Crypto Projects That Are Already Quantum-Resistant

Update 23 Jun 2026 • Reading Time 8 Minute
Image Crypto Projects That Are Already Quantum-Resistant
Reading Time: 8 minutes

In March 2026, Google published research that shifted the security calculus for crypto: breaking the Elliptic Curve Digital Signature Algorithm (ECDSA) used by Bitcoin requires approximately 1,200 logical qubits, not the 4,000 previously estimated. Approximately 6.9 million BTC (32% of the total circulating supply) are stored in wallets whose public keys have already been exposed on the blockchain, precisely at the point of vulnerability that a quantum computer could exploit. Most crypto networks have no solution deployed on mainnet, but several projects have been building post-quantum cryptography (PQC) from the ground up. This article covers the projects considered to have already achieved quantum-resistant technology.

Article Summary

  • 🔑 A quantum computer could break ECDSA (the digital signature system used by Bitcoin and Ethereum) once it reaches approximately 1,200 logical qubits.
  • ⚠️ Approximately 6.9 million BTC are held in wallets with exposed public keys, making them vulnerable to quantum attacks.
  • 🛡️ NIST established four official PQC standards in 2024: Dilithium, Falcon-1024, SPHINCS+, and XMSS.
  • 🔗 Bitcoin and Ethereum are actively working on PQC migration, but neither has an implementation on mainnet yet.
  • ✅ Algorand , Hedera , Starknet , and Succinct are projects that already have quantum-resistant features or are in advanced development.

Google’s Responsible Disclosure of the Quantum Threat

On March 31, 2026, Ryan Babbush and Hartmut Neven of Google Quantum AI published a whitepaper with updated estimates of the quantum resources required to break Bitcoin’s elliptic curve cryptography. The two circuit configurations they compiled could break ECDSA: one using fewer than 1,200 logical qubits (90 million Toffoli gates) and another using fewer than 1,450 logical qubits (70 million Toffoli gates), both requiring fewer than 500,000 physical qubits and completing the attack in minutes, approximately 20 times more efficient than previous estimates.

Google published a zero-knowledge proof allowing anyone to verify the claims without receiving the circuit details that could be misused. Google targets a full migration to post-quantum cryptography by 2029, collaborating with Coinbase, Stanford Institute for Blockchain Research, and the Ethereum Foundation to accelerate the transition.

The primary recommendation emphasized in Google’s paper is to avoid reusing wallet addresses whose public keys have previously been exposed on the blockchain.

How Quantum Computers Threaten Crypto

Most blockchain networks use ECDSA to authenticate transactions. ECDSA relies on a mathematical problem that is computationally hard for classical computers: factoring elliptic curves. Quantum computers use Shor’s algorithm to solve this problem drastically faster, making it possible to derive a private key from an already-exposed public key.

What makes this threat impossible to ignore is the “harvest now, decrypt later” model: on-chain transaction data can be collected today and decrypted once a sufficiently powerful quantum machine becomes available.

The most powerful quantum machines today operate at around 100 logical qubits, far below the threshold needed to attack current systems.

In quantum-based attacks, the threat targets the signature system (ECDSA) rather than the mining process. Grover’s algorithm, used to attack SHA-256 (the basis of Bitcoin mining), provides only a quadratic speedup rather than an exponential one, so it does not abruptly compromise the mining process.

On April 24, 2026, researcher Giancarlo Lelli broke a 15-bit ECC key using public quantum hardware, winning 1 BTC from Project Eleven’s Q-Day Prize. The previous record was just 6 bits, representing a 512x improvement in seven months. Bitcoin remains far from direct threat (256-bit keys), but this pace is narrowing the migration window.

International Standards for Post-Quantum Cryptography

National Institute of Standards and Technology (NIST), the U.S. government body that sets global technology standards, published four official PQC algorithms in August 2024:

  • ML-DSA (CRYSTALS-Dilithium): a lattice-based digital signature scheme designed for the majority of use cases.
  • Falcon-1024: a compact lattice-based signature, efficient for systems with bandwidth constraints.
  • SLH-DSA (SPHINCS+): a hash-function-based signature, mathematically proven secure.
  • XMSS: a hash tree-based signature, recommended for long-term applications.

These four algorithms serve as the primary benchmark the crypto community uses to evaluate the credibility of any project’s quantum-resistance claims.

Bitcoin and Ethereum: Migrations in Progress

Bitcoin and Ethereum are not quantum-resistant today, but both are actively working on migration pathways to anticipate the advancement of quantum computing.

Bitcoin: BIP-360

Bitcoin Improvement Proposal (BIP) 360, known as Pay-to-Merkle-Root (P2MR), conceals the public key inside a Merkle tree and reveals it only when a transaction is executed. This makes quantum attacks significantly harder, as they require the public key as an entry point. As of June 2026, BIP-360 is running on testnet with participation from more than 50 miners and has surpassed 100,000 blocks in testing.

Ethereum: The Post-Quantum Strawmap

Vitalik Buterin published Ethereum’s post-quantum roadmap in February 2026. Four areas require migration:

  1. BLS signatures at the proof-of-stake consensus layer.
  2. KZG commitments for rollup data availability.
  3. ECDSA for user EOA (Externally Owned Account) wallets.
  4. The zero-knowledge proof system.

EIP-8141 has been proposed for the Hegotá hard fork targeted for the second half of 2026. More than 10 Ethereum client teams are already running weekly devnets for PQC, with full completion targeted around 2029 per pq.ethereum.org.

Crypto Projects That Are Already Quantum-Resistant

The following are crypto projects that have implemented or are actively developing PQC.

1. Algorand (ALGO)

Source: Algorand Blog

Algorand is an L1 blockchain using a Pure Proof-of-Stake mechanism, created by Silvio Micali, MIT professor and Turing Award recipient.

Algorand executed the first post-quantum transaction on mainnet using Falcon-1024, a NIST-approved lattice-based signature. It was integrated as a native opcode (falcon_verify) in AVM v12 without a hard fork, with Falcon-based state proofs already securing the chain every 256 blocks.

Strengths:

  • First mainnet implementation on a major smart contract network to meet NIST Level 5 standards.
  • Backward compatible: no forced migration for existing users.
  • Signature verification in under 100 milliseconds per transaction.

Weaknesses:

  • Falcon-1024 signature size is approximately 1,280 bytes (20x larger than ECDSA).
  • The consensus layer and VRF still use Ed25519 (quantum-vulnerable).
  • The feature remains experimental for general users.

Read also: What is Algorand (ALGO)?

2. Hedera (HBAR)

Source: X.com/@hedera

Hedera is a hashgraph-based network (a Directed Acyclic Graph/DAG structure), governed by the Hedera Governing Council, whose members include Google, IBM, and Boeing.

Hedera uses SHA-384 as its primary hash function, delivering a 192-bit security level even against quantum attacks, because Grover’s algorithm provides only a quadratic speedup. In December 2024, Hedera partnered with SEALSQ to develop the QS7001 quantum-resistant semiconductor chip, designed to secure IoT devices on the Hedera network.

Strengths:

  • SHA-384 is already quantum-resistant for hashing and data integrity functions.
  • Modular architecture allows cryptographic upgrades without disruptive changes to the network.
  • Enterprise-grade governance by global corporations.

Weaknesses:

  • User account signing still uses ECDSA (vulnerable to Shor’s algorithm).
  • The QS7001 chip is still in development and not yet running in production.
  • The SEALSQ partnership focuses on IoT devices, not the Hedera protocol itself.

3. Starknet (STRK)

Source: Google Quantum AI

Starknet is a ZK-rollup Layer 2 built on Ethereum, developed by StarkWare, using STARK proofs (Scalable Transparent Argument of Knowledge) to cryptographically validate transactions.

STARK proofs are based on hash functions rather than elliptic curves, making them unexposed to Shor’s algorithm. Starknet is migrating from the Pedersen hash to the more quantum-resistant Poseidon. Native account abstraction makes every wallet a smart contract, so protocol upgrades are automatically inherited by all wallets.

Strengths:

  • Natively quantum-resistant proof system.
  • Account abstraction simplifies future cryptographic migration.
  • 100x throughput improvement over the previous generation via the Stwo prover.

Weaknesses:

  • Account signing still uses the Starknet Curve (ECDSA-equivalent, not yet quantum-resistant).
  • Ethereum’s settlement layer is also not yet quantum-resistant.
  • Full migration to PQC is still ongoing.

4. Succinct (PROVE)

Source: Google Quantum AI

Succinct is a zero-knowledge infrastructure project developing SP1, a zkVM (zero-knowledge virtual machine) that generates ZK proofs for programs compiled to the RISC-V architecture. Unlike ALGO, HBAR, or STRK, Succinct operates as a decentralized proving infrastructure layer within the Ethereum ecosystem.

SP1 uses a hash-based proof system rather than elliptic curves, meaning its proving layer is not vulnerable to Shor’s algorithm. SP1 Hypercube proves Ethereum blocks in an average of 10.3 seconds, with 93% of blocks completed in real-time using 200 GPUs. Succinct is also integrated with Ethereum L2 networks such as Base as of May 2026.

Strengths:

  • Hash-based proving layer with no reliance on quantum-vulnerable elliptic curves.
  • Used in production by major networks (Base and Ethereum).
  • Open-source (MIT and Apache 2.0), backed by Paradigm.

Weaknesses:

  • Not an L1/L2 and has no direct user ecosystem.
  • Quantum resistance applies to the proving layer, not user transaction signing.

Read also: What is Succinct (PROVE)?

Key Factors to Understand

The quantum computing threat is real, but there is no certainty about when a sufficiently powerful machine will be available. Researcher estimates range from 5 to 15 years. Existing quantum-resistant projects are still in early stages and have yet to be concretely proven against real quantum attacks.

Key factors to keep in mind:

  • Volatility and adoption: quantum-resistant projects generally have smaller market caps than Bitcoin or Ethereum, with user bases that are still growing.
  • Evolving standards: NIST may revise or add to PQC standards as research progresses.
  • Competition from major networks: if Ethereum successfully completes its PQC migration by 2029, the appeal of dedicated quantum-resistant projects may diminish.

Conclusion

While quantum computers cannot yet break Bitcoin or Ethereum, recent research shows that the threshold is lower than previously assumed, and most crypto networks have no production-ready solution on mainnet. Bitcoin is working on BIP-360, Ethereum is preparing the Hegotá hard fork, Algorand has implemented NIST standards on mainnet, and Succinct provides a hash-based proving infrastructure already in use across multiple networks. Understanding the quantum computing threat to crypto will become increasingly relevant in the coming years, as quantum computing continues to advance.

Disclaimer: All information presented in this article is compiled for educational and general informational purposes. This content is not intended as investment advice, a recommendation, or a solicitation to buy or sell any specific crypto asset, nor as a basis for any financial decision. Every investment decision is solely the responsibility of the reader, taking into account their own financial condition, investment objectives, and risk tolerance.

FAQ

What is a quantum computer and why is it dangerous for crypto?

A quantum computer is a machine that uses the principles of quantum mechanics to process information far faster than conventional computers for certain types of problems. The danger to crypto comes from an algorithm called Shor’s algorithm, which can break ECDSA, the signature system used by Bitcoin and Ethereum, potentially enabling the theft of assets from wallets whose public keys have already been exposed.

Can Bitcoin be hacked by a quantum computer right now?

Not yet. The most powerful quantum machines today operate at around 100 logical qubits, while breaking Bitcoin’s ECDSA requires approximately 1,200 logical qubits. This threat could become real within the next several years if quantum computing development continues at its current pace.

What is post-quantum cryptography?

Post-quantum cryptography (PQC) is cryptography designed to withstand attacks from quantum computers. NIST established four official standards in 2024: Dilithium, Falcon-1024, SPHINCS+, and XMSS. These algorithms use mathematics based on lattice problems or hash functions, which cannot be significantly accelerated by quantum computers.

Is it safe to invest in quantum-resistant crypto projects?

Algorand has a technically verified mainnet implementation meeting NIST standards. Hedera and Starknet are still in the process of a full migration to PQC. Succinct (PROVE) provides a hash-based proving infrastructure already used by Base and Ethereum. All four are available on Pintu. Volatility risk remains higher than Bitcoin or Ethereum, so conduct your own research before investing.

How to Buy Quantum-Resistant Assets on Pintu

After learning about quantum-resistant crypto assets, you can start investing in ALGO, HBAR, STRK, PROVE, and other assets directly through Pintu. You can also trade Futures directly on Pintu Pro Web!

  1. Create a Pintu account and complete the identity verification process to start trading.
  2. On the homepage, click the deposit button and top up your Pintu balance using your preferred payment method.
  3. Open the market page and search for your preferred asset.
  4. Click buy and enter the amount you want.
  5. You now own crypto assets!

Download the Pintu app on the Play Store and App Store! Your security is guaranteed as Pintu is regulated and supervised by Bappebti and Kominfo.

References

  1. NIST Computer Security Resource Center, “Post-Quantum Cryptography Standards“, NIST, accessed on 18 June 2026.
  2. Larkin Young, “Technical Brief: Quantum-resistant transactions on Algorand with Falcon signatures“, Algorand Foundation, accessed on 18 June 2026.
  3. Ethereum Foundation, “Post-Quantum Ethereum Roadmap“, pq.ethereum.org, accessed on 18 June 2026.
  4. SEALSQ Corp., “SEALSQ Partnering with Hedera in the Next Generation of Post-Quantum Semiconductors“, GlobeNewswire, accessed on 18 June 2026.
  5. StarkWare, “Quantum computing is coming. What does it mean for Starknet?“, StarkWare Blog, accessed on 18 June 2026.
  6. Margaux Nijkerk, “AI is speeding up the quantum threat to crypto“, CoinDesk, accessed on 18 June 2026.
  7. Project Eleven, “Project Eleven Awards 1 BTC Q-Day Prize for Largest Quantum Attack on Elliptic Curve Cryptography to Date“, PR Newswire, accessed on 18 June 2026.
  8. Ryan Babbush and Hartmut Neven, “Safeguarding cryptocurrency by disclosing quantum vulnerabilities responsibly“, Google Research, accessed on 19 June 2026.
  9. James Hunt, “Succinct introduces zkVM ‘SP1 Hypercube,’ claims real-time Ethereum proving“, The Block, accessed on 19 June 2026.

Share

See Assets in This Article

ALGO
->
HBAR
->
STRK
->
PROVE
->

ALGO Price (24 Hours)

Rp 0

Market Capitalization

-

Global Volume (24 Hours)

-

Circulating Supply

-