Risks of Quantum Computing for Cryptography

The biggest threat to your data isn’t happening tomorrow. It happened yesterday. If you haven’t heard of HNDL (Harvest Now, Decrypt Later), your long-term data strategy has a massive blind spot. Here is the reality: State actors and cybercriminals are capturing your encrypted data today. They can’t read it yet, so they’re storing it in massive data vaults, waiting for the "Qday"—the moment quantum computers become powerful enough to break current encryption. If your data needs to stay private for 5, 10, or 20 years, it’s already at risk. What’s on the line? ↳ Intellectual Property (IP) and trade secrets. ↳ Government and identity data. ↳ Long-term financial records and contracts. ↳ Sensitive customer health data. How do we solve it? 🛠️ We cannot wait for quantum supremacy to react. The fix starts now: ↳ Inventory: Identify which data has a long shelf-life. ↳ Crypto-Agility: Move toward systems that can swap encryption methods without a total overhaul. ↳ Hybrid PQC: Implement Post-Quantum Cryptography alongside classical methods to ensure traffic captured today remains a mystery tomorrow. The transition to quantum-resistant security is a marathon, not a sprint. Are you tracking HNDL on your current risk register? Let’s discuss in the comments. 👇 P.S. If you want help mapping your exposure or building a PQC migration plan, drop me a message. ♻️ Share this post if it speaks to you, and follow me for more. #QuantumSecurity #PQC

Google is issuing a call to action: the quantum era will break the digital locks we rely on, and the window to get ahead of it is closing rapidly. This is a signal leaders should not ignore. Quantum’s promise, drug discovery, materials science, energy, comes with a brutal side effect: a cryptographically relevant quantum computer could unravel the public-key cryptosystems protecting bank transfers, private chats, trade secrets, and classified systems. And the most dangerous part is timing. Attackers don’t need quantum to arrive to start winning. They can harvest encrypted data now and decrypt it later. The breach happens in slow motion, then shows up all at once, helped by AI to find patterns and insights in the data. I’ve been saying this for years: if the last few years belonged to AI, the rest of this decade increasingly belongs to quantum, and the world is not ready for quantum’s “ChatGPT moment.” Standards are no longer the excuse. National Institute of Standards and Technology (NIST) finalized the first post-quantum cryptography standards in August 2024. This is the most underpriced risk in modern leadership. The “we’re waiting” era is over. Y2K was a $100B inconvenience. Quantum migration is a civil-engineering project for the digital world. Imagine a an airplane swapping engines mid-flight without crashing. That’s what “crypto agility” demands: replacing the cryptography under your entire business while customers keep booking, checking-in, boarding, and trusting the system. And the time to start working is today, because when one of the companies building toward this future tells the market to move, you move. Google has been working on post-quantum cryptography since 2016, and it’s now publicly warning that a large-scale quantum computer could break today’s public-key cryptography. That combination, deep capability plus an explicit call to action, isn’t PR. It’s a timeline a signal you should not ignore. This decade rewards leaders who modernize trust before trust collapses. Is your organization preparing itself for what is to come?

Is quantum computing the next big cybersecurity threat? For decades, encryption has been our digital fortress. But quantum computing is challenging that foundation—and the stakes couldn’t be higher. Let me explain. Quantum computers, powered by qubits and quantum mechanics, have the potential to break today’s most secure encryption methods in record time. Algorithms like RSA, which protect everything from online transactions to national secrets, may soon become obsolete. Here’s the reality: → "Harvest Now, Decrypt Later": Cybercriminals are already storing encrypted data, waiting for the day quantum computers can crack it. → Encryption at Risk: Shor’s Algorithm and similar quantum innovations could dismantle current security protocols, leaving sensitive information vulnerable. → The Clock is Ticking: While quantum computers aren’t powerful enough yet, experts predict it’s only a matter of time. So, how do we prepare? → Post-Quantum Cryptography: Organizations like NIST are working on quantum-resistant algorithms to protect future data. → Quantum-Safe Protocols: Hybrid models combining classical and quantum encryption are emerging to secure transitions. → Risk Assessments and Training: Companies must identify vulnerabilities and educate cybersecurity teams on the implications of quantum advancements. The future of cybersecurity isn’t just about defending against traditional threats—it’s about staying ahead of quantum possibilities. Are we ready to face the next wave of cyber threats? Let’s discuss. 👇

Three weeks ago, our Devsinc security architect, walked into my office with a chilling demonstration. Using quantum simulation software, she showed how RSA-2048 encryption – the same standard protecting billions of transactions daily – could theoretically be cracked in just 24 hours by a sufficiently powerful quantum computer. What took her classical computer billions of years to attempt, quantum algorithms could solve before tomorrow's sunrise. That moment crystallized a truth I've been grappling with: we're not just approaching a technological evolution; we're racing toward a cryptographic apocalypse. The quantum computing market tells a story of inevitable disruption, surging from $1.44 billion in 2025 to an expected $16.22 billion by 2034 – a staggering 30.88% CAGR that signals more than market enthusiasm. Research shows a 17-34% probability that cryptographically relevant quantum computers will exist by 2034, climbing to 79% by 2044. But here's what keeps me awake at night: adversaries are already employing "harvest now, decrypt later" strategies, collecting our encrypted data today to unlock tomorrow. For my fellow CTOs and CIOs: the U.S. National Security Memorandum 10 mandates full migration to post-quantum cryptography by 2035, with some agencies required to transition by 2030. This isn't optional. Ninety-five percent of cybersecurity experts rate quantum's threat to current systems as "very high," yet only 25% of organizations are actively addressing this in their risk management strategies. To the brilliant minds entering our industry: this represents the greatest cybersecurity challenge and opportunity of our generation. While quantum computing promises revolutionary advances in drug discovery, optimization, and AI, it simultaneously threatens the cryptographic foundation of our digital world. The demand for quantum-safe solutions will create entirely new career paths and industries. What moves me most is the democratizing potential of this challenge. Whether you're building solutions in Silicon Valley or Lahore, the quantum threat affects us all equally – and so does the opportunity to solve it. Post-quantum cryptography isn't just about surviving disruption; it's about architecting the secure digital infrastructure that will power humanity's next chapter. The countdown has begun. The question isn't whether quantum will break our current security – it's whether we'll be ready when it does.

Researchers at the University of Kent have raised concerns about the vulnerability of Bitcoin and other blockchain technologies to quantum computing. In a yet-to-be-peer-reviewed study, they suggest that a sufficiently advanced quantum computer could crack Bitcoin’s cryptographic security, posing an existential threat to the cryptocurrency ecosystem. The announcement follows Google’s recent unveiling of its 105-qubit ‘Willow’ quantum chip, which demonstrated computational power far beyond classical supercomputers. This breakthrough reignited fears about the potential for quantum computers to bypass Bitcoin’s encryption, which relies on algorithms like SHA-256 and ECDSA (Elliptic Curve Digital Signature Algorithm) for transaction security. Key Findings from the Study: 1. Quantum Threat to Bitcoin: A sufficiently advanced quantum computer could break Bitcoin’s encryption, potentially allowing malicious actors to steal funds or manipulate transactions on the blockchain. 2. Lengthy Update Downtime: Transitioning Bitcoin’s infrastructure to quantum-resistant cryptography could require up to 76 days of downtime, during which the blockchain would be extremely vulnerable. 3. Staggering Financial Losses: The disruption caused by such an attack or even the preparation for a quantum-safe upgrade could result in astronomical financial losses. How Quantum Computers Could Crack Bitcoin • Bitcoin uses public-private key pairs for secure transactions. • A quantum computer with sufficient qubits and error correction capabilities could reverse-engineer private keys from public keys using Shor’s Algorithm. • Once private keys are exposed, attackers could authorize transactions and effectively drain wallets. Potential Solutions: • Post-Quantum Cryptography (PQC): Researchers are actively developing encryption methods resistant to quantum attacks, such as lattice-based cryptography. • Blockchain Hard Fork: Implementing a system-wide upgrade to quantum-resistant algorithms before quantum computers reach the necessary scale. • Hybrid Cryptography: Using a combination of classical and quantum-resistant cryptographic methods during the transition period. The Road Ahead: While quantum computers capable of such feats are not yet operational, the rapid advancements in the field suggest it’s only a matter of time. The Bitcoin community, developers, and stakeholders must act proactively to adopt quantum-resistant encryption standards to safeguard the cryptocurrency’s future. As Carlos Perez-Delgado, co-author of the study, points out: “Even brief downtime or delays in blockchain updates can result in catastrophic consequences in a financial system of this scale.”

Quantum computing is moving from "science fiction" to "business reality" faster than most predicted. Two recent papers have fundamentally shifted the timeline for when we need to care about Quantum-Safe security: 1️⃣ The "10,000 Qubits" Milestone: New research shows that we can execute Shor’s algorithm—the math that breaks today’s encryption—with far fewer resources than previously thought. By using reconfigurable atomic qubits, the hardware requirements for cracking RSA-2048 have dropped by nearly 20x. 2️⃣ The "9-Minute" Crypto Warning: Google’s latest whitepaper highlights a terrifying reality for digital assets. Under advanced quantum scenarios, the encryption protecting a cryptocurrency wallet could be cracked in under 10 minutes. This puts billions in "dormant" assets at immediate risk of "at-rest" attacks. The Bottom Line: The "Q-Day" window is shrinking. It’s no longer about if a quantum computer can break your encryption, but when your current migration timeline will run out. How do we respond? We can't just flip a switch on "Q-Day." For many organizations, becoming quantum safe is a multi-year journey. This is where Palo Alto Networks Quantum-Safe Security comes in. Instead of a manual, multi-year overhaul, we provide a path to Agentic Resilience: - Continuous Discovery: It automatically maps your "cryptographic bill of materials" (CBOM), identifying exactly where vulnerable RSA and ECC algorithms are hiding in your network. - Risk Prioritization: It correlates your encryption strength with business criticality, telling you exactly which high-value assets need to move to Post-Quantum Cryptography (PQC) first. - Real-Time Remediation: For legacy systems that can’t be easily upgraded, a "Quantum-Safe Proxy" re-encrypts vulnerable traffic into post-quantum algorithms (like ML-KEM) at the network edge. The transition to a quantum-safe future is a marathon, but the starting gun has already fired. Learn how to take your first steps at the link in the comments.

We’re all bracing for “Harvest Now, Decrypt Later.” The risk that keeps me up at night is its more dangerous twin: “Trust Now, Forge Later.” This isn’t about reading your secrets tomorrow. It’s about forging the signatures and certificates your systems trust today - software updates, firmware, documents, device identities - once quantum computers can break RSA/ECC. When the control plane (signing and verification) fails, attackers can push "validly signed" malware and instructions that our systems accept without a blink. Why this matters - especially in OT and cyber‑physical environments: - Integrity -> safety. In factories, energy, healthcare, and transport, forged signatures can become physical harm. - Long‑lived devices. Roots of trust burned into ROM, narrow maintenance windows, and legacy protocols mean PQC migration in OT is harder (much harder) and slower than in IT. - Evidence and provenance. If signatures become forgeable, non‑repudiation and long‑term legal trust need PQ‑secure timestamping and re‑signing strategies. I lay it out here - including why “Sign Today, Forge Tomorrow / Trust Now, Forge Later” is often a bigger risk than HNDL for OT and critical infrastructure, and why the migration is uniquely complex. #QuantumThreat #QuantumComputing #TrustNowForgeLater #TNFL #QuantumSecurity #PQC #PostQuantum #QuantumReadiness

A recent comprehensive study, issued by Federal Office for Information Security (BSI) on the Status of #Quantum #Computer #Development provides a sober, evidence-based assessment of progress, risks, and timelines, particularly relevant for #cryptography, #cybersecurity, and strategic planning, with a focus on applications in #cryptanalysis. Key takeaways: • Quantum advantage is real, but still narrow Quantum computers have demonstrated advantage only on highly specialized benchmark problems. Broad, application-relevant superiority remains out of reach. • Cryptography is the primary strategic risk driver Shor’s algorithm continues to pose a credible long-term threat to RSA and elliptic-curve cryptography, while symmetric cryptography (e.g. AES) remains comparatively resilient with appropriate key lengths. • Fault tolerance is the true bottleneck Error rates not qubit counts are the dominant constraint. Scalable, fault-tolerant quantum computing requires massive overheads in error correction and infrastructure. • Leading hardware platforms are converging Superconducting qubits, trapped ions, and neutral atoms (Rydberg) currently lead the field, with rapid progress but no clear single winner. • #NISQ systems are not a near-term cryptographic threat Noisy Intermediate-Scale Quantum (NISQ) devices lack the depth and reliability needed for meaningful cryptanalysis, despite frequent hype. • A realistic timeline is emerging Based on verified advances in error correction, a cryptographically relevant quantum computer may be achievable in ~10–15 years—not decades, but not imminent either. • “Harvest now, decrypt later” remains a credible risk Sensitive data encrypted today may be vulnerable in the future, reinforcing the urgency of post-quantum cryptography migration. • Security preparedness must start now Transition planning, crypto-agility, standards development, and quantum-readiness assessments are no longer optional for governments and critical sectors. 👉 Bottom line: quantum computing is progressing steadily, not explosively, but its long-term implications for cybersecurity and digital trust demand early, structured, and risk-based action today. https://lnkd.in/eMui-D_W

Recorded Future released a new Executive Insights Report that examines quantum risk through a practical security and policy lens, focusing less on speculative timelines and more on the consequences unfolding today. One of the most important points is that quantum risk does not begin with the arrival of a cryptographically relevant quantum computer. In many respects, it has already started. “Harvest now, decrypt later” activity fundamentally changes how organizations should think about sensitive data. The compromise occurs at the point of collection, even if decryption remains years away. For governments, critical infrastructure operators, defense contractors, and firms handling long-lived intellectual property, the exposure horizon is measured in decades. That dynamic has broader implications than encryption alone. Public-key cryptography quietly underpins digital trust across modern economies. The eventual disruption of those trust anchors would challenge the integrity assumptions embedded across global digital infrastructure. What makes the issue significant is the mismatch between uncertainty and infrastructure permanence. There is still no definitive timeline for cryptographically relevant quantum computers, but many systems being deployed today will remain operational long enough to encounter them. That means current decisions are becoming future security liabilities or future resilience advantages depending on how organizations prepare. The policy environment is beginning to reflect this reality. Post-quantum cryptography is moving from research priority to governance expectation. Over time, this will likely evolve into a market differentiator. Organizations able to demonstrate cryptographic agility and credible migration planning may increasingly be viewed as lower-risk partners across government and critical infrastructure ecosystems. There is also an operational dimension that deserves more attention. The convergence of AI-enabled automation with quantum-enhanced optimization has the potential to compress defender response windows substantially. The organizations most exposed may not be those lacking sophisticated security tooling, but those carrying accumulated security debt, rigid architectures, and slow remediation cycles. The encouraging reality is that the core mitigation pathways are already visible. Cryptographic inventory, crypto-agility, supplier scrutiny, and prioritization of long-lived sensitive data are actionable steps that can be pursued now, well before quantum capabilities mature. In that sense, quantum preparedness is becoming less about predicting “Q-Day” and more about institutional adaptability. The organizations and governments that approach this transition early will likely experience it as a managed modernization effort. Those that delay may eventually confront it as a compressed operational and regulatory crisis.

When I published my latest column in Frankfurter Allgemeine Zeitung on #quantum computing and its implications for #Bitcoin a few weeks ago (links to the German and English article in the comments), I didn't expect the next major development to arrive this quickly. Last week, two all-star research teams spanning quantum computing, cryptography, and blockchain published two papers (links in the comments) that dramatically lower the estimated resources needed to break the elliptic curve cryptography (ECC-256) securing virtually every major blockchain. 🔍 What's the issue? Bitcoin's security rests on asymmetric cryptography, specifically on elliptic curves. Put simply, it is virtually impossible for conventional computers to derive a private key (the password) from a public key (the account number). A sufficiently powerful quantum computer, however, could solve this problem using Shor's algorithm. 🔍 What did the papers find? Google's paper (Babbush et al.) shows that Shor's algorithm could break ECC-256 with fewer than 500,000 physical superconducting qubits in as little as 9 minutes. That's a 20× improvement in efficiency over prior estimates. A 9-minute window matters enormously: it means not only bitcoins sitting on already-vulnerable addresses are at risk, but so-called "on-spend" attacks become feasible too. These attacks exploit the fact that public keys are briefly exposed when bitcoins are spent and before the transaction settles (typically around 10 minutes). Oratomic's paper (Cain et al.), from Caltech and UC Berkeley, shows that same cryptography could be broken with as few as 10,000–26,000 physical qubits, albeit over days rather than minutes. While too slow for on-spend attacks, this timeframe would be more than sufficient to target bitcoins sitting on vulnerable addresses where public keys are already permanently exposed, 🔍 What this does and doesn't mean To be clear: these papers represent algorithmic and architectural breakthroughs, not hardware breakthroughs. Quantum computers powerful enough to execute these attacks are still as likely (or unlikely) to arrive by the end of this decade as they were before. What has changed is our understanding of how little computing power would actually be needed. The gap between what's required and what's being built just got a lot smaller.