11/20/2025
Education

Top 10 quantum meets blockchain myths

By

What Is Q-Day and Why Quantum Computing Is a Real Threat to Blockchain Security

1. Quantum Computers will break blockchains next week

There is still plenty of work to do to get from today’s noisy machines to a system that can run stable, error-corrected Shor at scale. However, the threat is real. Attackers can harvest public keys now and run Shor’s algorithm later. The latest estimates show we may have a cryptographically relevant quantum computer (CRQC) as soon as 2028.

Sources:

2. Switching to post-quantum is easy

It is not a drop-in replacement. Post-quantum (PQ) signatures are larger, potentially slower, and require new signing and verification logic to be rolled out. Wallets, clients, contracts, hardware, consensus, gas limits, and recovery flows all need changes. Most systems were never designed for crypto-agility.

Sources:

3. Only future signatures are at risk

Anything signed in the past, today, or in the future with ECDSA or EdDSA is vulnerable to harvest-now-forge-later attacks. Public keys and signatures are already on-chain. Once a CRQC exists, attackers can recover the private keys linked to those signatures.

Sources:

4. Quantum can’t break SHA-256 so blockchains are safe

SHA-256 and hashes in general being safe does not protect signatures, accounts, or identities. Blockchains rely on signatures (Elliptic Curves) for ownership, transactions, and updates. If an attacker can derive your private key from your public key, they can move your assets, no matter how strong the hash function is.

Sources:

5. Multi-sig protects you from quantum attacks

If each signer uses ECDSA or EdDSA, the multi-sig is still quantum-breakable. Requiring more vulnerable keys does not create a stronger system. The security of a multi-sig is capped by its weakest underlying scheme.

Sources:

6. Blockchains will just upgrade

There is no global upgrade switch. Every chain, client, VM, wallet, exchange, contract, and key system, and user must migrate. Even if the protocol upgrades, users will still hold weak keys until their wallets and contracts move.

Sources:

7. We can just wait until quantum arrives

Migration takes years. You need new wallets, new derivation paths, new validators, new recovery rules, new contract patterns, and new infra. Waiting puts you in a position where your users’ keys are already harvested.

On top of this, once a CRQC exists, you can no longer trust ECC signatures at all. That means you cannot safely rotate keys, upgrade contracts, or sign the transactions required to migrate. The moment quantum arrives, the window for a safe transition closes. If you start the rollout after Q-Day, it is already too late.

Sources:

8. Quantum-safe means slow

Current PQ algorithms like ML-KEM and ML-DSA are fast enough today. With correct engineering, they match or beat many legacy algorithms. Performance is not quite the blocker. Integration and signature/public sizes are. On top of this, at Project Eleven, we are working to further optimize the performance of some of these algorithms. However, PQ algorithms as a whole are nascent and require audits, formal verification, and thorough review before being rolled out to production systems like blockchains.

Sources:

9. Quantum-resistant = quantum-ready

Being quantum-resistant means using a PQ algorithm for signatures. Being quantum-ready means having crypto-agility, upgrade/migration paths, recovery rules, cross-chain consistency, and a plan for long-term key rotation. Most systems lack all of this.

Sources:

10. Nobody is solving this problem yet

The work has already started. NIST, Ethereum researchers, and leading cryptographers have been pushing post-quantum for the last few years. At Project Eleven, we are building the canonical tools for digital asset protocols to migrate safely to a post-quantum world. The ecosystem is moving, but it needs far broader adoption.

Source:

11. BONUS: I use a hardware wallet so I am safe

A hardware wallet protects how your private key is stored. It does not change the cryptography behind that key. If the wallet uses ECDSA or EdDSA, the public keys on-chain are still vulnerable to a future CRQC. A quantum attacker never needs to touch your device. They only need the public data already published.

Hardware wallets are excellent for today’s threats. They do nothing against the quantum threat unless they natively support post-quantum keys and full crypto-agility.

Sources

If this post sparked your curiosity, you'll love our newsletter.

Join thousands of readers tracking the latest breakthroughs in quantum computing and cryptography.

Subscribe here: https://www.projecteleven.com/subscribe.

Related articles

Education
Q-Day Is a Forcing Function, Not a Funeral

Education
The risk of quantum to classical cryptography

Quantum computers could break the public-key cryptography securing the internet, crypto, messaging, and digital identity. Here’s what is at risk, why harvest-now-decrypt-later matters, and why migration to post-quantum cryptography must start now.

Education
RSA

A step-by-step guide to RSA encryption, covering the math, key generation, encryption process, and why prime factorization makes RSA secure.

Stay informed

Join thousands of readers tracking the latest breakthroughs in quantum computing and cryptography.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
© year Project Eleven
All rights reserved
Cookies PolicyPrivacy Policy
LinkedIn social media icon in black and white.Twitter logo with a bird silhouette in navy blue on a white background.