By NHI Mgmt Group Editorial TeamDomain: Cyber SecuritySource: ChainalysisPublished November 19, 2025

TL;DR: Quantum computing progress is accelerating even though practical systems are still estimated to be five to 15 years from breaking current crypto security, according to Chainalysis analysis of Google’s recent breakthrough. The strategic issue is not panic but cryptographic readiness, because harvest-now, break-later risk and post-quantum migration planning are already governance problems, not future ones.


At a glance

What this is: This is an analysis of how quantum computing could eventually weaken blockchain cryptography, with a focus on current timelines, attack scenarios, and post-quantum preparation.

Why it matters: It matters because identity, key management, and signing trust are core controls across digital asset platforms, and quantum readiness will affect cryptographic governance far beyond cryptocurrency.

By the numbers:

👉 Read Chainalysis’ analysis of quantum computing risk for cryptocurrency security


Context

Quantum computing changes the threat model for cryptographic trust because it could eventually make today’s public-key protections much easier to break. In blockchain environments, that shift is not abstract: signing keys, address design, and migration planning are all part of the security boundary, and the same governance questions will extend to broader identity and secrets management programmes.

The article’s central point is measured rather than alarmist. Current quantum systems are not yet capable of breaking today’s cryptocurrency security at scale, but the preparation window is already open, which makes cryptographic inventory, migration strategy, and standards monitoring operational tasks rather than theoretical research.


Key questions

Q: How should organisations prepare for quantum risk before cryptography actually breaks?

A: Start with a full cryptographic inventory, then rank where public-key exposure, key reuse, and long-lived signatures create the most future risk. Build a migration roadmap that includes hybrid cryptography, testing, rollback options, and dependency owners. The goal is algorithm agility, because waiting until a break is proven leaves too little time to change safely.

Q: Why does quantum computing matter for key and certificate governance?

A: Quantum computing matters because it can eventually undermine the trust material that certificates, signatures, and identity systems rely on. Even if current systems remain safe today, long-lived keys and exposed public keys become liabilities if they cannot be rotated or replaced before quantum capability matures. Governance must therefore focus on discoverability and replacement readiness.

Q: How should security teams start a post-quantum migration program?

A: Start by inventorying where cryptography is actually used, then measure external exposure first. Public domains, certificates, SSH keys, and service accounts should be mapped to owners and replacement paths before standards deadlines force a rushed program. A quick scan is useful, but the real work is governance, sequencing, and lifecycle control.

Q: Which controls help reduce harvest-now, break-later exposure?

A: Controls that shorten exposure duration are the most effective, including key rotation, eliminating reuse, reducing public visibility of sensitive cryptographic material, and maintaining a complete dependency map. Where possible, combine that with hybrid support for newer algorithms so future migration is less disruptive. In practice, this is lifecycle management for trust material.


Technical breakdown

How quantum computing changes cryptographic risk

Classical computers process bits as 0 or 1, while quantum computers use qubits that can exist in multiple states through superposition. That matters because algorithms such as Shor’s can solve certain math problems far faster than classical methods, including the elliptic-curve problems used by ECDSA signatures. Grover’s algorithm affects hash security differently by reducing effective strength rather than fully breaking the primitive. The result is not immediate compromise, but a future where public-key trust assumptions no longer hold in the same way.

Practical implication: inventory where ECDSA, RSA, and similar primitives protect assets so migration planning starts before exposure becomes urgent.

What harvest now, break later means for keys and addresses

The harvest-now, break-later model assumes attackers can collect public keys or other cryptographic material today and decrypt or derive value from it later once quantum capability matures. In blockchain systems, this is especially relevant where public keys are already exposed, such as certain legacy address types or reused addresses. The problem is governance as much as cryptography: if key exposure is permanent, then the attack window can span years even when no immediate exploit exists.

Practical implication: reduce long-lived key exposure and address reuse so tomorrow’s quantum capability does not inherit today’s visible cryptographic footprint.

Why post-quantum cryptography migration is an operational problem

Post-quantum cryptography, or PQC, replaces vulnerable schemes with algorithms designed to resist quantum attacks, such as lattice-based approaches selected by NIST. In practice, migration is difficult because systems must preserve compatibility, avoid breaking signatures or wallets, and support mixed environments during transition. That means the challenge is not just choosing a new algorithm. It is building a phased cryptographic lifecycle with testing, rollback planning, and ecosystem coordination across dependent applications and counterparties.

Practical implication: treat PQC as a phased migration programme with dependency mapping, not as a one-time algorithm swap.


Threat narrative

Attacker objective: The attacker’s objective is to recover signing authority over exposed assets and transfer or control them once quantum capability is sufficient.

  1. Entry begins with public-key material being exposed through normal blockchain usage, especially where legacy address formats or reused addresses reveal information that should not be permanently visible.
  2. Credential access occurs later when an attacker leverages stored public keys and future quantum capability to derive private keys or otherwise undermine signing trust.
  3. Impact follows when private-key compromise enables unauthorised transfer of funds, transaction authorisation, or long-term weakening of blockchain trust guarantees.

NHI Mgmt Group analysis

Quantum readiness is becoming a cryptographic governance issue, not just a research topic. The important shift is that organisations cannot wait for a publicly demonstrated break before planning migration. Once keys, signatures, and addresses are widely deployed, the cost of change rises sharply. Practitioners should treat algorithm agility as a core control because cryptography that cannot be replaced quickly becomes a lifecycle risk.

Harvest-now, break-later is the clearest practical bridge between quantum risk and identity security. The same logic applies to secrets, certificates, tokens, and signing keys outside blockchain systems. If sensitive material is exposed today, future compute advances can convert that exposure into delayed compromise. The practitioner conclusion is straightforward: reduce exposure duration now, not after a quantum event.

Post-quantum migration will expose hidden dependency debt across identity and trust systems. Many programmes assume cryptography can be swapped without major business impact, but signing, authentication, and verification workflows are embedded in application and infrastructure design. That means quantum readiness will force teams to identify where cryptographic trust is hard-coded into workflows. The governance lesson is to map dependencies before remediation starts.

NIST standardisation matters because it turns quantum preparedness into a control design problem. Once standards exist, the question shifts from whether quantum-safe cryptography is real to where it should be piloted first, how coexistence will work, and which systems can tolerate change. For IAM and NHI teams, that means certificates, service identities, and signing infrastructure should enter the same migration inventory as human authentication assets. The conclusion is to build a cryptographic transition plan now.

Quantum risk reinforces a broader identity principle: trust material must be discoverable, classifiable, and replaceable. Whether the asset is a blockchain key, an API certificate, or a machine identity credential, governance fails when teams cannot answer what it protects, how long it persists, and what replaces it if the underlying primitive becomes obsolete. Practitioners should use quantum planning to harden identity lifecycle discipline across the stack.

What this signals

Quantum readiness will land in the same programme workstream as machine identity, secrets, and certificate governance. The teams that already track where non-human credentials live, how they are rotated, and what depends on them will be better placed to absorb PQC migration. That operational discipline matters because the same exposure problems that affect service accounts also affect signing trust and cryptographic transition planning.

The security signal is clear: if your organisation cannot confidently map where identity trust material exists, quantum migration will amplify the gap rather than solve it. The practical response is to align cryptographic lifecycle management with identity governance, so certificates, keys, and tokens are treated as assets with owners, expiry, and replacement paths.

Blast-radius control becomes the defining concept for quantum-era cryptography. If a primitive becomes obsolete, the key question is how much of the environment depends on it and how quickly that dependency can be removed. Practitioners should pair discovery with standards tracking and use NIST guidance to structure phased migration, not emergency replacement.


For practitioners

  • Inventory cryptographic dependencies Catalogue where ECDSA, SHA-256, Keccak-256, RSA, certificates, and signing keys are used across wallets, services, and infrastructure. Include legacy address formats, reused keys, and externally facing verification paths so you can rank migration urgency by exposure and business criticality.
  • Build a phased PQC migration plan Map systems that can adopt post-quantum cryptography immediately, systems that need hybrid compatibility, and systems that require protocol changes before migration. Use staged rollouts, rollback criteria, and dependency testing to avoid breaking transaction flows or authentication paths.
  • Reduce long-lived public-key exposure Eliminate address reuse where possible and minimise scenarios where public keys remain exposed indefinitely. Treat any publicly visible key material as future-dated risk, especially for high-value assets and long-retention systems.
  • Track NIST and ecosystem standards work Monitor NIST PQC standardisation and align implementation choices with wallet, certificate, and platform vendors that support quantum-resistant formats. Pair that work with internal policy updates so procurement, architecture, and security teams move in the same direction.

Key takeaways

  • Quantum computing does not create an immediate blockchain collapse, but it does create a credible future risk window that needs governance now.
  • The biggest practical exposure is harvest-now, break-later, where public keys and long-lived cryptographic material can be collected today for later abuse.
  • Organisations should build cryptographic inventory and migration plans now, because PQC readiness is an identity and lifecycle problem as much as a cryptography problem.

Standards & Framework Alignment

This section maps relevant standards and security frameworks to the operational risks and controls described in this guidance.

MITRE ATT&CK address the attack and risk surface, while NIST AI RMF, NIST CSF 2.0, NIST SP 800-53 Rev 5 and CIS Controls v8 set the governance and control requirements practitioners need to meet.

FrameworkControl / ReferenceRelevance
NIST AI RMFGOVERNPQC readiness is a governance and accountability issue for cryptographic change management.
NIST CSF 2.0PR.DS-1Data protection depends on the cryptography that secures signatures and transaction integrity.
NIST SP 800-53 Rev 5SC-13Cryptographic protection is central to the article’s discussion of quantum-resistant transition.
CIS Controls v8CIS-3 , Data ProtectionCryptographic inventory and protection align with data protection and secure handling expectations.
MITRE ATT&CKTA0006 , Credential Access; TA0040 , ImpactDelayed key compromise and eventual unauthorised transfer map to credential access and impact.

Catalogue where cryptography protects sensitive systems and schedule migration where exposure is longest.


Key terms

  • Post-Quantum Cryptography: Cryptographic algorithms designed to remain secure against attacks from sufficiently powerful quantum computers. In practice, PQC is a migration problem as much as an algorithm problem because organisations must replace trust anchors, certificates, and secrets without breaking identity-dependent systems.
  • Harvest Now, Break Later: An attack pattern where adversaries collect encrypted or publicly visible cryptographic material today and wait until future compute capability makes it useful. The risk is especially relevant when data, keys, or signatures will remain valuable long enough for the threat to mature.
  • Algorithm Agility: Algorithm agility is the practical ability to move from one cryptographic algorithm to another without breaking existing identity and trust relationships. It depends on tooling, policy, and renewal automation that can accept new algorithms while preserving service continuity.
  • Public-Key Exposure: The condition where public keys are visible in a way that creates long-term attack value, such as on-chain transaction data or reused address formats. Exposure is not a vulnerability by itself, but it becomes a serious risk when future advances can turn it into private-key compromise.

What's in the full article

Chainalysis' full analysis covers the operational detail this post intentionally leaves for the source:

  • How Bitcoin and Ethereum cryptographic primitives map to public-key exposure and migration risk
  • The quantitative basis for the five to 15 year quantum timeline and where that estimate comes from
  • How quantum-resistant signature schemes and hybrid migration approaches affect blockchain compatibility
  • The article’s discussion of ecosystem coordination across developers, analytics providers, and standards bodies

👉 Chainalysis’ full article covers public-key exposure, PQC migration options, and the blockchain-specific implications in more detail.

Deepen your knowledge

The NHI Foundation Level course, the industry's only accredited NHI security programme, covers NHI governance, machine identity security, and secrets management. It helps security and identity practitioners build the lifecycle discipline needed for cryptographic and access-control programmes.
NHIMG Editorial Note
Published by the NHIMG editorial team on July 11, 2026.
NHI Mgmt Group — the independent authority on Non-Human Identity, IAM, and Agentic AI security. nhimg.org