Ethereum puts security ahead of speed as zkEVMs move toward institutional readiness.
Summary
Ethereum shifts zkEVM roadmap toward security-first standards
128-bit provable security set as mandatory for mainnet use
Three milestones introduced through end-2026
New cryptographic tools make higher security achievable
Institutional adoption push continues alongside tighter standards
Ethereum Foundation has set out a new technical roadmap for zero-knowledge Ethereum Virtual Machines, signalling a decisive shift away from speed-at-all-costs development toward provable security as the non-negotiable standard for mainnet deployment.
The roadmap follows major performance breakthroughs across zkEVM teams, which have slashed proof-generation times from minutes to seconds while dramatically reducing costs. As a result, nearly all Ethereum blocks can now be proven in under 10 seconds on target hardware. However, the foundation warned that these gains have exposed a deeper vulnerability: many current zkEVM designs rely on cryptographic assumptions that remain unproven — and in some cases are being challenged by new research.
The foundation described security as the “elephant in the room,” warning that a compromised proof system would undermine Ethereum entirely. A forged proof could enable attackers to mint tokens, rewrite blockchain state, or drain funds, making cryptographic soundness the system’s ultimate line of defence.
To address this, the foundation has introduced a three-stage roadmap running through the end of 2026. The centrepiece is a mandatory move toward 128-bit provable security for any zkEVM intended for production use, bringing Ethereum in line with standards recommended by cryptographic authorities.
The first milestone, due by early 2026, requires teams to integrate their proof systems with a new security-estimation framework designed to rigorously quantify cryptographic assumptions. A second checkpoint later in 2026 raises the bar further, requiring higher security guarantees alongside limits on proof size and clearer architectural transparency. The final milestone mandates full 128-bit security, tightly constrained proof sizes, and formal arguments validating recursive proof structures.
Ethereum researchers argue the timing is deliberate. As zkEVM architectures begin to stabilise, formal verification and security proofs can be applied more effectively before system complexity locks in long-term risk. Recent advances in polynomial commitments, recursion design and proof compression have made these targets technically achievable.
Alongside the tighter technical stance, Ethereum is accelerating its institutional strategy. Through its “Ethereum for Institutions” initiative, the foundation is positioning Ethereum as production-ready infrastructure for regulated finance, highlighting its validator base, network resilience and rapidly maturing privacy technologies.
The foundation pointed to strong uptake in tokenised real-world assets, where Ethereum continues to dominate, with major financial firms already deploying live products on the network.
Copy Link
Share on Facebook
Share on X
Share by Email
