Quantum Computing Poses Security Risk to Crypto Assets
Experts are increasingly warning of the security risks that quantum computing poses to blockchain and digital assets. Ethereum co-founder Vitalik Buterin urged the crypto industry to prepare with post-quantum solutions. Concurrently, financial institutions are being advised to audit their digital asset custody workflows, while Coinbase's CEO has stated the threats are real but ultimately "solvable."
- The primary threat comes from Shor's algorithm, which can efficiently find the prime factors of large numbers and compute discrete logarithms, breaking the cryptographic foundations of RSA and Elliptic Curve Cryptography (ECC) used by most blockchains. A sufficiently powerful quantum computer could derive a private key from a public key, allowing for the forgery of transactions. - The U.S. National Institute of Standards and Technology (NIST) has set a deadline to transition away from vulnerable cryptographic algorithms, with RSA-2048 and ECC-256 to be deprecated by 2030 and disallowed entirely after 2035. This transition is considered one of the most significant cryptographic upgrades in digital security history. - A "harvest now, decrypt later" strategy poses an immediate risk, where malicious actors are currently collecting encrypted transaction data. They plan to decrypt this data and steal funds once a powerful enough quantum computer is available. - Ethereum's long-term roadmap includes a phase called "The Splurge," which is focused on building a post-quantum secure ecosystem. Vitalik Buterin has also outlined a "quantum emergency" hard fork plan as a last resort, which would involve rolling back the blockchain and migrating users to quantum-resistant smart contract wallets. - Approximately 25% of the Bitcoin in circulation is considered vulnerable to a quantum attack, particularly in addresses where the public key has been exposed, such as in older "pay-to-public-key" (p2pk) transactions or reused addresses. - Post-quantum cryptographic solutions are being developed based on different mathematical problems, such as lattice-based, hash-based, and multivariate polynomial cryptography. NIST has already finalized its first three post-quantum standards: ML-KEM (FIPS 203), ML-DSA (FIPS 204), and SLH-DSA (FIPS 205). - Beyond breaking encryption, quantum computers running Grover's algorithm could provide a quadratic speedup in solving the hash functions used in proof-of-work mining. This could potentially enable a 51% attack, where a single entity could control the network, rewrite transaction history, and double-spend coins. - The transition to post-quantum cryptography in blockchains presents significant challenges, including "blockchain bloat" from larger signature sizes, increased computational costs for verification, and ensuring backward compatibility with existing nodes that cannot validate the new signatures without a protocol upgrade.
