On May 6, the post-quantum security startup Project Eleven released a report warning that the critical point at which quantum computers can break modern cryptography (Q-Day) may arrive as early as 2030, with a probability of over 50% by 2033. The report also estimates that, under certain conditions, around 6.9 million bitcoins face potential quantum attack risk, and calls on the cryptocurrency ecosystem to speed up the anti-quantum migration process.
Q-Day Time Forecasts and the Sudden Pattern of Quantum Progress
According to a report published by Project Eleven on Wednesday, breakthroughs in quantum computing capability will emerge in a sudden, non-linear progression rather than as a steady, gradual advance. The report notes that the cumulative additive effect of improvements in both hardware and algorithms could trigger a major leap in capability, describing it as “either nothing happens, or it happens all at once.”
Project Eleven’s report cites recent quantum computing demonstrations as evidence of technical progress: last month, researchers successfully derived a 15-bit elliptic curve cryptographic key using quantum hardware. The report says that Bitcoin uses 256-bit elliptic curve encryption, and the 15-bit demo is still far from posing a practical threat, but it represents an initial technical validation of quantum-cracking capability.
The Mosca Inequality and the Urgency of Migration
According to Project Eleven’s report, quantum risk assessments adopted the theoretical framework of “Mosca Inequality”: if the time required for an ecosystem to complete migration to anti-quantum encryption exceeds the time until a quantum threat arrives, then the current security system is already lagging behind the risk curve. Based on this, the report estimates that around 6.9 million bitcoins face potential quantum risk under certain conditions.
Industry Response Options: BIP-361, the Paradigm Proposal, and Google’s Plan
According to The Block’s May 7 report, multiple response options have been proposed by both the cryptocurrency industry and the tech industry:
Paradigm researcher Dan Robinson’s proposal: Allow bitcoin holders to prove ownership of their current wallets via timestamped proofs, so that funds can be recovered on future anti-quantum versions of Bitcoin without leaking on-chain activity records
BIP-361 (proposed by Jameson Lopp and others): Establish a multi-year migration window for users to transfer funds to anti-quantum addresses
Google: Has already set a target time for migrating to anti-quantum encryption technology as 2029
Frequently Asked Questions
What is Q-Day, and what is Project Eleven’s latest time prediction?
Q-Day refers to the critical point when quantum computers gain the capability to break modern cryptography. According to Project Eleven’s report published on Wednesday, Q-Day may arrive as early as 2030, and the probability of it occurring by 2033 exceeds 50%, with time estimates fluctuating within a range of several years. The report was cited by The Block on May 7.
What is the specific threat mechanism of quantum computing to Bitcoin?
According to Project Eleven’s report, Bitcoin uses 256-bit elliptic curve encryption. The recent demonstration cited in the report shows that researchers have used quantum hardware to derive a 15-bit elliptic curve cryptographic key, which still remains significantly short of 256 bits. Project Eleven estimates that, under certain conditions, around 6.9 million bitcoins could face quantum attack risk, with a total value exceeding $560 billion based on current market prices.
What specific anti-quantum migration solutions exist right now?
According to The Block’s May 7 report, existing solutions include: the timestamped ownership proof scheme proposed by Paradigm researcher Dan Robinson; the multi-year migration window Bitcoin improvement proposal for BIP-361 put forward by Jameson Lopp and others; and Google’s internal target to complete anti-quantum encryption migration by 2029.
