# 1.1 The “Harvest Now, Decrypt Later” (HNDL) Threat Formally introduced in 1994, Shor’s Algorithm demonstrated that sufficiently powerful quantum computers can solve integer factorization and discrete logarithm problems in polynomial time—computational primitives that underpin the security of RSA and elliptic curve cryptography (ECC). The implications for blockchain infrastructure are both concrete and severe. Ethereum and Bitcoin rely on secp256k1-based ECDSA for transaction signatures. A cryptographically relevant quantum computer (CRQC) capable of executing Shor’s Algorithm would reduce the cost of private key extraction from computationally infeasible (classical) to feasible (quantum), effectively rendering all exposed on-chain public keys derivable into private keys. Ethereum’s BLS12-381 consensus signatures and RSA-2048-based TLS infrastructure face equivalent exposure. Protocol-level key rotation is not viable; once committed, public keys remain permanently vulnerable. HNDL attacks exploit this permanence in an asymmetric and temporally distributed manner: adversaries collect encrypted blockchain data and wallet public keys at low cost today, and decrypt them retroactively once CRQCs become operational. Unlike traditional infrastructure—which benefits from key rotation and forward secrecy—the immutable nature of blockchain records transforms a core strength into a structural vulnerability. The timeline for CRQC threats has been established by multiple authoritative institutions: * **NIST PQC Project:** Finalized ML-KEM (FIPS 203), ML-DSA (FIPS 204), and SLH-DSA (FIPS 205) in 2024, based on an assessed urgent transition window of 10–15 years. * **NSA CNSA 2.0 (2022):** Mandates full transition to PQC for national security systems by 2035. * **UK NCSC:** Issued coordinated guidance for critical infrastructure operators to transition to PQC. * **EU NIS2 / DORA:** Mandates cybersecurity risk management for financial institutions, including quantum preparedness. Hardware-based, quantum-generated entropy constitutes the minimum trust foundation for any post-quantum security service claiming verifiable randomness. Software-based PRNGs are insufficient for institutional-grade PQC key generation; only physical entropy sources satisfy the requirements defined in NIST SP 800-90B. *Figure 1.A — Web3 Cryptographic Vulnerability Matrix*
Text
AlgorithmUse CaseQuantum ThreatNIST PQC AlternativeUrgency
ECDSA-256BTC / ETH TransactionsShor (Key Recovery)ML-DSA (FIPS 204)Critical
RSA-2048TLS, PKI, Node CommunicationShor (Factorization)ML-KEM (FIPS 203)Critical
BLS12-381ETH Consensus (PoS)Shor (Discrete Log)ML-DSA / SLH-DSACritical
SHA-256BTC PoW, Merkle TreesGrover (Partial)SHA-3 / 확장 출력Moderate
Ed25519Solana, Cosmos, PolkadotShor (Key Recovery)ML-DSA (FIPS 204)Critical
*\[1] NIST SP 800-90B: Recommendation for the Entropy Sources Used for Random Bit Generation (2018).*\ *\[2] NSA CNSA 2.0 Advisory, September 2022.*\ *\[3] NIST FIPS 204: ML-DSA Standard, August 2024.* --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://railquant.gitbook.io/quantarail/1.-strategic-context-quantum-threats-and-the-liquidity-crisis-in-depin/1.1-the-harvest-now-decrypt-later-hndl-threat.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.