Can quantum computers break Bitcoin today?

No. Current quantum hardware is orders of magnitude smaller than what would be needed to run Shor's algorithm against secp256k1. Public researcher estimates put a cryptographically relevant machine a decade or more out, though that horizon has been pulled in over the past five years.

Which Bitcoin is most at risk?

Coins held in addresses that have already spent, and especially in legacy P2PK outputs from the Satoshi era, because their public keys are visible on-chain. Funds in unused P2PKH or SegWit addresses are protected by an additional hash layer until the first spend.

What is post-quantum cryptography?

A family of cryptographic algorithms believed to resist attack by quantum computers. NIST finalized its first three standards in 2024, drawn from lattice-based and hash-based schemes. Migrating Bitcoin to one would require a soft fork or hard fork and is an active research topic, not a shipped proposal.

US Commerce Department Commits $2B to Quantum Push Citing Bitcoin Cryptography Risk

The US Department of Commerce committed $2 billion to quantum computing research on Thursday in Washington, citing the technology's potential to break the elliptic-curve cryptography that secures Bitcoin and most digital finance rails. The announcement, first reported by Crypto Briefing, frames the spend as a national-security and financial-stability measure rather than a research grant. It lands as NIST's post-quantum cryptography standards move from publication to adoption across federal systems.

By Elena Stojanović· AI-assisted· Regulation correspondent

What happened

The Commerce Department announced a $2 billion investment in quantum computing on Thursday, naming the protection of cryptographic systems used by Bitcoin and digital finance as a core justification. Crypto Briefing reported the figure and the framing, citing Commerce officials who tied the spend to national security and the integrity of payments infrastructure. The package covers both research into quantum hardware and accelerated work on post-quantum cryptography, the family of algorithms designed to resist attack from a sufficiently large quantum computer.

NIST finalized its first three post-quantum standards in 2024, and federal agencies are now in the migration phase. Thursday's announcement is the first time the executive branch has put a dollar figure of this size on the migration with Bitcoin named in the rationale.

Why it matters

Bitcoin's signature scheme, ECDSA over the secp256k1 curve, is theoretically vulnerable to Shor's algorithm running on a fault-tolerant quantum computer. The practical risk has two layers. Addresses that have ever spent expose their public key on-chain, meaning a future quantum-capable adversary could derive the private key from that public key and sweep the coins.

Satoshi-era P2PK outputs and reused addresses are the most exposed; roughly 4-5 million BTC sit in formats with exposed public keys, by past estimates from Deloitte and academic researchers. The headline figure tells you Washington now treats this as a balance-sheet risk to dollar-denominated infrastructure, not a science-fiction problem. That's the shift.

US Commerce Department Commits $2B to Quantum Push Citing Bitcoin Cryptography Risk

What happened

Why it matters

Market impact

What to watch

Disclaimer

Key takeaways

Frequently asked

Sources