Bitcoin must act quickly to defeat the quantum threat before 2030

Context and Impact

At the All-In Summit 2025, Solana co-founder Anatoly Yakovenko issued a urgent warning, stating there is a 50% probability that quantum computing could break Bitcoin’s cryptographic security within the next five years. This threat primarily targets the Elliptic Curve Digital Signature Algorithm (ECDSA), which secures Bitcoin transactions by generating digital signatures using private and public keys. A sufficiently advanced quantum computer could exploit Shor’s algorithm to derive private keys from public keys, potentially compromising wallets and enabling unauthorized transactions.

Experts are divided on the timeline: David Carvalho of Naoris Protocol suggests quantum risks could materialize in under five years, while Blockstream CEO Adam Back estimates a 20-year window. Despite this disagreement, the quantum computing market is projected to reach $65 billion by 2030, with companies like Quantinuum and IQM advancing fault-tolerant systems, underscoring the need for proactive measures.

Implications

The potential vulnerability of ECDSA necessitates urgent action from the Bitcoin community. Key implications include:

1. Address Exposure: Bitcoin stored in reused addresses or older “pay-to-public-key” (p2pk) formats is immediately vulnerable if quantum computers advance, as these public keys are already exposed on the blockchain. Approximately 6 million BTC (25% of the supply) currently reside in such high-risk addresses.

2. Migration Imperative: Moving funds to non-reused, quantum-resistant addresses or implementing post-quantum cryptographic solutions like Winternitz One-Time Signatures (WOTS) can mitigate risks. El Salvador’s recent fragmentation of its Bitcoin holdings exemplifies proactive risk management.

3. Governance Challenges: Upgrading Bitcoin’s protocol to incorporate quantum-resistant algorithms would require a hard fork and broad consensus, a complex process in a decentralized ecosystem. Proposals like the Quantum-Resistant Address Migration Protocol (QRAMP) aim to address this but face logistical and philosophical hurdles.

4. Operational Preparedness: Traders, treasuries, and custodians should audit address types, avoid key reuse, and develop migration strategies. Yakovenko’s 2030 milestone serves as a benchmark for testing crypto-agility and contingency plans.

In summary, while the timeline for quantum threats remains uncertain, Yakovenko’s warning highlights the critical need for the Bitcoin ecosystem to prioritize cryptographic evolution. Decisive action, including fund migration and protocol upgrades, will be essential to safeguarding Bitcoin’s long-term security.