Google’s 2029 Quantum Deadline Puts Bitcoin and Ethereum on the Clock
Google has set a 2029 deadline for its own post-quantum cryptography migration, citing rapid progress in quantum hardware, error correction, and updated resource estimates for breaking today’s encryption standards. That deadline does not belong to Google alone: Bitcoin trades at $69,303 (down 3.48% in the past 24 hours) and Ethereum at $2,069.77 (down 5.58%), and both networks rely on precisely the cryptographic primitives Google is now racing to replace. The question is no longer whether quantum computing threatens public-key cryptography; it is which blockchain community will have a coherent answer before the hardware arrives.
Why Google’s 2029 Target Changes the Calculus
Google’s announcement is not a theoretical warning issued from a research lab. The company is actively developing Willow, one of the most powerful superconducting quantum processors in existence, and it has now accelerated its own internal migration timeline in response to what it calls progress on “quantum factoring resource estimates.” In plain terms: the computational cost of breaking elliptic curve cryptography is dropping faster than previously modelled, and Google updated its schedule accordingly.
Two specific threat vectors underpin the urgency. The first is “store-now-decrypt-later” attacks, where adversaries harvest encrypted data today with the intention of decrypting it once sufficiently powerful quantum machines become available. The second is the forward risk to digital signatures, the exact mechanism by which Bitcoin and Ethereum users prove ownership of funds. Both threats are live in the sense that the data being collected now, and the keys being exposed on-chain now, will still exist when the hardware matures.
Quantum researcher Pierre-Luc Dallaire-Demers has assessed that Bitcoin-style elliptic curve cryptography could be cracked within four to five years. That assessment, combined with Google’s revised deadline, compresses what many in the industry had assumed was a comfortable research horizon into something that demands engineering decisions today. As Galaxy Digital’s research head Alex Thorn noted, the risk is “real but recognised,” and crucially, funds are at risk only when public keys are exposed on-chain. That caveat is important but not reassuring: millions of addresses have already exposed their public keys through on-chain activity.
Ethereum’s Strawmap: Ambition With a Delivery Risk
Ethereum’s response is the most structured public commitment from any major blockchain. The Ethereum Foundation has published its “Strawmap,” a sequence of seven hard forks targeting full quantum resistance by 2029. The plan begins with the Glamsterdam hard fork, tentatively scheduled for the first half of 2026, followed by Hegota later the same year, with subsequent upgrades running on roughly a six-month cadence thereafter. The Ethereum Foundation’s quantum team stated plainly: “Quantum computing will eventually break the public-key cryptography that secures ownership, authentication, and consensus across all digital systems.”
The technical architecture is credible. The Strawmap targets a migration toward hash-based signatures, specifically XMSS and SPHINCS+, alongside STARK-based signature schemes that are resistant to quantum brute-force attacks. Beyond cryptography, the plan also incorporates Single Slot Finality via a consensus redesign called “Minimmit,” which would reduce Ethereum’s current 15-minute finality window to under 16 seconds. That change would close the reorganisation attack window and, as a side effect, erode one of Solana’s main competitive arguments against Ethereum as a settlement layer.
Vitalik Buterin unveiled the high-level quantum-resistant roadmap in February, and the Ethereum Foundation has since launched a dedicated resource at pqcrypto.ethereum.org to coordinate the multi-team effort, all of this alongside active institutional engagement with the Ethereum ecosystem. What started as STARK-based signature aggregation research in 2018 has matured into a coordinated, open-source engineering programme. That lineage matters: it means the Strawmap is not a whitepaper, it is a continuation of existing work.
The delivery risk, however, is real and should not be minimised. Seven distinct protocol upgrades in four years require sustained coordination across client teams, researchers, and the broader validator community. Ethereum has missed self-imposed deadlines before. The Merge arrived years behind its original projections; Dencun experienced similar timeline pressure. If the Strawmap slips into the early 2030s, the network enters a period where quantum hardware could theoretically be viable before the cryptographic defences are live. That is the scenario the entire plan is designed to prevent.
Bitcoin’s Governance Problem Is the Real Vulnerability
Bitcoin’s situation is structurally different, and not in a reassuring way. Elliptic curve cryptography is woven into Bitcoin’s signature scheme at the protocol level, and any migration requires community consensus on a process that many participants consider philosophically incompatible with Bitcoin’s design principles. Some contributors argue that a protocol-level intervention to freeze or migrate coins held in quantum-vulnerable addresses would violate the foundational premise that private keys control coins, full stop.
Nic Carter has been direct about the implications. Carter argued that Bitcoin developers still have their “head in the sand” on quantum resistance compared to Ethereum, and his scepticism about Bitcoin’s ability to execute is pointed: “I’m sure Bitcoin can agree on a path forward, write and test a series of updates, soft fork them in, and fully migrate 50 million addresses in three years. Especially with how proactive the core devs are being.” The sarcasm in that statement reflects a genuine governance concern, not a fringe view.
Michael Saylor offered a contrasting perspective in February, arguing that the industry “would see it coming” and that a quantum breakthrough would prompt coordinated upgrades across global banking, internet infrastructure, and crypto protocols simultaneously. Ark Invest’s March 11 research report supported the gradualist interpretation, arguing that “today’s quantum systems lack the capabilities required to compromise Bitcoin” and that a breakthrough would disrupt internet security broadly before it reached blockchain specifically, giving networks time to adapt.
The Ark framing is coherent but rests on an assumption that is being actively tested: that quantum progress will be slow and visible. Google’s revised timeline suggests the opposite. The company accelerated its own deadline precisely because quantum factoring resource estimates came in lower than expected. That is not a gradual, predictable progression. It is a compression event. Saylor and Ark may ultimately be correct that coordination will happen in time, but they are making a bet on institutional responsiveness that Google’s own engineers apparently declined to make for their own systems.
Who Benefits and Who Carries the Risk
The directional read here favours Ethereum over Bitcoin in the medium term on this specific dimension, with meaningful caveats. Ethereum has a published roadmap, an active engineering effort, a technical architecture that is already oriented toward STARK-based proofs, and a governance model that can execute hard forks with community buy-in. Bitcoin has a philosophical debate and no formal upgrade proposal on the table. With Bitcoin at $69,303 and roughly 107,690 blocks remaining until the next halving at time of writing, the network’s near-term narrative is dominated by supply mechanics, not cryptographic infrastructure. That may be appropriate for now, but it defers a problem that will not defer indefinitely.
The asymmetry is meaningful for institutional capital allocation. A sovereign wealth fund or pension allocator evaluating long-duration crypto exposure in 2026 will increasingly ask whether the underlying cryptographic layer has a credible upgrade path. Ethereum can point to the Strawmap, seven hard forks, a 2029 target, and an open-source coordination effort spanning multiple teams. Bitcoin’s advocates can point to its track record of conservatism as a feature, but conservatism requires a plan eventually, not just a disposition.
The investors least at risk are those holding funds in wallets whose public keys have never been exposed on-chain, as Thorn correctly notes. The investors most at risk are those holding coins in reused addresses or addresses that have already broadcast transactions, since those public keys are permanently visible on the ledger. That is not a small population. It is a material fraction of the total address space across both networks.
The Infrastructure Argument for Urgency
There is a version of this story that frames quantum resistance as a far-horizon engineering problem. That version is wrong, and Google’s announcement is the clearest possible evidence of why. When the company that built one of the most advanced quantum processors on the planet revises its own internal migration deadline forward, the correct response from blockchain infrastructure teams is not to wait for further confirmation. It is to treat that as a leading indicator and accelerate accordingly.
The Ethereum Foundation appears to understand this. The Strawmap’s “Ship of Theseus” framing, replacing every cryptographic component incrementally without halting the chain, is exactly the right mental model for a live network managing a multi-year transition under operational conditions. It is technically demanding and carries execution risk, but it is the right architecture for the problem. The alternative, a single large-scale migration under time pressure, carries far greater systemic risk than a sequenced, tested, incremental approach.
Bitcoin’s community will need to arrive at a comparable framework. The governance constraints are real, but they are not permanent barriers; they are coordination challenges. The distinction matters because barriers require workarounds, while coordination challenges require leadership. The next twelve months, beginning with whether Glamsterdam’s EIP inclusion list signals genuine engineering momentum on Ethereum’s side, will determine whether this remains a theoretical debate or becomes a live infrastructure emergency. From where the evidence sits today, the networks that treat Google’s 2029 deadline as their own will be the ones still standing on the right side of it.
