A hypothetical doomsday for quantum computing could be on the horizon, computer scientists have warned for decades. But cybersecurity experts are now racing against the clock after Google announced that this “Q-Day” could be here much sooner than originally anticipated.
What is ‘Q-Day’?
It is the hypothetical day that quantum computers will acquire “enough resources and stability to crack conventional cryptography,” said CNN. When that day arrives, it could spell disaster for millions of people’s private information, as “every financial transaction, medical file, email, location history and crypto wallet protected by today’s commonly used algorithms could be unlocked.”
Unlike conventional computers, quantum computers utilize “quantum-mechanical phenomena” that allow them to “perform calculations that are practically impossible for even the most powerful supercomputers today,” said Forbes. Experts believe these computers could eventually crack RSA cryptography, the algorithm of prime numbers that helps to safeguard encryption. Some fear this could be accomplished “not in billions of years, but in hours or days.” Others believe some “bad actors may already be collecting encrypted data” in secret, said CNN.
It was previously believed that Q-Day was still far into the future, giving the tech world plenty of time to prepare new safeguards. But Google recently announced it believes the day could arrive as soon as 2029, and the “new estimate means that governments, companies and other entities may have far less time to prepare,“ said CNN. Many are comparing Q-Day with “Y2K, or the millennium bug, a computer flaw that programmers thought might cause severe systemic problems after Dec. 31, 1999.”
What can be done?
Many companies are being urged to boost their cybersecurity initiatives as the potential for Q-Day looms. Google is also creating guidelines it hopes will “provide the clarity and urgency needed to accelerate digital transitions not only for Google, but also across the industry,” the company said. To accomplish this, Google “specifically is pushing for a transition to post-quantum cryptography, or the use of new, quantum-resistant algorithms to secure data against future attacks,” said Barron’s.
Even if the 2029 date doesn’t come to pass, there is still a 10% chance Q-Day will occur by 2032, Justin Drake, a bitcoin security researcher who published a paper on the matter, said on social media. But no matter the date, other precautions are being taken. For example, cryptographers “have devised new encryption algorithms that rely on problems that quantum computers don’t have an advantage over classical computers in solving,” said Ars Technica. The National Institute of Standards and Technology has also “advanced several algorithms that have yet to be broken and are presumed to be secure.”
Government entities have been weighing in too. In 2022, the National Security Agency (NSA) announced a plan to boost Q-Day readiness by the 2030s. But recently, the deadline “has been in flux as both the Biden and Trump administrations have issued executive orders prioritizing quantum readiness,” said Ars Technica. The NSA is currently “adhering to a 2031 deadline.” Despite these plans, experts remain worried, as encryption is “not a permanent state of protection,” said Forbes. It is a “time-locked safe that someone may already be holding, waiting for the combination.”