QRI Research Note
When Quantum Can Break Tiny Shor Demo Keys
Quantum Threat Level 20
The point where Shor demonstrations stop being only classroom examples
Tiny Shor key breaks mean quantum computers can run a visible, end-to-end version of the algorithm family that threatens RSA and elliptic-curve cryptography, but only on toy-sized keys. This is a laboratory confidence milestone, not an internet security failure.
A tiny Shor break is like picking a toy lock on a desk. It proves the method is real, but it does not open a bank vault.
What this level means
Shor algorithm is the reason RSA, Diffie-Hellman, and elliptic-curve signatures are considered quantum-vulnerable. Tiny demonstrations show the algorithm pipeline: prepare quantum states, perform modular arithmetic, estimate a period, and extract the classical secret from the measurement results.
Today, demonstrations remain far below useful cryptographic sizes. The significance of this milestone would be a move from carefully tailored toy examples toward repeatable, error-corrected demonstrations that break deliberately small RSA or ECC keys without hiding the hard work in classical preprocessing.
What technology needs to be developed to get here
For this milestone, the challenge is less about raw qubit count and more about running an organized algorithmic pipeline with enough fidelity that the answer emerges reliably.
Shor-style attacks need modular multiplication, addition, comparisons, and controlled operations. Even tiny keys require the system to execute structured arithmetic rather than only random benchmark circuits.
The system must support repeated logical operations with low failure probability. If a small circuit fails often, a larger cryptographic circuit is still out of reach.
Useful arithmetic requires expensive non-Clifford operations, often supplied through magic states. Even a tiny demonstration needs early versions of this resource pipeline.
The compiler must translate number-theory algorithms into hardware-native operations without exploding depth. This is where algorithm design, quantum software, and hardware constraints meet.
The quantum computer provides samples. Classical code must turn those samples into factors or discrete logs, verify them, and handle failed runs cleanly.
A meaningful tiny Shor break should be clear about what was computed quantum mechanically and what was simplified. QRI would separate pedagogical demonstrations from genuine cryptanalytic progress.
Expected timeline and development path
Small Shor demonstrations can appear before large cryptanalytic machines. The planning question is whether they are fault-tolerant, repeatable, and scalable enough to change confidence in the roadmap.
More educational and partially compiled Shor demonstrations are likely. QRI would not score these highly unless they show scalable error correction and transparent resource accounting.
If logical qubit progress holds, tiny public-key demonstrations may become cleaner and more repeatable. The key signal is an end-to-end break of a small key using a generalizable circuit.
Tiny breaks should give way to 64-bit and 128-bit style milestones if logical gate volume and magic-state throughput continue improving.
What this means in real life
The average person should understand this as a warning light, not a siren. It shows the method is climbing out of the textbook, but does not mean everyday accounts are suddenly open.
Your browser would not be broken by a tiny demonstration. Modern TLS uses much larger keys and layered protocols.
A bank login would not be vulnerable because a lab broke a toy key. The relevance is that banks would accelerate migration plans.
Stored passwords protected with modern symmetric encryption are not the direct target of Shor algorithm.
The concept maps to signatures used for software updates, apps, documents, and device identity, but only at toy scale here.
This is the point where textbook examples become live demonstrations people can watch and verify.
The phrase key break will sound dramatic. The important question is key size, error correction, and whether the method scales.
Bitcoin relevance
Tiny Shor key breaks do not threaten Bitcoin. Bitcoin uses elliptic-curve signatures on a 256-bit curve, and a toy demonstration is far below that target.
The reason this milestone is still included is psychological and technical: it would demonstrate the entire break workflow in a form that can be improved rather than merely described.
Signals QRI would look for
- End-to-end Shor demonstrations on small RSA or ECC-style keys
- Minimal classical shortcuts or precompiled tricks
- Transparent logical qubit and gate counts
- Repeatable success rates across many trials
- Clear comparison to the next key-size target
Sources and framing
QRI treats these dates as planning ranges, not predictions. The references below inform the article series: NIST has finalized practical PQC standards, NIST NCCoE emphasizes inventory and migration planning, NSA/CNSA guidance says planning and budgeting should happen now, and Google has published both an accelerated PQC migration target and updated factoring-resource estimates.