Willow quantum chip demonstrates verifiable quantum advantage on hardware

(blog.google)

429 points AbhishekParmar | 3 comments | 22 Oct 25 15:16 UTC | HN request time: 0.603s | source

Show context

andy_ppp ◴[22 Oct 25 23:11 UTC] No.45676328[source]▶

I would be quite worried about advances in quantum computers if I had any Bitcoin after watching this DEFCON talk: https://www.youtube.com/watch?v=OkVYJx1iLNs

replies(5): >>45676454 #>>45676591 #>>45677387 #>>45677519 #>>45678889 #

vayup ◴[22 Oct 25 23:47 UTC] No.45676591[source]▶

>>45676328 #

Quantum is a known threat. There is enough time to fix it. Folks are working on the fixes.

Cryptocurrencies would be the last thing I worry about w.r.t Quantum crypto attacks. Everything would be broken. Think banks, brokerage accounts, email, text messages - everything.

replies(4): >>45676899 #>>45676916 #>>45678230 #>>45678285 #

acdha ◴[23 Oct 25 00:37 UTC] No.45676899[source]▶

>>45676591 #

I think that’s backwards: most of the stuff you mentioned is using TLS and can switch to post-quantum algorithms with a config change, and do so incrementally with no user-visible impact - e.g. right now I’m already using PQC for many sites and about half of the traffic Cloudflare sees is using PQC:

https://radar.cloudflare.com/adoption-and-usage

In contrast, cryptocurrencies have to upgrade the entire network all at once or it’s effectively a painful fork. That effort appears to just be getting talked about now, without even starting to discuss timing:

https://github.com/bitcoin/bips/pull/1895

replies(3): >>45677105 #>>45677249 #>>45677624 #

1. wahern ◴[23 Oct 25 01:37 UTC] No.45677249[source]▶

>>45676899 #

> In contrast, cryptocurrencies have to upgrade the entire network all at once or it’s effectively a painful fork

Bitcoin is much more centralized than the popular imagination would have you believe, both in terms of the small number of controlling interests behind the majority of the transaction capacity, and just as importantly the shared open source software running those nodes. Moreover, the economic incentives for the switch are strongly, perhaps even perfectly, aligned among the vast majority of node operators. Bitcoin is already dangerously close to, if not beyond, the possibility of a successful Byzantine attack; it just doesn't happen precisely because of the incentive alignment--if you're that large, you don't want to undermine trust in the network, and you're an easy target for civil punishment.

replies(2): >>45677498 #>>45679326 #

2. acdha ◴[23 Oct 25 02:24 UTC] No.45677498[source]▶

>>45677249 (TP) #

I definitely agree that the major players will want to move forward, but it seems like there's a legacy system kind of problem where it can stall if you get some slackers who either don't update (what happens to cold wallets?) or if some group has ideological disagreements about the solution. None of that is insurmountable, of course, but it seems like it has to be slower than something where you personally can upgrade your HTTPS servers to support PQC any time you want without needing to coordinate with anyone else on the internet.

3. tennysont ◴[23 Oct 25 07:49 UTC] No.45679326[source]▶

>>45677249 (TP) #

(I know that you understand this, but just highlighting it)

In fairness, the original Bitcoin white paper referenced both (1) distributed compute and (2) the self-defeating nature of a Byzantine attack as the means of protection. It's not as though (2) is just lucky happenstance.

Hence, why proof of stake can exist.

↑