Crypto’s quantum problem has moved from a theoretical concern to an immediate engineering and governance test for blockchain networks and their service providers. With NIST finalizing its first post-quantum cryptography standards in August 2024, Coinbase’s advisory board urging industry-wide preparation, and Google’s March research compressing the resources needed to break today’s signatures while setting a 2029 internal migration target, the sector is being pushed to prove that “quantum-ready” means a real, coordinated plan—not just a slogan.

Technology Overview

NIST’s decision to complete its initial three post-quantum standards in August 2024 reframed the calendar for action, telling organizations to begin migrating now and setting 2035 as the horizon to deprecate quantum‑vulnerable public‑key algorithms from its guidance. That timetable places blockchains, wallets, custodians, exchanges, and key management providers on the same path as traditional enterprises that rely on digital signatures and key exchange every day.

Coinbase’s advisory board has reached a similar conclusion. Its recent report argues that the crypto ecosystem should prepare before urgency arrives, warning that the lack of clear public migration decisions is already discouraging some investment. In other words, migration planning is not only a technical matter—it is a market signal.

Google sharpened that signal in March by updating its threat model to prioritize authentication services and by setting an internal post‑quantum migration timeline for 2029. The company’s research also assembled circuits that cut the estimated physical qubits needed to attack 256‑bit elliptic‑curve discrete logarithm problems to under half a million—nearly a twenty‑fold reduction relative to prior resource estimates—intensifying calls for practical readiness across live networks.

These directives converge on the same structure: readiness is the operative issue. Post‑quantum planning is no longer just a cryptography debate about which signature wins on paper; it has become a measure of governance, execution capability, and credibility for organizations that safeguard digital assets.

How It Works

Coinbase’s paper maps the migration burden across the full crypto stack. It begins at the protocol level—consensus and execution layers—and extends through wallet software, exchanges, custodians, key management systems, and hardware. Each layer introduces dependencies that must align for a seamless transition.

The report cautions that hardware‑based wallets and hardware security modules take time to update, that multiparty computation support can vary by algorithm, and that many major blockchains have yet to commit to specific post‑quantum signature schemes. Against this backdrop, NIST defines “crypto‑agility” as the ability to replace and adapt algorithms across protocols, applications, hardware, firmware, and infrastructure while preserving operations. The practical question for infrastructure providers is whether their end‑to‑end stack can absorb such a change without service disruption. For many, that answer remains unresolved.

Bitcoin illustrates the coordination challenge. According to Coinbase’s paper, core developers largely maintain a wait‑and‑see posture on the details of a full migration, a stance that carries a cost in market uncertainty. The paper cites an estimate of roughly 13.6 million exposed Bitcoin addresses whose public keys are already visible on‑chain, and it suggests that once a post‑quantum path is adopted, the transition would still require several months of coordinated work. As the community discusses BIP 361, the window allows other chains, wallets, and infrastructure providers to frame concrete planning as a mark of operational seriousness.

Other ecosystems are setting out their paths. Coinbase’s paper points to Ethereum’s migration plan and notes that several layer‑2 networks—including Optimism, Arbitrum, and Base—have announced post‑quantum plans. Optimism has gone further by publishing a January 2036 “flag day,” after which ECDSA signing keys will no longer control externally owned account assets. Algorand has released official materials stating that it executed the first post‑quantum transaction on its mainnet in 2025 using Falcon signatures, positioning an on‑chain demonstration as part of its readiness narrative.

Industry Impact

The shift to productized readiness is already visible at the infrastructure edges. Trezor markets the Safe 7 hardware wallet as built on a “quantum‑ready architecture,” emphasizing that preparedness covers not only transaction signing but also firmware authenticity and hardware verification. In cloud services, AWS Key Management Service now supports ML‑DSA digital signatures and hybrid post‑quantum TLS using ML‑KEM, positioning migration as a near‑term priority for users with long‑term confidentiality needs.

This commercial momentum is part of a broader credibility test. Post‑quantum readiness is emerging as a way for firms to demonstrate maturity before a disruptive risk fully materializes—akin to how proof‑of‑reserves, SOC reports, and security certifications shape institutional trust. Coinbase’s report explicitly recommends that communities make difficult migration decisions public sooner rather than later, arguing that current uncertainty is already influencing where capital sits.

Government timelines reinforce this direction. In March, China announced plans to develop national post‑quantum cryptography standards within three years, prioritizing finance and energy. The UK’s NCSC has outlined milestones for 2028, 2031, and 2035, saying those dates anchor investment and security planning. The US and South Korea are likewise working toward 2035 migration horizons, placing crypto alongside other sectors in a coordinated global transition. A composite timeline stretches from NIST’s August 2024 standards to Optimism’s January 2036 flag day, marking institutional checkpoints across governments, regulators, and crypto networks.

Google’s March paper also reframed the urgency conversation. By consolidating resources that shrink the gap to a cryptographically relevant quantum computer in the context of elliptic‑curve signatures, it underscored how shifting estimates can affect confidence. The researchers further argue that inaccurate or unsubstantiated resource forecasts produce fear, uncertainty, and doubt, potentially distorting security decisions even before any real‑world attack occurs. Coinbase’s analysis lands on a parallel point: credibility around migration planning is already a live market input, independent of the exact arrival date of a capable quantum machine.

Future Implications

Two distinct paths now present themselves. In the first, readiness becomes a bona fide trust badge. Firms publish specific algorithms under consideration, public roadmaps with deadlines, custody and wallet upgrade plans, hardware and KMS support, and clear governance processes. Migration remains difficult, but coordination across protocol, custody, hardware, and key‑management layers turns preparedness into a due‑diligence advantage and eventually a sales signal. The beneficiaries are those that move the entire dependency chain—L1 and L2 protocol teams, wallet software, hardware vendors, KMS providers, exchanges, custodians, and MPC and HSM vendors—in concert.

The second path is theater. Projects make broad “quantum‑ready” claims without committing to signature schemes, timelines, hardware paths, or policies for dormant assets and recovery. Operational ambiguity lingers, dependencies go unresolved, and migration cannot be executed smoothly under pressure. In such an environment, silence and vagueness become negative trust signals while competitors that disclose concrete dependencies and implementation steps—even if still incomplete—gain credibility.

Across both paths, Coinbase’s central observation holds: many major blockchains have not yet adopted specific post‑quantum signature schemes. If that vagueness persists, the same market attention that rewards clarity will punish theater. Conversely, as vendors like Trezor and AWS productize elements of post‑quantum security, reputational sorting accelerates. Institutions and sophisticated users are already weighing credible roadmaps when deciding where to keep capital.

The industry’s next phase will test the substance behind “crypto‑agility.” NIST’s definition sets a high bar—seamless algorithmic replacement across software and hardware while keeping operations intact. Meeting that bar will require inventories, interoperability planning, governance, and budget allocation across every layer of operations. With standards solidifying and timelines public, post‑quantum planning is no longer a distant contingency. It is a present‑tense obligation, and the projects that treat it that way are likely to look more credible to users and institutions as the 2035 horizon draws nearer.