computers."
Security protocols that NIST is targeting for these algorithms, according to its 2019 status report (Section 2.2.1), include: "Transport Layer Security (TLS), Secure Shell (SSH), Internet Key Exchange (IKE), Internet Protocol Security (IPsec), and Domain Name System Security Extensions (DNSSEC)."
The project is now in its third round, with seven finalists, including three digital signature algorithms, and eight alternates.
NIST's project timeline anticipates that the draft standards for the new post-quantum algorithms will be available between 2022 and 2024.
It will likely take several additional years for standards bodies such as the Internet Engineering Task (IETF) to incorporate the new algorithms into security protocols. Broad deployments of the upgraded protocols will likely take several years more.
Post-quantum algorithms can therefore be considered a long-term issue, not a near-term one. However, as with other long-term research, it's appropriate to draw attention to factors that need to be taken into account well ahead of time.
The three candidate digital signature algorithms in NIST's third round have one common characteristic: all of them have a key size or signature size (or both) that is much larger than for current algorithms.
Key and signature sizes are important operational considerations for DNSSEC because most of the DNS traffic exchanged with authoritative data servers is sent and received via the User Datagram Protocol (UDP), which has a limited response size.
Response size concerns were evident during the expansion of the root zone signing key (ZSK) from 1024-bit to 2048-bit RSA in 2016, and in the rollover of the root key signing key (KSK) in 2018. In the latter case, although the signature and key sizes didn't change, total response size was still an issue because responses during the rollover sometimes carried as many as four keys rather than the usual two.
Thanks to careful design and implementation, response sizes during these transitions generally stayed within typical UDP limits. Equally important, response sizes also appeared to have stayed within the Maximum Transmission Unit (MTU) of most networks involved, thereby also avoiding the risk of packet fragmentation. (You can check how well your network handles various DNSSEC response sizes with this tool developed by Verisign Labs.)
The larger sizes associated with certain post-quantum algorithms do not appear to be a significant issue either for TLS, according to one benchmarking study, or for public-key infrastructures, according to another report. However, a recently published study of post-quantum algorithms and DNSSEC observes that "DNSSEC is particularly challenging to transition" to the new algorithms.
Verisign Labs offers the following observations about DNSSEC-related queries that may help researchers to model DNSSEC impact:
A typical resolver that implements both DNSSEC validation and qname minimization will send a combination of queries to Verisign's root and top-level domain (TLD) servers.
Because the resolver is a validating resolver, these queries will all have the "DNSSEC OK" bit set, indicating that the resolver wants the DNSSEC signatures on the records.
The content of typical responses by Verisign's root and TLD servers to these queries are given in Table 1 below. (In the table,
For an A or NS query, the typical response, when the domain of interest exists, includes a referral to another name server. If the domain supports DNSSEC, the response also includes a set of Delegation Signer (DS) records providing the hashes of each of the referred zone's KSKs the next link in the DNSSEC trust chain. When the domain of interest doesn't exist, the response includes one or more Next Secure (NSEC) or Next Secure 3 (NSEC3) records.
Researchers can estimate the effect of post-quantum algorithms on response size by replacing the sizes of the various RSA keys and signatures with those for their post-quantum counterparts. As discussed above, it is important to keep in mind that the number of keys returned may be larger during key rollovers.
Most of the queries from qname-minimizing, validating resolvers to the root and TLD name servers will be for A or NS records (the choice depends on the implementation of qname minimization, and has recently trended toward A). The signature size for a post-quantum algorithm, which affects all DNSSEC-related responses, will therefore generally have a much larger impact on average response size than will the key size, which affects only the DNSKEY responses.
Post-quantum algorithms are among the newest developments in cryptography. They add another dimension to a cryptographer's perspective on the DNS because of the possibility that these algorithms, or other variants, may be added to DNSSEC in the long term.
In my next post, I'll make the case for why the oldest post-quantum algorithm, hash-based signatures, could be a particularly good match for DNSSEC. I'll also share the results of some research at Verisign Labs into how the large signature sizes of hash-based signatures could potentially be overcome.
Read the previous posts in this six-part blog series:
The rest is here:
Securing the DNS in a Post-Quantum World: New DNSSEC Algorithms on the Horizon - CircleID
- Quantum Computing Moves Out Of The Lab - RealClearMarkets - May 1st, 2026 [May 1st, 2026]
- Quantum Computing Companies Are in a Race to Go Public - WSJ - April 27th, 2026 [April 27th, 2026]
- Top Quantum Computing Stocks to Buy in April - The Motley Fool - April 27th, 2026 [April 27th, 2026]
- Watch Wall Street Split on Quantum Computing Bet - Bloomberg.com - April 27th, 2026 [April 27th, 2026]
- Fault-Tolerant Quantum Computing with Trapped Ions: The Walking Cat Architecture - IonQ Quantum Computing - April 27th, 2026 [April 27th, 2026]
- Quantum computing gains stability boost from NVIDIA error correction model - Digital Watch Observatory - April 27th, 2026 [April 27th, 2026]
- Global Quantum Computing Market: Growth, Trends, and Future Outlook (2026-2036) - openPR.com - April 27th, 2026 [April 27th, 2026]
- Quantum Computing in Drug Discovery Market to Reach USD 637.83 - openPR.com - April 27th, 2026 [April 27th, 2026]
- Our Quantum Computing Name Faces a Crucial Spot in the Chart - TheStreet Pro - April 27th, 2026 [April 27th, 2026]
- This Quantum Computing Stock Is Up 200% in 2025. Here's 1 Reason That Could Be Just the Beginning. - AOL.com - April 27th, 2026 [April 27th, 2026]
- Quantinuum Has Submitted a Confidential S-1 Filing to the U.S. SEC for a Proposed Initial Public Offering (IPO) of their Common Stock - Quantum... - April 27th, 2026 [April 27th, 2026]
- Quantum Computing Stocks IonQ, Rigetti, and D-Wave Have Soared Up to 72% in 7 Trading Sessions -- and You'll Likely Regret Chasing This Rally - The... - April 25th, 2026 [April 25th, 2026]
- IonQ Publishes Definitive Technical Report, Establishing Its Fault-Tolerant Quantum Computing Trajectory Setting a New Standard for Technical... - April 25th, 2026 [April 25th, 2026]
- Coinbase Advisers Warn Quantum Computing Will Crack Blockchain Encryption -- And The Window to Prepare Is Narrowing - The Quantum Insider - April 25th, 2026 [April 25th, 2026]
- Quantum Computing Stocks IonQ, Rigetti, and D-Wave Have Soared Up to 72% in 7 Trading Sessions -- and You'll Likely Regret Chasing This Rally - Yahoo... - April 25th, 2026 [April 25th, 2026]
- Why the Real Quantum Race is Shifting from Hardware to Software - Quantum Computing Report - April 25th, 2026 [April 25th, 2026]
- Q.ANT Expands to U.S. and Appoints Former IBM Executive as CTO - Quantum Computing Report - April 25th, 2026 [April 25th, 2026]
- Bitcoin Quantum Computing Threat: Is Your Crypto at Risk in 2026? - Intellectia AI - April 25th, 2026 [April 25th, 2026]
- Quantum computing poised to displace classical AI infrastructure, Northland says - Investing.com - April 25th, 2026 [April 25th, 2026]
- "We are a part of this community now": How institutions are preparing for Bitcoin's quantum computing threat - Blockspace Media - April 25th, 2026 [April 25th, 2026]
- Scientists Overcome Major Quantum Bottleneck, Potentially Transforming Teleportation and Computing - SciTechDaily - April 25th, 2026 [April 25th, 2026]
- Phoenix Mayor Kate Gallego highlights new initiative to make Valley a quantum computing hub - KJZZ - April 23rd, 2026 [April 23rd, 2026]
- IonQ vs. Rigetti: Which Quantum Computing Stock Is the Better Buy Ahead of Q1 Earnings? - TipRanks - April 23rd, 2026 [April 23rd, 2026]
- Ripple haunted by spectre of quantum computing and proposes two-year plan for XRP Ledger - dlnews.com - April 23rd, 2026 [April 23rd, 2026]
- Global Quantum Computing Advanced Packaging Market to Reach USD 278.65 Million by 2036 - openPR.com - April 23rd, 2026 [April 23rd, 2026]
- Quantum Computing Inc Announces Deployment-Ready NeuraWave, A Photonic Computing Platform For Real-Time AI Inference At The Edge - marketscreener.com - April 23rd, 2026 [April 23rd, 2026]
- Architectural Blueprints for Fault-Tolerant Trapped-Ion and Neutral-Atom Systems - Quantum Computing Report - April 23rd, 2026 [April 23rd, 2026]
- Why Nvidia Is the Most Important Quantum Computing Stock of All - Yahoo Finance - April 21st, 2026 [April 21st, 2026]
- Senate Commerce Committee Unanimously Passes National Quantum Initiative Reauthorization Act - Quantum Computing Report - April 21st, 2026 [April 21st, 2026]
- Coinbase advisory board says quantum computing threat is on the horizon, crypto needs a plan - CoinDesk - April 21st, 2026 [April 21st, 2026]
- Two paths to scalable quantum computing: Optical links between fridges and higher-temperature qubits - Phys.org - April 21st, 2026 [April 21st, 2026]
- Why Nvidia Is the Most Important Quantum Computing Stock of All - The Motley Fool - April 21st, 2026 [April 21st, 2026]
- Quantum Computing Stock Earnings Breakdown: The Bigger the Loss, the Bigger the Gain? - NAI500 - April 21st, 2026 [April 21st, 2026]
- Kvantify and Equal1 Partner on Quantum Computing Integration - The Quantum Insider - April 21st, 2026 [April 21st, 2026]
- Why Nvidia Is the Most Important Quantum Computing Stock of All - AOL.com - April 21st, 2026 [April 21st, 2026]
- Quantum Computing Stocks: Sorting the Real Science from the Hype - MarketBeat - April 21st, 2026 [April 21st, 2026]
- Despite Its Name, The Defiance Quantum ETF Is NOT A Bona Fide Quantum Computing ETF (QTUM) - Seeking Alpha - April 21st, 2026 [April 21st, 2026]
- Quantum Computing (NASDAQ:QUBT) Coverage Initiated at Northland Securities - MarketBeat - April 21st, 2026 [April 21st, 2026]
- IBM and the University of Illinois Urbana-Champaign Expand Discovery Accelerator Institute to Advance AI and Quantum Computing - IBM Newsroom - April 17th, 2026 [April 17th, 2026]
- IBM, U of I renew and expand Illinois institute focused on AI, quantum computing - CBS News - April 17th, 2026 [April 17th, 2026]
- D-Wave Quantum Vs. Quantum Computing: Early Revenue Premium Masks Long-Term Parity (NYSE:QBTS) - Seeking Alpha - April 17th, 2026 [April 17th, 2026]
- IBM expands quantum computing partnership with University of Illinois - StreetInsider - April 17th, 2026 [April 17th, 2026]
- The Best Quantum Computing Stocks to Buy Today - Yahoo Finance - April 12th, 2026 [April 12th, 2026]
- 3 Quantum Computing Stocks with Potential to Beat the Market 4/10/2026 - TipRanks - April 12th, 2026 [April 12th, 2026]
- Why Quantum Computing Is Becoming a Strategic Lever in Materials Innovation - Wipro - April 12th, 2026 [April 12th, 2026]
- What Are the Best Quantum Computing Stocks to Buy in 2026? - CoinCentral - April 12th, 2026 [April 12th, 2026]
- Adam Back Says Quantum Threat to Bitcoin Is Decades Away, Urges Gradual Migration to Post-Quantum Security - Bitcoin Magazine - April 10th, 2026 [April 10th, 2026]
- Infleqtion and NASA Deploy Upgraded Quantum Hardware to International Space Station - Quantum Computing Report - April 10th, 2026 [April 10th, 2026]
- Long-term undervaluation lifts Quantum Computing stock to a 4.87% daily increase - Traders Union - April 10th, 2026 [April 10th, 2026]
- Up 1,460% Since 2024, Is It Too Late to Buy This Quantum Computing Leader? - Yahoo Finance - April 8th, 2026 [April 8th, 2026]
- Up 1,460% Since 2024, Is It Too Late to Buy This Quantum Computing Leader? - The Motley Fool - April 8th, 2026 [April 8th, 2026]
- Future of Quantum Computing | High-Speed Processing, AI Synergy - openPR.com - April 8th, 2026 [April 8th, 2026]
- Fully Programmable Quantum Computing With Trapped-ions - Quantum Zeitgeist - April 8th, 2026 [April 8th, 2026]
- News Explorer Quantum Computing Poses Potential Threats to Bitcoin, But Current Research Shows Limitations - Decrypt - April 8th, 2026 [April 8th, 2026]
- Quantum Computing Market to Reach US$ 22.75 Billion by 2033 - openPR.com - April 8th, 2026 [April 8th, 2026]
- A Cryptography Engineers Perspective on Quantum Computing Timelines - OODAloop - April 8th, 2026 [April 8th, 2026]
- Why the mind-bending physics of quantum computing is terrifying for bitcoin and crypto - CoinDesk - April 7th, 2026 [April 7th, 2026]
- Q-Factor emerges with $24M in funding and the next big bet to achieve quantum computing advantage - SiliconANGLE - April 7th, 2026 [April 7th, 2026]
- Alex Pruden: Quantum computing threatens elliptic curve cryptography, advancements could lead to utility-scale systems by decade's end, and the urgent... - April 7th, 2026 [April 7th, 2026]
- Lloyds Bank uses quantum computing to detect money mules - The Times - April 7th, 2026 [April 7th, 2026]
- SpinQ Technology Raises Nearly 1 Billion CNY ($145.3M USD) to Scale Industrial Quantum Computing - Quantum Computing Report - April 5th, 2026 [April 5th, 2026]
- Is Rigetti Computing the Best Quantum Computing Stock to Buy Right Now? - fool.com - April 5th, 2026 [April 5th, 2026]
- SpinQ Technology Secures Nearly 1 Billion Chinese Yuan in Series C Funding to Scale Industrial Superconducting Quantum Computing - The Quantum Insider - April 5th, 2026 [April 5th, 2026]
- Q&A: AWS on new AI agents, quantum computing in healthcare - MobiHealthNews - April 5th, 2026 [April 5th, 2026]
- QuiX Quantum Demonstrates Below-Threshold Error Mitigation in Photonic Quantum Computing for First Time - HPCwire - April 5th, 2026 [April 5th, 2026]
- Google says there's a 10% chance quantum computing will crack bitcoin cryptography by 2032 - PC Gamer - April 5th, 2026 [April 5th, 2026]
- Solana begins testing defenses against 'quantum-computing threat' "Stronger security leads to slower performance" - bloomingbit - April 5th, 2026 [April 5th, 2026]
- 'No Need to Panic': Binance Founder Says Crypto Can Survive Quantum Computing Threat by Upgrading - Yahoo Finance - April 5th, 2026 [April 5th, 2026]
- Clocking Quantum Instability: A New Process Could Open Pathways to Reliable Quantum Computing - thedebrief.org - April 5th, 2026 [April 5th, 2026]
- University of Chicago using "self-driving" lab in quantum computing research - CBS News - April 5th, 2026 [April 5th, 2026]
- IBM Advances Quantum Computing Research: Will it Boost Prospects? - sg.finance.yahoo.com - April 5th, 2026 [April 5th, 2026]
- Safeguarding cryptocurrency by disclosing quantum vulnerabilities responsibly - research.google - April 1st, 2026 [April 1st, 2026]
- New Teaching Approach Could Open The Door to Quantum Computing - The Quantum Insider - April 1st, 2026 [April 1st, 2026]
- EPB Joins Southeastern Quantum Collaborative to Support Regional Infrastructure Integration - Quantum Computing Report - April 1st, 2026 [April 1st, 2026]
- Google warns quantum computing may break bitcoin earlier than thought, prepares 2029 transition - The Block - April 1st, 2026 [April 1st, 2026]
- Alice & Bob secures 3.4 million ARPA-E award to discover rare-earth-free magnets using quantum computing - BeBeez International - April 1st, 2026 [April 1st, 2026]
- 1 Unstoppable Quantum Computing Stock to Buy Before It Soars 200%, According to 1 Wall Street Analyst - finance.yahoo.com - April 1st, 2026 [April 1st, 2026]
- Is Ciscos Quantum Networking Push With Atom Computing Reshaping Its AI Infrastructure Story (CSCO)? - finance.yahoo.com - April 1st, 2026 [April 1st, 2026]
- Changpeng Zhao dismisses 'quantum computing fears' "No need to be scared" - bloomingbit - April 1st, 2026 [April 1st, 2026]
- UMass Amherst and UCSB Demonstrate Photonic Chip Technology for Miniaturized Quantum Systems - Quantum Computing Report - April 1st, 2026 [April 1st, 2026]