Quantum News
Sign In
Back to News
quantum-computing

The cryptography side of quantum computing is probably the most near-term consequential application -- and it gets less attention than it should

Reddit r/QuantumComputing (RSS)
Loading...
2 min read
0 likes
⚡ Quantum Brief
Shor’s algorithm poses an imminent threat to RSA and elliptic curve cryptography, the backbone of global internet security, by potentially breaking them on fault-tolerant quantum computers within years to a decade. NIST has already finalized post-quantum cryptography standards (lattice and hash-based) designed to resist quantum attacks, with migration underway in government and financial sectors using existing hardware. The cryptographic threat threshold is lower than general quantum advantage—thousands of logical qubits could crack 2048-bit RSA, aligning with near-term hardware roadmaps and accelerating urgency. The quantum cryptography market is projected to grow from $0.71 billion in 2025 to $3.73 billion by 2035 (18.3% CAGR), driven by early adoption of quantum-safe infrastructure. Organizations must prioritize migration timelines now, as realistic estimates for cryptographically relevant quantum machines are closer than widely assumed, demanding proactive security overhauls.
The cryptography side of quantum computing is probably the most near-term consequential application -- and it gets less attention than it should

Summarize this article with:

ChatGPTChatGPTPerplexityPerplexityClaudeClaudeGrokGrok

This community spends a lot of time on algorithms, hardware roadmaps, error correction, and applications in chemistry and optimization. All genuinely interesting. But I think the cryptography implications of quantum computing are the most consequential near-term story and they get treated as a sidebar when they deserve more. The core issue is Shor's algorithm. On a sufficiently powerful fault-tolerant quantum computer it can break RSA and elliptic curve cryptography -- the two algorithms that underpin basically all of current internet security. We do not have that computer today, but the trajectory of the hardware development means this is a planning horizon of years to maybe a decade or two, not a hypothetical. The response on the cryptography side has been moving fast by standards body timelines. NIST finalized post-quantum standards based on lattice and hash-based cryptography last year. These are designed to resist both classical and quantum attacks and can run on existing hardware. The migration work is real and already underway in government and some financial infrastructure. What is underappreciated from a quantum computing perspective is that the cryptographically relevant threshold is much lower than general-purpose quantum advantage. You do not need millions of logical qubits for Shor's to work against real key sizes -- estimates put it somewhere in the thousands of logical qubits range for 2048-bit RSA, which is a lot closer to where the hardware roadmaps are pointing. Roots Analysis puts the quantum cryptography market at USD 0.71 billion in 2025 growing to USD 3.73 billion by 2035 at 18.3% CAGR. A significant portion of that is organizations investing in quantum-safe infrastructure now rather than waiting. From a quantum computing lens, what is your read on realistic timelines for cryptographically relevant machines? That estimate matters a lot for how urgently organizations should be treating migration. submitted by /u/beardsatya [link] [comments]

Read Original

Tags

post-quantum-cryptography
quantum-standards
quantum-computing
quantum-algorithms
quantum-hardware
quantum-cryptography
quantum-advantage

Source Information

Source: Reddit r/QuantumComputing (RSS)