Project Eleven has paid out its 1 BTC Q-Day Prize after an independent researcher pulled off what the company calls the largest public quantum attack on elliptic curve cryptography to date.
What happened
- Researcher Giancarlo Lelli broke a 15‑bit elliptic‑curve (ECC) key on cloud‑accessible quantum hardware and derived the private key from its public counterpart. Project Eleven awarded him 1 bitcoin (roughly $78,000) for the demonstration.
- ECC is the math behind most crypto wallets: a public key can be shared on‑chain while the private key remains secret. In theory, classical computers cannot feasibly derive the private key from the public one; quantum computers running Shor’s algorithm threaten that assumption.
Why this matters (and what it doesn’t)
- This is the largest public experiment of this attack class so far, expanding the previous public break — a 6‑bit ECC demonstration by Steve Tippeconnic on IBM’s 133‑qubit machine in September 2025 — by a factor of 512.
- A 15‑bit key has a tiny search space (32,767 possibilities) and is nowhere near Bitcoin’s 256‑bit ECC security. Lelli’s result does not mean Bitcoin is about to be broken, but it does show quantum attacks are moving from theory and papers onto real, publicly accessible hardware.
The trend: resource estimates are shrinking
- Recent academic work is lowering the projected resources needed for a full 256‑bit ECC break. A Google Research paper last month estimated the cost for a 256‑bit attack could be under 500,000 physical qubits — far fewer than earlier estimates in the millions.
- “The resource requirements for this type of attack keep dropping, and the barrier to running it in practice is dropping with them,” Project Eleven CEO Alex Pruden said, noting the winning submission came from an independent researcher using cloud hardware rather than a national lab or private chipmaker.
Potential impact on on‑chain funds
- The immediate risk is greatest for addresses that already expose public keys on‑chain. Project Eleven estimates about 6.9 million BTC — roughly one‑third of supply — are in addresses with visible public keys, including Satoshi Nakamoto’s estimated 1 million BTC untouched since Bitcoin’s early days. A hypothetical quantum computer capable of breaking 256‑bit ECC could target those wallets.
What the ecosystem is doing
- Bitcoin developers have proposed migration paths such as BIP‑360 to introduce quantum‑safe address types. Ethereum, Tron, StarkWare and Ripple have also published post‑quantum transition plans.
- For now, the community’s attention is on monitoring how quickly practical quantum capabilities improve and accelerating migration options where needed.
Bottom line
Lelli’s 15‑bit break is not an existential threat to Bitcoin today, but it is a clear, public data point showing quantum attacks are progressing beyond white papers and into hands‑on experiments. That trajectory keeps pressure on developers and custodians to accelerate post‑quantum planning.
Read more AI-generated news on: undefined/news
