Quantum Computing and Bitcoin’s Security: A Balanced View

Recent headlines suggest that Bitcoin is on the brink of collapse due to quantum computing advancements, which some claim could crack its cryptography in mere minutes or even disrupt the network. However, academic research offers a more tempered perspective. Many of the frequently referenced “breakthroughs” are based on oversimplified problems that do not accurately represent real-world cryptographic scenarios. According to research presented by Bitcoin hardware entrepreneur Rodolfo Novak, the energy needed for quantum attacks on Bitcoin is comparable to that of a small star.

Two Types of Threats to Bitcoin’s Security

Bitcoin’s security hinges on two different mathematical principles, each threatened by quantum computing in unique ways. The first is Shor’s algorithm, which poses a risk to wallet security by potentially allowing a powerful quantum computer to derive a private key from a public key, enabling theft of funds and undermining ownership guarantees. The second threat involves Grover’s algorithm, which relates to mining and could theoretically speed up the process miners use to find valid blocks. However, as one of the academic papers indicates, the practical advantages of Grover’s algorithm diminish significantly when attempting to construct the required quantum machines.

A Clear Distinction Between Threats

These two threats are often conflated in media narratives but have different implications when considering real-world limitations. Two recent papers, one a serious engineering analysis and the other a satirical take, argue that the current fear on crypto Twitter mixes a legitimate long-term concern with sensationalism. The first paper, by Pierre-Luc Dallaire-Demers and the BTQ Technologies team, examines whether a quantum computer could out-mine Bitcoin through Grover’s algorithm. Mining not only fulfills the block production process but also prevents a 51% attack, where one entity controls enough hash power to manipulate transaction records.

The Impracticality of Quantum Mining

While Grover’s algorithm theoretically provides a pathway to mining dominance, the researchers contend that the required hardware and energy resources make it infeasible. They estimate that a quantum mining operation would need approximately 10²³ qubits drawing 10²⁵ watts, a level of energy output nearing that of a star. This requirement far eclipses the current energy consumption of the entire Bitcoin blockchain, making a large-scale quantum 51% attack not only financially burdensome but practically unattainable.

Critique of Quantum Factoring Breakthroughs

The second paper by Peter Gutmann and Stephan Neuhaus critiques the persistent assertions that quantum computers are already breaking encryption. Their research aimed to replicate major quantum factoring “breakthroughs,” often resulting in their success using rudimentary tools. They argue that many of these supposed advancements are misleading due to highly controlled conditions that do not accurately reflect real-world complexities. The need for clear and stringent evaluation standards is emphasized to ensure genuine progress is being reported.

Recognizing Genuine Risks

Both papers acknowledge that the quantum threat to Bitcoin is not entirely negligible. The more pressing vulnerability lies in Bitcoin wallets where extensive key information is already recorded on the blockchain, making them prime targets if quantum technology continues to advance. A recent paper suggests that the computing power needed for such an attack may decrease significantly, with Bitcoin blockchain encryption in jeopardy from attacks that could take only minutes. However, the authors caution that building such a machine remains physically unfeasible and would require substantial engineering innovations.

Looking Forward: Mitigation Strategies

Despite the real quantum threat to Bitcoin, it’s crucial to understand the physical constraints involved in creating quantum attack machines. Developers are already exploring solutions, such as minimizing key exposure and creating new signature types to withstand potential quantum attacks. Currently, the market appears to be skeptical about substantial changes, with traders assessing a low probability of an overhaul to Bitcoin’s mining algorithm before 2027, but exhibiting greater optimism regarding enhancements aimed at reducing wallet-related risks.