THE QUANTUM INTELLIGENCER

Bottom Line Up Front: Major messaging platforms like Signal are actively deploying post-quantum cryptography (PQC) via their SPQR protocol, indicating industry expectation of cryptographically relevant quantum computers (CRQCs) within 5-10 years. Current migration pace remains dangerously slow across broader digital infrastructure. Threat Identification: Harvest-now-decrypt-later attacks already underway against classical cryptography (ECDH), with encrypted communications being stored for future quantum decryption. ML-KEM 768 implementation in SPQR demonstrates concrete PQC readiness but limited deployment scope. Probability Assessment: - 85% probability of CRQC capable of breaking ECDH by 2035 (aligns with NIST PQC standardization timeline) - 40% probability of functional quantum decryption capabilities by 2030 based on recent quantum volume doubling rates - Near-certainty (95%) that state actors are currently harvesting encrypted data for future decryption Impact Analysis: Complete compromise of all data protected by classical public-key cryptography, including: - Historical government and military communications - Financial transaction records and blockchain security - Healthcare data and intellectual property - Personal communications spanning decades Recommended Actions: 1. Immediate inventory of all systems using ECDH/RSA cryptography 2. Prioritize migration to ML-KEM 768 or other NIST-standardized PQC algorithms 3. Implement hybrid cryptography (classical + PQC) during transition period 4. Establish crypto-agility frameworks for future algorithm updates 5. Assume all currently encrypted data is already compromised for long-term planning Confidence Matrix: - CRQC timeline: Medium-High (based on NIST roadmap and quantum hardware milestones) - Harvest-now attacks: High (evidence from intelligence community reports) - SPQR effectiveness: High (formally verified implementation) - Broad industry migration pace: Low (limited PQC adoption outside tech leaders) Citations: - NIST FIPS 203 (ML-KEM standard) - Signal SPQR protocol documentation (2025) - Eurocrypt 25 proceedings on post-quantum secure messaging - USENIX 25 analysis of ratchet protocols Citations: Signal >> Blog >> Signal Protocol and Post-Quantum Ratchets (https://signal.org/blog/spqr/), SPQR's ML-KEM Optimization and Formal Verification Integration in Post-Quantum Cryptography (https://x.com/ConorDeegan4/status/1974134391384281446)