The quantum-safe future of crypto starts here
Quantum computers will break the cryptography behind Bitcoin, Ethereum, and nearly all of crypto. QRL has been post-quantum since 2018, and QRL 2.0 brings that protection to EVM smart contracts.
Quantum-Safe Cryptocurrency: $QRL
- Live mainnet since 2018, post-quantum from day one
- Core today: QRL 1.x (XMSS hash-based signatures)
- Next: QRL 2.0 (EVM smart contracts, quantum-safe)
The stakes
The clock is real, and shorter than most people think
- A quantum computer breaks the elliptic-curve signatures (ECDSA, Ed25519) behind Bitcoin, Ethereum, and most of crypto, deriving a private key from a public one.
- Credible "Q-Day" estimates now cluster around 2030, and the hardware bar keeps falling.
- March 2026: Google Quantum AI showed breaking Bitcoin may take far fewer qubits than once believed. Google set itself a 2029 deadline, and Microsoft's Majorana 2 targets a scalable machine in the same window.
- The attack itself keeps getting cheaper: on the public ECDSA.fail leaderboard, researchers and AI agents have shrunk the circuit for breaking Bitcoin's curve to about 1,152 logical qubits, roughly 49% leaner than Google's benchmark on the combined qubit-Toffoli metric.
- NIST, the NSA, the EU, and the Federal Reserve have all issued migrate-now guidance.
- "Harvest now, decrypt later": keys exposed today can be recorded and cracked the moment the hardware arrives.
Quantum News
- Google Quantum AI (Mar 30, 2026, with the Ethereum Foundation and Stanford): breaking Bitcoin needs 20x fewer qubits than estimated, under 500,000 physical, deriving a key in ~9 minutes, inside Bitcoin's confirmation window.
- ECDSA.fail (Eigen Labs): a public leaderboard where researchers and AI agents shrink the attack on Bitcoin's curve, now down to about 1,152 logical qubits and roughly 49% ahead of Google's benchmark on the qubit-Toffoli metric.
- Reuters (July 2026): no top-20 blockchain has post-quantum protection live on mainnet. Tron's new NIST signatures run on a test network only; making the live network safe still needs it switched on plus every holder moving their coins by hand.
- Quantinuum went public on Nasdaq with a $1.68B IPO; QuEra holds the verified record of 96 logical qubits.
- ~6.9 million BTC (including ~1.7M Satoshi-era coins) still sit in permanently exposed addresses.
Why Bitcoin and Ethereum cannot simply fix it
The migration is the slow part, not the computer
- Patching a live, trillion-dollar chain is not a software update. A base-layer fix is not the same as being safe.
- Bitcoin: ~190 million UTXOs at ~7 TPS is close to a year of blocks doing nothing but migrating, realistically far longer.
- Bitcoin's dead coins: lost and Satoshi-era holdings (hundreds of billions) have no owner to move them and stay exposed forever.
- Bitcoin's proposals fall short: BIP-360 covers only new, unspent addresses; BIP-361 (freeze or migrate old coins) is still a draft with no date.
- Ethereum is the best-positioned major, but its roadmap only reaches the base layer around 2029.
- Ethereum's catch: account abstraction is the mechanism, not the migration. Hundreds of millions of accounts, every signature-checking contract, bridges, and L2s still have to move, voluntarily, and immutable contracts cannot simply be patched.
- Even the fastest mover proves the point: Tron put NIST post-quantum signatures on its test network in June 2026, but that is only step one. The live network still has to switch them on, and then every holder has to move their coins to a new protected address by hand, which no one can force.
- The bar: being safe means the entire stack migrates before Q-Day. As of July 2026, no top-20 chain has post-quantum protection live on mainnet, which is exactly what QRL was built to avoid.
The QRL Story
- 2016: a cancer surgeon saw the quantum threat the crypto world refused to see.
- 2018: QRL launched the world's first quantum-resistant blockchain.
- 2026: eight years of continuous, exception-free operation, still the most established quantum-safe chain in production.
- QRL 2.0 adds full EVM smart-contract support without giving up post-quantum security.
- Bitcoin has only partial proposals, and Ethereum's roadmap reaches just its base layer by 2029. QRL users have been protected since day one.
Tough Questions
- "Quantum is 20+ years away?" Google just set a 2029 deadline and started migrating.
- "Won't BIP-360 fix Bitcoin?" Only new addresses, one of two attack types. The ~$470 billion already exposed stays exposed, forever.
- "Won't Ethereum's roadmap fix it?" Base layer only. Hundreds of millions of accounts, contracts, bridges, and L2s still have to migrate on top.
- "Why target crypto?" Because blockchain keys are public and permanent. The Federal Reserve already warned you.
- "Can I build or stake on QRL today?" Yes. QRL 2.0's Testnet V2 is live for smart contracts and staking right now.
QRL 2.0
- A fully post-quantum EVM chain, quantum-safe from genesis, not bolted on later.
- Port your Ethereum contracts with minimal changes, often just a few lines.
- Post-quantum signatures built in from genesis: no migration, no emergency hard fork, no scramble.
- Testnet V2 is live (launched March 31, 2026); its cryptography passed a clean Halborn audit, and the full audit program is past the halfway mark.
- Early builders get first-mover advantage on a chain that was never cryptographically vulnerable.
What sets QRL apart
Quantum-safe from genesis, proven for eight years
Post-quantum from block zero
Every transaction signed with hash-based XMSS since 2018. Nothing to migrate, because no key was ever exposed.
A proven track record
Eight years of continuous, exception-free public mainnet since June 2018, plus multiple independent security audits.
NIST-aligned cryptography
XMSS is standardized in NIST SP 800-208 and RFC 8391. QRL 2.0 moves to ML-DSA-87 (NIST FIPS 204), with Falcon and ML-KEM on the networking layer.
Genuinely open source
MIT-licensed core, no field-of-use restrictions, open for anyone to audit, build on, or fork.
Crypto-agile by design
Already upgraded its signature scheme across the whole stack to a higher security level in about two weeks, no contentious fork, so it can adopt new standards without an emergency.
Independently validated
QRL 2.0's cryptography cleared a clean Halborn audit (no vulnerabilities), with Trail of Bits auditing the full protocol; roughly 50% of the audits are fully complete and remediated as of mid-2026.
Recognized
Named as already post-quantum secure in Google's March 2026 quantum whitepaper.
QRL 2.0 in depth
Post-quantum smart contracts, EVM-compatible
- EVM-compatible: a Solidity-superset contract language on a post-quantum EVM, so Ethereum developers port over with minimal changes.
- Proof-of-Stake: energy-efficient consensus, post-quantum throughout.
- NIST-standard signing: ML-DSA-87 (FIPS 204), with crypto-agility built in.
- Live on testnet: Testnet V2 public since March 31, 2026. Deploy contracts and stake today.
- Benchmarked and audited: testnet throughput in Ethereum's range despite far larger post-quantum signatures, plus a clean Halborn audit. Roughly half of the full audit program is already complete and remediated; mainnet follows on completion.
The vision
A ready home for crypto's post-quantum future
- When the migration scramble hits, projects need somewhere already safe to go.
- QRL 2.0 is built for it: EVM-compatible to port into, and post-quantum by default so nothing is left to migrate once you arrive.
- QRL does not need to replace Ethereum. The goal is to be the proven, audited, post-quantum EVM destination while the rest of the industry is still mid-migration.
- A chain that was quantum-safe from its first block is how the long-term future of decentralized finance gets secured.