A sweeping new technical report from post-quantum security firm Project Eleven is warning that the cryptographic foundations securing more than $3 trillion in digital assets could be broken within the next four to seven years – and that the window for the industry to respond may already be closing.
The 110-page document, released ahead of Project Eleven CEO Alex Pruden’s appearance at Consensus Miami 2026, argues that quantum computing isn’t a distant theoretical risk. it’s, according to the firm’s analysis, a practical threat on a planning horizon shorter than the time it typically takes to migrate complex technology systems.
The warning applies well beyond Bitcoin. Ethereum, stablecoins, DeFi protocols, and the banking and military communication systems that share the same underlying cryptographic architecture are all in scope.
The Core Vulnerability: Elliptic Curve Cryptography
The security of Bitcoin – and virtually every other major blockchain – rests on a mathematical problem called the elliptic curve discrete logarithm problem. To steal Bitcoin from a wallet, an attacker must derive the private key from the corresponding public key. On classical computers, this computation would take longer than the age of the universe.
On a sufficiently powerful quantum computer running an algorithm called Shor’s algorithm, the same computation could take minutes to hours.
“The digital asset industry holds over $3 trillion in aggregate value, and virtually all of it’s secured by the same class of cryptographic primitive: elliptic curve digital signatures,” the Project Eleven report states. “These signatures are vulnerable to quantum computing attacks.”
The firm estimates that approximately 6.9 million Bitcoin – currently worth around $550 billion at prevailing prices – are held in wallets with exposed public keys. These include coins in early-generation P2PK addresses where the public key is visible on-chain, as well as any UTXO that has been spent from once, revealing its public key in the process. Once a quantum computer reaches the relevant capability threshold, those specific coins could be at risk.
What “Q-Day” Means and When It Could Arrive
Project Eleven’s analysis introduces the concept of “Q-Day” – the point at which a quantum computer becomes cryptographically relevant, meaning powerful and reliable enough to break real-world elliptic curve encryption in a useful attack window.
The firm’s modeling of current quantum hardware progress leads to a specific and sobering estimate: Q-Day is more likely than not by 2033, and could arrive as early as 2030.
“Our analysis suggests that, based on current trends, Q-Day is more likely to occur than not by 2033, and potentially even as soon as 2030,” the report states. “The window for the world to migrate to post-quantum cryptography is narrowing.”
That timeline isn’t a consensus view – there are credible researchers who believe fault-tolerant quantum computing capable of running Shor’s algorithm at scale remains further away. But Project Eleven’s framing is deliberately conservative: it argues that even if Q-Day falls in 2033, the time required to migrate Bitcoin’s signature scheme to post-quantum alternatives makes 2030 a meaningful planning deadline.
Why Migration Is So Hard
The challenge isn’t identifying the solution. Post-quantum cryptographic algorithms exist. NIST finalized several post-quantum cryptography standards in 2024. The problem is implementation at the scale of a decentralized network that has no central authority to issue a mandatory upgrade.
For Bitcoin specifically, migrating to post-quantum signatures requires a soft fork or hard fork that would move all existing coins to new address formats using quantum-resistant signatures. Every coin holder – including Satoshi Nakamoto’s estimated 1 million dormant BTC – would need to move to a new address type.
Large, complex systems typically take between five and ten years to complete cryptographic migrations, the report notes. If Q-Day arrives in 2030, that migration timeline began yesterday.
“The time isn’t when quantum is here,” Pruden told Consensus Miami attendees. “The time is now.”
The Broader Stakes: Beyond Crypto
One of the report’s more striking arguments is its insistence that Bitcoin and Ethereum aren’t the only systems at risk. The same elliptic curve cryptography that secures crypto wallets also underpins HTTPS connections, banking authentication systems, cloud infrastructure, digital identity, and military communications.
A quantum computer capable of cracking Bitcoin would, by definition, be capable of cracking those systems too – unless they had already migrated to post-quantum standards.
NIST’s post-quantum cryptography standards address this broader threat and have already been adopted in some government contexts. But the pace of enterprise and consumer adoption of post-quantum TLS and authentication varies widely, and the blockchain system has its own migration challenges that enterprise software doesn’t face.
What the Industry Is Doing
Project Eleven recently announced a collaboration with the Solana Foundation specifically to develop a quantum migration plan for the Solana network. Solana’s architecture – with its emphasis on fast finality and state compression – offers some potential advantages in deploying new signature schemes quickly, though the specific mechanism for doing so remains under development.
Ethereum’s longer-term plan includes account abstraction features that could, in theory, make migration to post-quantum signatures more tractable for smart contract wallets. But the technical work required is substantial and not yet prioritized in the near-term upgrade pipeline.
Bitcoin’s path is the most uncertain. The network’s conservative upgrade process – changes require broad consensus among developers, miners, and node operators – makes rapid cryptographic migration politically as well as technically challenging.
The National Institute of Standards and Technology has been tracking the quantum threat to digital systems since 2016 and issued final post-quantum standards last year. NIST’s standards provide a technical toolkit for migration; they don’t provide a mechanism for getting a decentralized network to adopt that toolkit on any particular timeline.
What Bitcoin Holders Should Know Now
For individual holders, the most immediately actionable item is moving Bitcoin away from exposed public key formats. Coins that have never been spent – meaning their public key has never been broadcast on-chain – aren’t directly at risk from Shor’s algorithm, which requires a known public key to work.
Modern SegWit and Taproot addresses don’t expose the public key until the moment of spending, which provides some temporal protection. Coins in those address formats are safer than coins in old P2PK outputs – though “safer” doesn’t mean permanently immune once Q-Day arrives.
Project Eleven’s broader recommendation is industry-wide: treat quantum migration as an engineering priority rather than a theoretical hedge, and expect that the timeline for relevant quantum computers is shorter than conventional estimates suggest.
FAQ
what’s Q-Day and when will it happen? Q-Day refers to the moment when a quantum computer becomes powerful enough to break elliptic curve cryptography – the foundation of Bitcoin and most other blockchains. Project Eleven’s 2026 report estimates Q-Day is likely between 2030 and 2033.
How much Bitcoin is at risk from quantum computing? Project Eleven estimates approximately 6.9 million BTC – held in wallets where the public key is exposed on-chain – could be at direct risk once a cryptographically relevant quantum computer exists. That represents roughly 33% of Bitcoin’s total supply.
Can Bitcoin be made quantum-resistant? Yes, but it requires a network-wide upgrade to post-quantum cryptographic signatures – a technically and politically complex process. NIST has finalized post-quantum standards; setting up them in Bitcoin requires broad consensus among developers, miners, and node operators.
*Sources: Project Eleven (2026 Quantum Threat to Blockchains Report), CoinDesk, Decrypt, Bitcoin Ethereum News, Consensus Miami 2026.*
