惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

N
News | PayPal Newsroom
P
Proofpoint News Feed
Cyberwarzone
Cyberwarzone
C
Cisco Blogs
SecWiki News
SecWiki News
Know Your Adversary
Know Your Adversary
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
Vercel News
Vercel News
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
罗磊的独立博客
NISL@THU
NISL@THU
WordPress大学
WordPress大学
Hacker News - Newest:
Hacker News - Newest: "LLM"
T
Threat Research - Cisco Blogs
AI
AI
Simon Willison's Weblog
Simon Willison's Weblog
Security Archives - TechRepublic
Security Archives - TechRepublic
有赞技术团队
有赞技术团队
L
LINUX DO - 热门话题
Hacker News: Ask HN
Hacker News: Ask HN
V
V2EX
G
GRAHAM CLULEY
TaoSecurity Blog
TaoSecurity Blog
Hugging Face - Blog
Hugging Face - Blog
D
Darknet – Hacking Tools, Hacker News & Cyber Security
F
Fortinet All Blogs
博客园 - 叶小钗
博客园 - 三生石上(FineUI控件)
云风的 BLOG
云风的 BLOG
Recorded Future
Recorded Future
Latest news
Latest news
The Hacker News
The Hacker News
aimingoo的专栏
aimingoo的专栏
T
Troy Hunt's Blog
S
Schneier on Security
I
Intezer
Google DeepMind News
Google DeepMind News
A
Arctic Wolf
Apple Machine Learning Research
Apple Machine Learning Research
Threat Intelligence Blog | Flashpoint
Threat Intelligence Blog | Flashpoint
T
Threatpost
爱范儿
爱范儿
The Register - Security
The Register - Security
S
SegmentFault 最新的问题
Blog — PlanetScale
Blog — PlanetScale
博客园 - 聂微东
宝玉的分享
宝玉的分享
Recent Commits to openclaw:main
Recent Commits to openclaw:main
美团技术团队
B
Blog RSS Feed

PostQuantum – Quantum Computing, Quantum Security, PQC

Lightning Network's Quantum Problem Ethereum's Five Quantum Vulnerabilities Bitcoin's Quantum Vulnerability — Anatomy How Close Is the Quantum Threat? Resource Estimates The Quantum Threat to Cryptocurrencies: What's Real Lattice-Based PQC "Limitations" Paper — A Reality Check China's Hanyuan-2 Dual-Core Quantum Computer Pick One Layer First for Your Post-Quantum Migration Cisco Quantum Switch: Room-Temperature Qubit Routing IonQ Claims Q-Day by 2029 — Here's What They Actually Said Project Eleven's 110-Page Quantum Blockchains Report QuantWare Raises $178M Series B Q-CTRL Claims Practical Quantum Advantage Quantum Computing Simulates 12,635-Atom Protein How Quantum Snake Oil Vendors Respond to Hard Questions Simulated Quantum Entanglement | PostQuantum.com Quantum Snake Oil: Guide to Misleading Quantum Terms Quantum AI Trading — Quantum Snake Oil Dictionary Quantum-Proof — Quantum Snake Oil Dictionary Quantum-Grade Encryption — Quantum Snake Oil Dictionary Quantum-Safe Certified — Quantum Snake Oil Dictionary Military-Grade Quantum Encryption | PostQuantum.com What Is a QBOM? Quantum Bill of Materials vs CBOM Explained Quantum-Inspired Encryption — Quantum Snake Oil Dictionary What Is Trust Now, Forge Later (TNFL)? Quantum Blockchain — Quantum Snake Oil Dictionary What Is PQC Migration? The Largest Cryptographic Overhaul Quantum Financial System (QFS) | PostQuantum.com What Is QKD (Quantum Key Distribution)? What Is Quantum Error Correction (QEC)? Unhackable Quantum Encryption | PostQuantum.com Unconditionally Secure — Quantum Snake Oil Dictionary Perfect Secrecy — Quantum Snake Oil Dictionary Information-Theoretic Security | PostQuantum.com Quantum Encryption / Quantum Cryptography Quantum-Enhanced — Quantum Snake Oil Dictionary Quantum-Safe vs Quantum-Resistant vs Post-Quantum Anatomy of Quantum Denial: Bitcoin's Example What Is a Logical Qubit? The Metric That Actually Matters What Is a CRQC? Quantum Computer That Breaks Encryption What Is Q-Day? When Quantum Computers Break Encryption What Is Harvest Now, Decrypt Later (HNDL)? What Is Grover's Algorithm? What Is Shor's Algorithm? The Quantum Threat Explained What Is Quantum Safe? What the Label Means for CISOs What Is Quantum Computing Security? What Is Quantum Cyber Security? What Is Quantum Cryptography? QKD, PQC, and related? Quantum Security: A Complete Guide for Security Leaders What Is Post-Quantum Cryptography (PQC)? Crypto-Agility Is an Architecture Problem, Not a Library Swap IBM Quantum Advantage 2026: Heron + Fugaku Analyzed U.S. Quantum Policy: NQI Reauthorization and PQC Bills The Narrow Advantage: Why Quantum Computing Will Transform Five Industries and Disappoint Twenty The Error Correction Revolution Rewriting Quantum Timelines The Signature Supply Chain: How Deep Does Digital Trust Go? Quantum Chemistry's Honest Ledger: What the Resource Estimates Actually Say About Drug Discovery, Catalysis, and Materials Design Why Quantum Won't Save Wall Street (Yet): An Honest Assessment of Quantum Computing in Finance PQC Standards Fragmentation Quantum Sovereignty and the Utility Trap The Decoder Bottleneck: The CRQC Challenge Nobody Is Talking About IonQ Publishes Complete Fault-Tolerant Blueprint for Trapped Ions — The Walking Cat Architecture Quantum Computing by 2033: Which Industries Win, Which Wait, and Why Nature Reviews Publishes the Definitive CMOS–Spin Qubit Compatibility Assessment IonQ Photonic Interconnect: First Networked Commercial Quantum Computers QuEra Achieves 2:1 Physical-to-Logical Qubit Ratio With Ultra-High-Rate qLDPC Codes Grover's Algorithm vs AES - Why "Ignore It" Is Almost Right McKinsey Quantum Monitor 2026: Tipping Point? Meta PQC Migration Playbook: Lessons for CISOs NVIDIA Ising: Open AI Models for Quantum Calibration and Error Correction Harvard's Cascade Neural Decoder PQC Signature Migration Before Encryption Architecture Matters as Much as the Algorithm: Q-CTRL's Heterogeneous Quantum Computer Design Cuts RSA-2048 to 190k-381k Qubits China's Quantum Sensing Ecosystem: From Deep-Sea Diamonds to Drone-Mounted Submarine Hunters China's Quantum Sensing Ecosystem: From Deep-Sea Diamonds to Drone-Mounted Submarine Hunters China's Quantum Networking and QKD — World's Most Ambitious Quantum Communication Program Anthropic's Mythos Preview and the End of a Twenty-Year Cybersecurity Equilibrium China's Quantum Networking and QKD — World's Most Ambitious Quantum Communication Program Cloudflare Joins Google: Two Internet Giants Now Say 2029 for Post-Quantum Migration China's Quantum Computing Hardware: The Core Capability the West Keeps Misjudging China's Quantum Computing Hardware: The Core Capability the West Keeps Misjudging QuiX Quantum Achieves First Below-Threshold Error Mitigation in Photonic Quantum Computing China's Quantum Talent Ecosystem: Building a Superpower's Workforce Quantum Threat Timeline Report 2025: Record Predictions, But Can the Survey Keep Up? China's Quantum Talent Ecosystem: Building a Superpower's Workforce China's Hefei National Laboratory: The Nerve Center of a Quantum Superpower China's Hefei National Laboratory: The Nerve Center of a Quantum Superpower Gauge Theory Meets Quantum Computing China's 15th Five-Year Plan Makes Quantum an Industrial Imperative — Not Just a Research Priority China's 15th Five-Year Plan Makes Quantum an Industrial Imperative — Not Just a Research Priority QuantumShield360 AI Achieves World's First Complete Post-Quantum Cryptography Migration — Full Quantum Resilience Across All Enterprise Systems 10,000 Qubits to Run Shor's Algorithm Google Quantum AI Achieves 10x Reduction in Resources to Break Bitcoin's Cryptography The U.S. Intelligence Community Just Put Quantum on Equal Footing with AI. And Expanded the Threat Definition Google Just Drew a Line in the Sand: PQC Migration by 2029 Silicon Crosses the Logical Threshold: First Universal Logical Operations Demonstrated in a Silicon Quantum Processor The 1,000-Qubit Ceiling That Probably Isn't Science Confirms What Large Corporate Survivors Already Knew - Organizational Bullshit Makes You Worse at Your Job A New Algorithm Shrinks the Quantum Attack Surface for ECC Quantinuum Squeezes 94 Logical Qubits from 98 Physical — But What Does It Actually Mean?
Aaronson Warns: CRQC by 2029 Is Plausible
Marin Ivezic · 2026-04-30 · via PostQuantum – Quantum Computing, Quantum Security, PQC

April 30, 2026 — Quantum computing theorist Scott Aaronson has issued his most direct warning yet about the timeline for cryptographically relevant quantum computers (CRQC), stating in a blog post yesterday that experts he trusts now believe such systems “ought to be possible by around 2029.” The warning came hours after Aaronson was elected to the U.S. National Academy of Sciences.

“Some of the most reputable people in quantum hardware and quantum error-correction — people whose judgment I trust more than my own on those topics — are now telling me that a fault-tolerant quantum computer able to break deployed cryptosystems ought to be possible by around 2029,” Aaronson wrote on his blog Shtetl-Optimized.

The MIT-educated computer scientist, who holds the Schlumberger Centennial Chair at the University of Texas at Austin, explicitly framed his post as a warning to the cybersecurity community: “If quantum computers start breaking cryptography a few years from now, don’t you dare come to this blog and tell me that I failed to warn you. This post IS your warning.”

Aaronson’s warning follows his participation in a Coinbase-convened panel that produced a detailed position paper on quantum threats to cryptocurrency. His co-authors included Stanford cryptographer Dan Boneh, Ethereum Foundation’s Justin Drake, and prominent security researchers Sreeram Kannan, Yehuda Lindell, and Dahlia Malkhi.

The blog post reveals that major quantum computing companies have adopted an accelerationist stance toward CRQC development. According to Aaronson, these companies argue that racing to build cryptographically relevant quantum computers is “the most ethical, socially responsible thing” they can do, reasoning that open development by U.S. companies is preferable to secret development by foreign adversaries.

This logic mirrors arguments made by AI companies about acceleration toward artificial general intelligence. Aaronson acknowledged the parallel: “Does it remind you of the galaxy-brained arguments that AI company after AI company has offered over the last decade for why ‘really, if you think about it, accelerating toward dangerous superintelligence is the safest course of action that we could possibly take’?”

The 2029 timeline represents a significant compression from previous estimates. While Aaronson himself admits “I’m not a timing guy,” he emphasized that the assessment comes from hardware specialists whose expertise exceeds his own in practical quantum computing implementation.

The announcement coincided with Aaronson’s election to the National Academy of Sciences, an honor he had previously suggested he might decline following Richard Feynman’s example. However, Aaronson wrote that he would accept the membership, noting his gratitude toward “a fine club like NAS that will have me as a member.”

My Analysis

When Scott Aaronson feels compelled to sound the alarm, I pay attention. This is the researcher who spent two decades methodically explaining what quantum computers can’t do, pushing back against hype at every turn. He’s the anti-vendor, the skeptic’s skeptic. So when he writes “This post IS your warning” in all caps, something has shifted.

What makes this announcement different – Aaronson has made a career out of deflating quantum hype. He invented complexity classes like PostBQP specifically to understand quantum computing’s limits. He’s consistently been the voice saying “slow down, this is harder than you think.” Now he’s telling us the opposite.

The 2029 timeline aligns disturbingly well with what I’ve been tracking in my Q-Day predictions analysis. Google’s recent quantum Bitcoin ECDLP paper already showed us the path forward. What Aaronson adds is confirmation that the hardware experts, the people actually building these machines, believe they can walk that path within five years.

But here’s what really caught my attention: the moral logic of acceleration that quantum computing companies have adopted. They’re essentially saying, “We’re going to break the internet responsibly before China does it secretly.” This reasoning feels alarmingly familiar from the AI safety discourse. Same playbook, different existential risk.

Aaronson directly compares this to AI acceleration arguments, and he’s right to do so. In both cases, we have companies racing toward a capability cliff while arguing that speed equals safety. The difference? With quantum computing, we at least have defensive measures ready in the form of post-quantum cryptography. With AI, we’re still arguing about whether the cliff exists.

The Coinbase position paper that Aaronson co-authored represents another crucial shift. When major financial infrastructure players start convening panels of top cryptographers to address quantum threats, we’ve moved beyond academic speculation. Coinbase manages billions in digital assets secured by elliptic curve cryptography. They’re not prone to paranoia.

This brings me back to what I’ve been arguing in my “deadlines are set” framework. Organizations keep treating Q-Day as a distant maybe rather than an approaching certainty with fixed migration deadlines. The gap between when we need to start migrating and when many organizations plan to start keeps widening.

Consider what a 2029 CRQC timeline actually means. If you’re a CISO of a major financial institution, you need your PQC migration substantially complete before adversaries gain quantum capability. Not started, not planned — complete. Given typical enterprise migration timelines of 3-5 years, you should already be in execution mode. Right now.

Yet most organizations I talk to are still in the “monitoring” phase. They’re waiting for clearer signals, more definitive timelines, perhaps a demonstrated quantum factorization of a real RSA key. Aaronson is telling us to stop waiting.

The comparison to Harvest Now, Decrypt Later (HNDL) attacks adds another layer of urgency. Every day we delay migration is another day of communications potentially compromised retroactively. Nation-states are almost certainly stockpiling encrypted data right now, betting they’ll decrypt it within the decade. Based on Aaronson’s timeline, that bet looks increasingly reasonable.

I’ve previously analyzed how advances in quantum error correction and logical qubit scaling create a narrowing funnel toward CRQC. What’s new is the conviction level. When quantum hardware experts tell Aaronson, someone they know will publicly call out bad predictions, that 2029 is achievable, they’re staking their professional credibility.

There’s something else worth noting about Aaronson’s framing. He positions this warning as fulfilling his “moral duty” as the writer of “The Internet’s Most Trusted Quantum Computing Blog Since 2005.” Behind the self-deprecating humor lies a serious point: the quantum computing community has been warning about this for decades. The “nobody could have predicted this” excuse won’t fly.

What should security leaders do with this information? First, internalize that the timeline uncertainty has narrowed, not expanded. When optimistic hardware engineers give pessimistic theorists a 2029 date, the error bars have shrunk. Plan accordingly.

Second, recognize that waiting for perfect clarity means waiting too long. Shor’s algorithm has been public since 1994. The mathematical threat is proven. The engineering path is increasingly clear. The last variable (timeline) is resolving into focus.

Third, understand that post-quantum migration isn’t like patching a vulnerability. You can’t push it out overnight. It requires inventory, prioritization, testing, deployment, and verification across your entire cryptographic infrastructure. Start now or accept the risk of being caught unprepared.

Aaronson closes with a reference to being a “WordPress-using rando,” but his real point is sharp: even with his newly minted National Academy of Sciences membership, with his decades of credibility in quantum computing, with his co-authorship of industry position papers — even with all that, many organizations will ignore this warning.

Quantum Upside & Quantum Risk - Handled

My company - Applied Quantum - helps governments, enterprises, and investors prepare for both the upside and the risk of quantum technologies. We deliver concise board and investor briefings; demystify quantum computing, sensing, and communications; craft national and corporate strategies to capture advantage; and turn plans into delivery. We help you mitigate the quantum risk by executing crypto‑inventory, crypto‑agility implementation, PQC migration, and broader defenses against the quantum threat. We run vendor due diligence, proof‑of‑value pilots, standards and policy alignment, workforce training, and procurement support, then oversee implementation across your organization. Contact me if you want help.

Talk to me Contact Applied Quantum