Coinbase Quantum Advisory Council: Algorand and Aptos Lead in Quantum Threat Preparedness
The independent Quantum Computing Advisory Council established by Coinbase pointed out in its latest public report that future large-scale quantum computers could theoretically undermine the elliptic curve cryptography used by mainstream blockchains today. It calls for the industry to plan upgrade paths in advance, specifically naming Algorand and Aptos as "relatively better prepared" and easier to transition to quantum-resistant cryptographic systems. The report states that most PoS public chains still rely on traditional signature algorithms such as Ed25519 or secp256k1, while Algorand has deployed NIST-selected Falcon post-quantum signatures for State Proof and initial asset transactions on its mainnet. Aptos has introduced NIST standard SLH-DSA hash signatures through proposals, laying the groundwork for future network-wide upgrades.
The council warns that although there are currently no practical quantum computers that threaten public chain security, years of preparation are needed for standard setting, protocol upgrades, and asset migration. Some PoS chains have more difficulty transitioning seamlessly in terms of account models, governance, and key management compared to others, increasing the difficulty and systemic risk of future secure migrations. The report specifically cautions that some chains, even if they attempt to introduce quantum-resistant components at the consensus layer, will still have overall security compromised at the "quantum critical point" if user keys and transaction signatures remain on traditional algorithms. Therefore, quantum preparedness should be viewed as a full-stack engineering challenge rather than a marketing slogan.
Source: Public Information
ABAB AI Insight
The key point of this assessment is not "who is fully quantum secure" (currently, no mainstream public chain has achieved this), but rather who has advanced the quantum threat as an engineering issue to the stage of "real network deployment." Algorand provides post-quantum protection for state proofs and some transactions through Falcon, effectively locking down "historical ledgers from being forged later," and gradually expanding to accounts and consensus. Aptos, on the other hand, uses SLH-DSA as an entry point to reserve specifications and implementation paths for introducing quantum-resistant signatures at the account and application layers in the future. Both routes reflect a consensus: quantum security will not be a one-time "algorithm switch," but rather a gradual transition over many years.
The Coinbase advisory council emphasizes that "some PoS chains are more vulnerable than others," pointing to the difficulty of migration at the architectural and governance levels, not just the signature algorithms themselves. Networks with highly complex account models, contracts widely hard-coded with specific cryptographic primitives, and slow, highly politicized on-chain governance may struggle to complete network-wide key rotations and protocol upgrades in time when the quantum threat truly approaches, ultimately having to accept security compromises or rely on centralized "custodial migrations," which directly conflicts with the original intent of decentralization.
From a broader historical and financial structural perspective, the quantum threat essentially forces the crypto industry to confront a question early: does blockchain's "immutability" and "long-term security" have an expiration date? The industry has often assumed that "on-chain records can be securely preserved forever," but quantum computing adds a timestamp to this assumption—if cryptographic migration is not completed in the next 10-20 years, long-term assets issued today (such as sovereign bonds, real estate certificates, and long-term derivatives) may face the risk of their foundational layers being rewritten in the quantum era, posing a fundamental challenge to institutions trying to treat blockchain as a "century-level ledger."
This is also why Coinbase chose to establish the Quantum Advisory Council at this time and publicly name a few more proactive public chains: on one hand, it is to lay out the technical and standard discourse power for its own custody and clearing business in advance; on the other hand, it is also sending a signal to the entire industry—that quantum security is beginning to become a new dimension in the pricing of L1 blue chips, rather than just a technical topic within the cryptographic community. In the long run, those chains that can provide clear migration roadmaps and gradually test and promote post-quantum solutions on their mainnets are more likely to gain a premium in the next round of "security reassessment," while projects treating the quantum threat as a distant sci-fi issue may find themselves passively hit by sudden standard switches and regulatory pressures.