Quantum computing is coming for cryptocurrency. Just not the parts most people are worried about.
A study led by Coinbase, co-authored with researchers from Stanford University and the Ethereum Foundation, has found that privacy technologies built on zero-knowledge proof systems are mathematically immune to quantum attacks.
The finding cuts against the grain of mainstream anxiety about quantum computing, which tends to focus on encryption as the weak point. The real vulnerability, the researchers argue, is hiding in plain sight on the blockchain itself.
Zero-knowledge systems, including networks such as Aleo and Aztec and mixers like Railgun and PrivacyPools, rely on information-theoretic designs that do not depend on conventional encryption. That means they are secure even against a hypothetically unlimited attacker, the study concludes.
The researchers are not dismissing the quantum threat entirely. The paper states plainly that a large-scale fault-tolerant quantum computer will eventually be built and that blockchains need to prepare for that eventuality.
The problem, when it arrives, will be elliptic-curve signatures: the cryptographic mechanism that ties a Bitcoin address to its owner. Every time a user transacts, their public key becomes visible on the blockchain. A sufficiently powerful quantum computer could work backwards from a public key to derive the private key, giving an attacker full control of the wallet.
The numbers are sobering. The researchers estimate roughly 6.9 million bitcoin sit in addresses where public keys are already exposed on-chain, including approximately 1.7 million in older pay-to-public-key outputs. Some whale addresses hold more than 1,000 bitcoin each.
Research from Chaincode Labs cited in the paper suggests that between 20% and 50% of all bitcoin in circulation could be vulnerable, representing as much as $900 billion at current prices.
The industry is not standing still. Developer proposals, including BIP360, a Bitcoin improvement proposal designed to introduce quantum-resistant signatures, and an Ethereum Foundation upgrade roadmap, are noted in the paper as early preparatory steps.
Not everyone views the threat as urgent. Brokerage firm Bernstein described the issue as neither existential nor novel, and also not specific to crypto, framing it as a broad technology risk rather than a sector-defining one.
That may be true. But the Coinbase study suggests the more pressing question is not whether quantum computing will eventually threaten blockchain security, but which parts of the stack will survive when it does. On that measure, the privacy layer looks considerably more resilient than the base layer underneath it.
The recap
- Coinbase-led study finds zero-knowledge privacy systems immune to quantum attacks
- About 6.9 million coins are held in exposed Bitcoin addresses
- Developers propose fixes like BIP360; Ethereum posts upgrade roadmap
