Key Findings in Quantum Security Research

Headline: China Cracks RSA Encryption Using Quantum Annealing—Global Data Security Now Under Pressure ⸻ Introduction: A Chinese research team has achieved a milestone with profound cybersecurity implications: successfully cracking a small RSA-encrypted integer using a quantum computer. Though modest in scale, this experiment signals that quantum systems are starting to undermine the very cryptographic foundations that secure today’s banking, commerce, and communication systems. The race to build quantum-resistant encryption is no longer theoretical—it’s urgent. ⸻ Key Details 🔓 Cracking RSA with Quantum Annealing • Researchers: Wang Chao and team from Shanghai University. • Hardware Used: A D-Wave Advantage quantum annealer, built by D-Wave Systems. • Achievement: The team factored a 22-bit RSA semiprime integer, a task previously unsolved on this class of hardware. 🔐 What Makes RSA Strong—and Vulnerable • RSA Encryption: Based on the difficulty of factoring large semiprime numbers (products of two primes). • Classical Challenge: Conventional computers require subexponential time to factor 2048-bit keys—considered secure for now. • Largest Cracked Classically: RSA250 (829-bit key) using supercomputers over weeks. • Quantum Approach: The Chinese team translated factorization into a QUBO (Quadratic Unconstrained Binary Optimization) problem, solvable by quantum annealing. 🧠 Why This is a Warning Shot • Early Stage, But Symbolic: While a 22-bit number is trivial by today’s standards, the methodology proves scalability potential. • First Step Toward Quantum Decryption: Demonstrates quantum annealers can be adapted for cryptographic tasks—not just optimization. • Signals Future Risk: Today’s encryption might withstand current tech, but scalable quantum systems could break RSA entirely in years, not decades. ⸻ Why It Matters • Global Cybersecurity Threatened: Banking, defense, healthcare, and internet infrastructure all rely on RSA and similar public-key systems. This experiment shows those systems may soon be obsolete. • Quantum Arms Race Accelerates: The demonstration by Chinese researchers will likely intensify global investment in both quantum computing and post-quantum cryptography. • Urgent Need for Migration: Governments and corporations must begin transitioning to quantum-resistant encryption standards, or risk catastrophic breaches in the near future. • Tactical and Strategic Implications: Countries that master quantum decryption first may gain unparalleled capabilities in espionage, warfare, and economic control. ⸻ Keith King https://lnkd.in/gHPvUttw Arzan Alghanmi

💣 Two almost simultaneous relevant papers on #quantum #cryptoanalysis. 👉 "Shor’s algorithm is possible with as few as 10,000 reconfigurable atomic qubits" (https://lnkd.in/eyGiqXQt): This document, supported by trusted names like John Preskill, discusses advances in error-correcting codes and other efficiencies that could be leveraged in neutral atoms quantum computers. They discuss attacks on RSA using as few as 10,000 atomic qubits, although at a great cost in time. Their most time-efficient architectures can enable run times of 10 days for ECC–256 with ≈26,000 qubits, and 97 days for RSA–2048 with ≈102,000 qubits. See the graph below. 👉 "Securing Elliptic Curve Cryptocurrencies against Quantum Vulnerabilities: Resource Estimates and Mitigations" (https://lnkd.in/e_HsxUcx, https://lnkd.in/eakjd4HU): This paper has been published by Google Research and counts also with trusted authors from Google, Ethereum Foundation, University of California, Berkeley and Stanford University, like Craig Gidney, Justin Drake, or Dan Boneh. The paper is a comprehensive review of #quantum #security in #blockchain that deserves a careful reading. They demonstrate that Shor’s algorithm for breaking 256-bit ECC can execute with either ≤ 1200 logical qubits and ≤ 90M Toffoli gates or ≤ 1450 logical qubits and ≤ 70M Toffoli gates.  On superconducting architectures with 10^−3 physical error rates, it could be executed in minutes using <0.5M physical qubits. They analyze how this can enable different attack scenarios to cryptocurrencies. 👉 This not a sudden breakthrough, but steady, credible progress in quantum cryptoanalysis. 💡What stands out is not just feasibility, but implications. 🚩 Although substantial expertise, experimental development effort, and architectural design are required, quantum systems capable of breaking today’s cryptography are not speculative. This underscores the importance of ongoing efforts to transition widely-deployed cryptographic systems toward post-quantum standards. 🚩 The emergence of CRQCs represents a serious threat to cryptocurrencies. ✏️ The Bitcoin community needs to face urgent and difficult decisions regarding legacy assets, such as the 1.7 million bitcoin locked in P2PK scripts and an even greater amount of assets vulnerable due to address reuse. ✏️ Ethereum is more exposed than Bitcoin due to the prevalence of at-rest vulnerabilities, but its recent active steps towards PQC migration promise a more expedient transition to quantum-safe protocols. This is critical since the tokenization of real-world assets is expected to open up markets projected to exceed 16 trillion USD by 2030, breaking the “too-big-to-fail” economic stability thresholds. ✏️ There is time to migrate public blockchains to PQC, though the margin for error is increasingly narrow.

BREAKING: Two new papers just dropped that suggest Q-Day is closer than we thought. Is Bitcoin toast? Tl;dr: Two research teams independently showed that breaking the encryption behind Bitcoin, Ethereum, and most of the internet requires far fewer quantum resources than previously estimated — and those resources are approaching engineering reality. Yesterday, Google published a whitepaper with updated estimates for cracking the elliptic curve cryptography (ECC), which secures virtually all major blockchains. Their finding: a superconducting quantum computer with fewer than 500,000 physical qubits could derive a Bitcoin private key in about 9 minutes. A quantum attacker could intercept a transaction in progress, crack the key, and submit a fraudulent replacement before the original is recorded. Today, a team from startup Oratomic and Caltech showed that a neutral atom quantum computer could do the same thing with as few as 10,000 physical qubits — but in days, not minutes. Labs have already demonstrated neutral atom arrays with 6,100+ qubits. Google also published a zero-knowledge proof that their circuits work without revealing the circuits themselves. Think of it as telling the world "we can pick this lock" while refusing to publish the instructions. But cryptocurrency is only part of the story. The same math that secures Bitcoin also secures TLS (every HTTPS website), SSH (remote administration), firmware signing, electronic passports, encrypted messaging, and IoT authentication – among other things. The quantum threat to blockchain is a specific instance of a much, much broader problem. NIST finalized post-quantum cryptography standards in 2024 and migration is underway for some systems. But it's slow, expensive, and for dormant crypto assets, impossible. The time to start moving to post-quantum cryptography...is NOW. Google paper: https://lnkd.in/eUMbf78u Oratomic/Caltech paper: https://lnkd.in/emn7ihf7

Scientists have just solved a 40-year puzzle in unbreakable encryption, a milestone that could transform how we secure communication in the quantum era. For decades, the biggest challenge with “unbreakable” quantum encryption was its dependence on perfect hardware—single-photon emitters that, in practice, always leaked a bit of information. That small leak was enough to give attackers a theoretical edge, limiting the real-world viability of quantum-secure systems. Now, researchers have demonstrated a breakthrough using quantum dots and new cryptographic protocols that no longer require flawless devices. Instead, their approach tolerates imperfections, maintains true security, and allows encrypted quantum communication across much greater distances. This is more than a technical fix—it removes the last major barrier to scalable, real-world quantum encryption. It also shuts down potential “side-channel” attacks that targeted these hardware flaws, making future networks far more trustworthy. The implications are enormous: governments, financial institutions, and critical infrastructure providers may soon be able to deploy practical, unbreakable communication systems once thought confined to labs. Experts are calling it a paradigm shift—one that could spark a wave of commercialization and startups racing to bring quantum-dot encryption to market. #QuantumEncryption #Cybersecurity #Innovation #QuantumTech #Cryptography #FutureOfSecurity

A recent comprehensive study, issued by Federal Office for Information Security (BSI) on the Status of #Quantum #Computer #Development provides a sober, evidence-based assessment of progress, risks, and timelines, particularly relevant for #cryptography, #cybersecurity, and strategic planning, with a focus on applications in #cryptanalysis. Key takeaways: • Quantum advantage is real, but still narrow Quantum computers have demonstrated advantage only on highly specialized benchmark problems. Broad, application-relevant superiority remains out of reach. • Cryptography is the primary strategic risk driver Shor’s algorithm continues to pose a credible long-term threat to RSA and elliptic-curve cryptography, while symmetric cryptography (e.g. AES) remains comparatively resilient with appropriate key lengths. • Fault tolerance is the true bottleneck Error rates not qubit counts are the dominant constraint. Scalable, fault-tolerant quantum computing requires massive overheads in error correction and infrastructure. • Leading hardware platforms are converging Superconducting qubits, trapped ions, and neutral atoms (Rydberg) currently lead the field, with rapid progress but no clear single winner. • #NISQ systems are not a near-term cryptographic threat Noisy Intermediate-Scale Quantum (NISQ) devices lack the depth and reliability needed for meaningful cryptanalysis, despite frequent hype. • A realistic timeline is emerging Based on verified advances in error correction, a cryptographically relevant quantum computer may be achievable in ~10–15 years—not decades, but not imminent either. • “Harvest now, decrypt later” remains a credible risk Sensitive data encrypted today may be vulnerable in the future, reinforcing the urgency of post-quantum cryptography migration. • Security preparedness must start now Transition planning, crypto-agility, standards development, and quantum-readiness assessments are no longer optional for governments and critical sectors. 👉 Bottom line: quantum computing is progressing steadily, not explosively, but its long-term implications for cybersecurity and digital trust demand early, structured, and risk-based action today. https://lnkd.in/eMui-D_W

Recorded Future released a new Executive Insights Report that examines quantum risk through a practical security and policy lens, focusing less on speculative timelines and more on the consequences unfolding today. One of the most important points is that quantum risk does not begin with the arrival of a cryptographically relevant quantum computer. In many respects, it has already started. “Harvest now, decrypt later” activity fundamentally changes how organizations should think about sensitive data. The compromise occurs at the point of collection, even if decryption remains years away. For governments, critical infrastructure operators, defense contractors, and firms handling long-lived intellectual property, the exposure horizon is measured in decades. That dynamic has broader implications than encryption alone. Public-key cryptography quietly underpins digital trust across modern economies. The eventual disruption of those trust anchors would challenge the integrity assumptions embedded across global digital infrastructure. What makes the issue significant is the mismatch between uncertainty and infrastructure permanence. There is still no definitive timeline for cryptographically relevant quantum computers, but many systems being deployed today will remain operational long enough to encounter them. That means current decisions are becoming future security liabilities or future resilience advantages depending on how organizations prepare. The policy environment is beginning to reflect this reality. Post-quantum cryptography is moving from research priority to governance expectation. Over time, this will likely evolve into a market differentiator. Organizations able to demonstrate cryptographic agility and credible migration planning may increasingly be viewed as lower-risk partners across government and critical infrastructure ecosystems. There is also an operational dimension that deserves more attention. The convergence of AI-enabled automation with quantum-enhanced optimization has the potential to compress defender response windows substantially. The organizations most exposed may not be those lacking sophisticated security tooling, but those carrying accumulated security debt, rigid architectures, and slow remediation cycles. The encouraging reality is that the core mitigation pathways are already visible. Cryptographic inventory, crypto-agility, supplier scrutiny, and prioritization of long-lived sensitive data are actionable steps that can be pursued now, well before quantum capabilities mature. In that sense, quantum preparedness is becoming less about predicting “Q-Day” and more about institutional adaptability. The organizations and governments that approach this transition early will likely experience it as a managed modernization effort. Those that delay may eventually confront it as a compressed operational and regulatory crisis.

🔐 A cryptography wake-up call! Last week brought a reality check for quantum computing timelines. Two research groups announced advances that could enable machines capable of breaking RSA and elliptic curve cryptography much sooner than expected. Google Quantum AI announced updated resource estimates for breaking 256-bit elliptic curve cryptography, the backbone of Bitcoin, Ethereum, and much of modern blockchain security. Their new circuits require fewer than 500,000 physical qubits on superconducting architectures, offering roughly a 20x improvement over previous estimates. Impressively, the team estimates a superconducting computer could derive a private key in under 9 minutes, fast enough to intercept a Bitcoin transaction before it's recorded on-chain. Separately, researchers from Oratomic and Caltech showed that Shor's algorithm could run at cryptographically relevant scales with as few as 10,000 reconfigurable neutral-atom qubits, two orders of magnitude below earlier estimates for such platforms. At ~26,000 qubits, they project 256-bit elliptic curve cryptography could be broken in about 10 days. Neither paper claims a cryptographically relevant quantum computer exists today, and both acknowledge that significant engineering challenges persist. Nonetheless, both advances signify genuine algorithmic and architectural progress beyond small, incremental updates. What I find most notable is the convergence of better error-correcting codes, more efficient logical operations, and optimized circuit design, each improving simultaneously. As a result, resource requirements for cryptographic relevance continue to shrink. This phenomenon should serve as a call to action for the post-quantum cryptography transition. I am curious to hear from others in the community: What is your read on the current quantum cryptographic timeline and where do you see the biggest bottlenecks in a full PQC transition? Google Oratomic #Physics #Cryptography #Quantum #QuantumComputing #Science

When I published my latest column in Frankfurter Allgemeine Zeitung on #quantum computing and its implications for #Bitcoin a few weeks ago (links to the German and English article in the comments), I didn't expect the next major development to arrive this quickly. Last week, two all-star research teams spanning quantum computing, cryptography, and blockchain published two papers (links in the comments) that dramatically lower the estimated resources needed to break the elliptic curve cryptography (ECC-256) securing virtually every major blockchain. 🔍 What's the issue? Bitcoin's security rests on asymmetric cryptography, specifically on elliptic curves. Put simply, it is virtually impossible for conventional computers to derive a private key (the password) from a public key (the account number). A sufficiently powerful quantum computer, however, could solve this problem using Shor's algorithm. 🔍 What did the papers find? Google's paper (Babbush et al.) shows that Shor's algorithm could break ECC-256 with fewer than 500,000 physical superconducting qubits in as little as 9 minutes. That's a 20× improvement in efficiency over prior estimates. A 9-minute window matters enormously: it means not only bitcoins sitting on already-vulnerable addresses are at risk, but so-called "on-spend" attacks become feasible too. These attacks exploit the fact that public keys are briefly exposed when bitcoins are spent and before the transaction settles (typically around 10 minutes). Oratomic's paper (Cain et al.), from Caltech and UC Berkeley, shows that same cryptography could be broken with as few as 10,000–26,000 physical qubits, albeit over days rather than minutes. While too slow for on-spend attacks, this timeframe would be more than sufficient to target bitcoins sitting on vulnerable addresses where public keys are already permanently exposed, 🔍 What this does and doesn't mean To be clear: these papers represent algorithmic and architectural breakthroughs, not hardware breakthroughs. Quantum computers powerful enough to execute these attacks are still as likely (or unlikely) to arrive by the end of this decade as they were before. What has changed is our understanding of how little computing power would actually be needed. The gap between what's required and what's being built just got a lot smaller.

Basics: Quantum Technologies for Cyber Defence Quantum computing challenges long-standing assumptions about secure communications and critical infrastructure, as current encryption methods may become vulnerable once quantum computers reach advanced capabilities Realizing this potential requires deeper exploration and collaboration  across military, academic, and industrial domains This book invites readers to explore the emerging opportunities and strategic significance of quantum technologies in the context of cybersecurity It brings together the latest trends and insights into the evolution of quantum computing  and quantum communication, offering valuable guidance While the path forward remains uncertain, this moment is pivotal By expanding our understanding of quantum technologies,  we can position ourselves to lead with foresight rather than react in this transformative era of digital defense 🔵 Military Cybersecurity Threats 🔷 Decryption of Sensitive Data:  Quantum algorithms could break current asymmetric encryption protocols, exposing classified intelligence, communications, and logistical data 🔷 "Store Now, Decrypt Later" Attacks:  Adversaries are likely harvesting encrypted data today, waiting for mature quantum computers to unlock it 🔷 Critical Infrastructure Risk:  Quantum-enabled attacks could disrupt military communication networks, navigation systems (GPS), and weapon control systems ⚪ Future Outlook and Key Areas of Impact ◻️ Cryptographic Threats and Security:  Quantum computers will eventually break current public key cryptography.  This drives an urgent shift toward "post-quantum" encryption to protect secure communications and sensitive data ◻️ Next-Generation Sensing:  Quantum sensors will enable navigation in GPS-denied environments and detect hidden threats, including submarine detection through quantum gravitational sensors ◻️ Logistics and Optimization:  Quantum systems will optimize complex military supply chains, personnel deployment, and logistical support, enhancing overall operational efficiency ◻️ Artificial Intelligence and Information Warfare:  Quantum-enhanced AI will analyze vast data sets to identify adversarial disinformation and influence operations,  helping to secure the cognitive domain of warfare ◻️ Battlefield Imaging and Detection:  Quantum imaging and radar will allow detection of objects through camouflage or atmospheric obscurants e.g "Fighting in the Light" As quantum sensors detect stealth aircraft and submarines, militaries will need to adapt to being visible in previously secure areas ◻️ Investment Surge:  The quantum warfare market is projected to grow significantly by 2035, with major efforts focused on quantum processors and secure networks ◻️ National Security Focus:  Top powers (US, China, UK) are investing heavily to avoid a "quantum divide," aiming for superiority in AI-driven target identification and autonomous weapon systems ...