Ledger CTO Charles Guillemet Questions Google's Quantum Research Using Zero-Knowledge Proofs Instead of Transparent Verification
Ledger CTO Charles Guillemet pointed out that Google recently published a paper claiming that the resource requirements for quantum algorithms to break ECDSA have decreased by 20 times, yet did not disclose specific methods, instead providing zero-knowledge proofs (ZKP) for others to verify results rather than details. This approach, while reflecting the "trust but verify" philosophy, raises issues with verifier defects. An analysis by Trail of Bits found that stronger result proofs could be forged, which Google has since fixed.
The incident highlights the tension between transparency and responsible disclosure in quantum cryptography research. After communicating with the U.S. government, Google adopted this method to avoid providing a roadmap for potential attackers while promoting the cryptocurrency community's transition to post-quantum cryptography.
Source: Public Information
ABAB AI Insight
Guillemet's comments touch on the core mechanism of scientific knowledge production. Traditional research relies on public circuits and methods for reproducible verification, whereas zero-knowledge proofs now allow claims of significant breakthroughs without exposing technical details. This balances national security and academic sharing in sensitive fields like quantum cryptanalysis but undermines the foundation for collective understanding and incremental optimization. Google has reduced the resource estimate for Shor's algorithm targeting the secp256k1 curve from millions of physical qubits to less than 500,000, alongside optimizations in Toffoli gate counts, remaining theoretical. However, the vulnerability of the verification process exposes institutional constraints introduced by new tools.
From a global financial and technological substitution perspective, this incident accelerates the reassessment of security boundaries for crypto assets. The Elliptic Curve Digital Signature Algorithm underpins transaction verification for mainstream chains like Bitcoin and Ethereum, with its quantum vulnerability emerging early, prompting capital to migrate from current public key infrastructures to post-quantum solutions. In terms of wealth distribution, assets with exposed public keys face the risk of "static attacks," while institutions and protocol layers are buffering impacts through multi-signatures and account abstractions, reflecting a redistribution of power from single cryptographic primitives to mixed and migratory paths.
In the long-term structural changes, this embeds institutional inertia and incentive misalignment. Google has set a goal to complete its internal post-quantum migration by 2029, collaborating with the Ethereum Foundation, Stanford, and others to drive industry action, yet chooses to disclose opaquely, highlighting the dominant position of large tech platforms in controlling narratives and risk pricing. Historical experience shows that similar compression of technological thresholds often accompanies accelerated industry migration, and the crypto ecosystem may shift from reliance on classical elliptic curves to quantum-resistant primitives, testing the adaptability of existing governance frameworks in the face of uncertain timelines, while reinforcing the need for repricing fixed supply assets like Bitcoin in the quantum era.