Rapid advances in quantum computing are renewing concerns that widely used cryptographic standards could be at risk within the next decade, with some industry observers warning of potential threats emerging as early as 2030. Any successful quantum attack on today’s public-key cryptography would have far-reaching implications for blockchains, digital asset custody, and the broader financial system.
Why quantum computing threatens today’s cryptography
Most internet security, including the systems that secure blockchain networks, depends on public-key cryptography such as RSA and elliptic-curve cryptography (ECC). Quantum algorithms like Shor’s could, in principle, break these schemes by efficiently factoring large integers (RSA) or solving the discrete logarithm problem (ECC). Symmetric cryptography (such as AES) is more resilient, though Grover’s algorithm could reduce its effective security level, often necessitating larger key sizes.
While large-scale, fault-tolerant quantum computers capable of breaking modern public-key schemes do not yet exist, the trajectory of research and engineering has accelerated. That has prompted risk assessments that weigh not only when quantum capabilities might arrive, but also the “harvest now, decrypt later” threat model, in which adversaries collect encrypted data today to decrypt once quantum resources become available.
Implications for crypto and finance
Major blockchains, including Bitcoin and Ethereum, rely on ECC-based digital signatures (e.g., secp256k1, Ed25519) to prove ownership of funds and authorize transactions. A quantum-capable adversary that can derive private keys from public keys would be able to forge signatures and move assets without authorization. On-chain data creates additional nuances: for example, some Bitcoin outputs reveal public keys when they are spent, potentially increasing exposure for addresses that reuse keys or have already broadcast signatures.
Beyond digital assets, financial infrastructure—payments, secure communications, and identity systems—also depends on public-key cryptography for authentication and key exchange. A systemic break would require coordinated upgrades across wallets, exchanges, custodians, and service providers, as well as changes to network protocols. Migration is particularly complex for decentralized networks, where upgrades must be carefully designed to maintain consensus, performance, and security while supporting legacy assets.
Industry response and timelines
Standards bodies and governments have begun laying the groundwork for post-quantum cryptography (PQC). The U.S. National Institute of Standards and Technology (NIST) has selected algorithms for standardization, including CRYSTALS-Kyber for key establishment and CRYSTALS-Dilithium, Falcon, and SPHINCS+ for digital signatures. Draft standards and implementation guidance are progressing, with a focus on robust, efficient, and implementation-safe designs.
Financial institutions and technology providers are conducting cryptographic inventories, testing PQC in pilot environments, and planning for phased migrations. In the blockchain sector, researchers are exploring quantum-resistant signatures and hybrid schemes that combine classical and post-quantum security. Proposals span lattice-based, hash-based, and multivariate approaches, each with trade-offs in key size, signature size, verification speed, and on-chain costs. Any transition will require careful coordination to preserve user funds, support legacy keys, and provide clear pathways for upgrades.
Outlook
The exact timeline for quantum capabilities that threaten today’s cryptography remains uncertain, but the potential impact is clear. For digital asset markets and critical financial infrastructure, early preparation—standards adoption, protocol design, and operational readiness—will be essential to reduce systemic risk. As post-quantum standards mature, the focus will shift from research to implementation, interoperability, and large-scale migration across both traditional and decentralized systems.