Suis-je déjà exposé aux risques des ordinateurs quantiques ?

Les attaques de type "récolter maintenant, déchiffrer plus tard" sont déjà en cours — des acteurs étatiques collectent aujourd’hui des données chiffrées pour les déchiffrer dès qu’un ordinateur quantique capable existera. Les données sensibles à longue durée de vie comme les dossiers médicaux sont les plus exposées.

Qu’est-ce que la cryptographie post-quantique ?

La cryptographie post-quantique (PQC) désigne des algorithmes cryptographiques conçus pour résister aux attaques quantiques. En 2024, le NIST a publié les premiers standards PQC — CRYSTALS-Kyber et CRYSTALS-Dilithium — pour remplacer les systèmes RSA et ECC vulnérables.

Que puis-je faire pour me préparer au Q-Day ?

Si vous gérez des infrastructures critiques ou traitez des données sensibles de longue durée, commencez par un inventaire cryptographique, suivez les recommandations de migration post-quantique du NIST et entamez la transition vers des systèmes compatibles PQC. La plupart des grands fournisseurs cloud proposent déjà des options TLS compatibles PQC.

Bitcoin et les cryptomonnaies survivront-ils au Q-Day ?

La plupart des cryptomonnaies utilisent la cryptographie sur courbes elliptiques (ECC) pour les portefeuilles, ce qui les rend vulnérables aux attaques quantiques. Les signatures ECDSA de Bitcoin pourraient être compromises par un ordinateur quantique suffisamment puissant. La communauté crypto discute activement des voies de migration post-quantique.

Compte à rebours Q-Day | Quand les ordinateurs quantiques briseront-ils le chiffrement ?

Q: Qu’est-ce que le Q-Day ?

Le Q-Day est le moment prédit où un ordinateur quantique deviendra suffisamment puissant pour briser le chiffrement RSA — le système qui protège aujourd’hui la grande majorité du trafic Internet, des opérations bancaires et des communications. Quand il arrivera, toutes les données chiffrées avec les standards actuels pourront être déchiffrées rétroactivement.

Q: Quand les ordinateurs quantiques briseront-ils le chiffrement RSA ?

Les estimations varient : l’équipe de sécurité interne de Google vise 2029, le NIST et la NSA planifient 2030 comme date limite critique de migration, et le Global Risk Institute estime une probabilité de 50 % pour 2035. La chronologie dépend largement des progrès en qualité de qubits et en correction d’erreurs.

La Course

Jalons de l'informatique quantique

2019

Quantum Supremacy — Sycamore

53-qubit chip completes a task in 200 s that a supercomputer would need ~10,000 years for.

2022

Surface Code Logical Qubit

First proof that adding more physical qubits reduces logical error rate — below-threshold error correction confirmed.

2023

QEC Below Threshold at Scale

72-qubit device demonstrates logical qubit with error suppression better than any single physical qubit.

2024

Willow — Exponential Error Reduction

105 qubits. Each code distance step halves error rate. Benchmark: 5 min vs. 10²⁵ years classically.

2025

First Verifiable Quantum Advantage

65-qubit subsystem of Willow produces certified random bits — impossible to fake or replicate classically.

2029 — Target

Fully Error-Corrected Computer

Google's stated goal: a useful, error-corrected quantum computer capable of tackling real-world problems.

défiler →

2021

Eagle — 127 Qubits

First chip to break the 100-qubit barrier. Heavy-hexagonal layout reduces error rates between neighbors.

2022

Osprey — 433 Qubits

Quadrupled qubit count in one generation. IBM publishes roadmap to 4,000+ qubit systems.

2023

Condor — 1,121 Qubits

World's first 1,000+ qubit chip. 50% increase in qubit density. Also ships Heron (133Q) with best-in-class gate fidelity.

2024

Flamingo — Multi-Chip Quantum Link

462-qubit chip with built-in quantum communication link — first step toward connecting multiple processors.

2026 — Target

Kookaburra — 4,158 Qubits

Three 1,386-qubit chips linked via chip-to-chip couplers — IBM's first large-scale multi-chip system.

2029 — Target

Fault-Tolerant System

IBM roadmap end-goal: fault-tolerant quantum computer with tens of thousands of logical qubits.

défiler →

2022

Topoconductor Discovered

Microsoft creates the world's first topoconductor — a material enabling topological superconductivity, previously only theoretical.

2023

Majorana Zero Modes Confirmed

Peer-reviewed evidence in Physical Review of inducing topological Majorana modes — the building block of topological qubits.

Feb 2025

Majorana 1 — First Topological Chip

8 topological qubits on a chip designed for 1 million. Digital qubit control vastly simplifies quantum computing architecture.

~2027 — Target

Topological Qubits at Scale

Microsoft claims its approach will reach a cryptographically relevant scale "in years, not decades" — potentially leapfrogging competitors.

défiler →

2016

PQC Competition Launched

NIST calls for submissions of quantum-resistant cryptographic algorithms. 69 candidates enter from teams worldwide.

2022

NSA: Migrate Critical Systems by 2030

NSA's CNSA 2.0 directive orders U.S. national security systems to complete post-quantum migration by 2030.

2024

First PQC Standards Published

NIST finalizes CRYSTALS-Kyber, CRYSTALS-Dilithium, and SPHINCS+ — the world's first post-quantum cryptography standards.

2030 — Deadline

NSA Migration Deadline

All U.S. national security systems must complete migration to post-quantum cryptography. Most global infrastructure still at risk.

2035 — Risk Window

Global Risk Institute Q-Day Estimate

GRI's 50% probability estimate: the moment a quantum computer can crack RSA-2048 arrives by 2035.

défiler →

2021

$450M Series D

Largest quantum funding round to date. Bet: silicon photonic chips manufactured at scale using standard CMOS semiconductor fabs.

2023

GlobalFoundries Partnership

First quantum company to manufacture chips in a commercial semiconductor fab — enabling mass production of photonic qubits.

Feb 2025

Omega Photonic Processor

Silicon photonic processor unveiled — key building block toward a fault-tolerant machine with 1M+ physical qubits.

2025

$1B Raise — $7B Valuation

World's most-funded quantum startup. Backed by Microsoft, HSBC, BlackRock among others.

2027–2028 — Target

1,000,000 Physical Qubits

First commercially useful fault-tolerant quantum computer with 1M+ photonic qubits — potentially enabling Shor's algorithm against RSA.

défiler →

2021

IPO — First Pure-Play Quantum Stock

IonQ lists on NYSE — the first publicly traded company focused solely on quantum computing.

2023

Forte — 35 Algorithmic Qubits

Trapped-ion system reaches 35 #AQ — one of the highest-quality qubit metrics in the industry.

2024

Real-World Quantum Speedup

Engineering firm Ansys uses IonQ to accelerate fluid dynamics analysis for medical devices — 12% speedup over classical computing.

2028 — Target

Cryptographically Relevant QC

IonQ roadmap targets a CRQC capable of running Shor's algorithm on RSA-2048 — requires ~4,000 logical qubits.

2030 — Target

2M Physical / 80K Logical Qubits

Long-term: a trapped-ion system with 2 million physical qubits and 80,000 logical qubits for broad quantum advantage.

défiler →

2021

First Fully Error-Corrected Logical Qubit

Demonstrates a fully error-corrected logical qubit using the Steane code — a world first in quantum error correction.

2022

H1 — World Record Quantum Volume

H1 processor sets a world record quantum volume score — a holistic measure of overall system capability.

2024

H2 — 56 Trapped-Ion Qubits

H2 ships with best-in-class two-qubit gate fidelity (>99.9%). Partners with Microsoft on logical qubit research.

2025

12 Logical Qubits — 800× Error Reduction

With Microsoft: runs 12 logical qubits on H2 with error rates 800× better than physical qubits — largest logical qubit demo to date.

Late 2020s — Target

Small Fault-Tolerant Machine

Roadmap: tens of logical qubits fully fault-tolerant — sufficient for early quantum advantage in chemistry and materials science.

défiler →

Explication

Qu'est-ce que le Q-Day et pourquoi devriez-vous vous en préoccuper ?

Le Q-Day désigne le moment où un ordinateur quantique devient suffisamment puissant pour casser le chiffrement RSA — la base de la sécurité internet actuelle.

Technologie

Cryptographie post-quantique : la course pour protéger Internet

Le NIST a finalisé ses premiers standards de chiffrement post-quantique. Mais à quelle vitesse le monde les adoptera-t-il — et est-ce suffisamment rapide ?

Recherche

La puce Willow de Google : une étape vers le Q-Day

Le dernier processeur quantique de Google change la donne. Nous décryptons ce que la percée Willow signifie réellement pour le calendrier du Q-Day.

Standards & Politique

Le NIST sélectionne HQC : un bouclier de secours contre les attaques quantiques

En mars 2025, le NIST a choisi HQC comme cinquième algorithme post-quantique — un filet de sécurité basé sur des mathématiques entièrement différentes.

What is Q-Day?

Q-Day is the predicted moment when a quantum computer becomes powerful enough to break RSA encryption — the system protecting most internet traffic, banking, and communications today. When it arrives, any data encrypted with current standards can be decrypted retroactively.

When will it happen?

Estimates vary: Google's internal security team targets 2029, NIST and the NSA are planning for 2030 as a critical migration deadline, and the Global Risk Institute puts a 50% probability on 2035. The timeline depends heavily on progress in qubit quality and error correction.

Am I already at risk?

"Harvest now, decrypt later" attacks are already happening — state actors are collecting encrypted data today to decrypt once a capable quantum computer exists. Sensitive data with long shelf-life (medical records, financial history, state secrets) is most at risk.

What is post-quantum cryptography?

Post-quantum cryptography (PQC) refers to cryptographic algorithms designed to be secure against quantum attacks. In 2024, NIST published the world's first PQC standards — CRYSTALS-Kyber and CRYSTALS-Dilithium — to replace vulnerable RSA and ECC encryption.

What can I do?

If you run critical infrastructure or handle sensitive long-lived data: begin a cryptographic inventory, follow NIST's migration guidance, and start transitioning to PQC-ready systems. Most major cloud providers are already offering PQC-compatible TLS options.

Will Bitcoin and crypto survive Q-Day?

Most cryptocurrencies use elliptic curve cryptography (ECC) for wallets — which is vulnerable to quantum attacks. Bitcoin's ECDSA signatures could be broken by a sufficiently large quantum computer. The crypto community is actively discussing post-quantum migration paths.

2016

NIST

PQC Competition Launched

NIST calls for quantum-resistant cryptography submissions. 69 candidates enter from teams worldwide.

2019

Google

Sycamore — Quantum Supremacy

53-qubit chip solves a task in 200 s that would take a classical supercomputer ~10,000 years.

2021

IBM

Eagle — 127 Qubits

First chip to break the 100-qubit barrier. IBM announces a fault-tolerant QC target by 2029.

2021

Quantinuum

First Error-Corrected Logical Qubit

Fully error-corrected logical qubit demonstrated using the Steane code — a world first.

2022

Google

Surface Code Below Threshold

Proven: adding physical qubits to a logical qubit reduces errors. A foundational QEC milestone.

2022

NSA

CNSA 2.0 — Migrate by 2030

NSA orders U.S. national security systems to complete post-quantum migration by 2030.

2023

IBM

Condor — 1,121 Qubits

World's first 1,000+ qubit chip. Also ships Heron (133Q) with best-in-class gate fidelity.

2023

Harvard / QuEra

48 Logical Qubits

First logical quantum processor using neutral atoms — 48 logical qubits at 99.5% gate fidelity.

2023

Microsoft

Majorana Zero Modes Confirmed

Peer-reviewed evidence of Majorana modes — the building block of Microsoft's topological qubit.

2024

Google

Willow — Exponential Error Reduction

105 qubits. Each code distance step halves error rate. 5 min vs. 10²⁵ years classically.

2024

NIST

First PQC Standards Published

CRYSTALS-Kyber, Dilithium, SPHINCS+ — the world's first post-quantum cryptography standards.

Feb 2025

Microsoft

Majorana 1 — Topological Chip

8 topological qubits on a chip built for 1 million. A new state of matter applied to quantum computing.

2025

Google

Verifiable Quantum Advantage

First quantum result impossible to replicate classically — certified random bit generation on Willow.

2025

PsiQuantum

$1B Raise + Omega Processor

World's most-funded quantum startup ($7B valuation). Photonic chip targeting 1M+ qubits by 2028.

Projected

2026

IBM · Target

Kookaburra — 4,158 Qubits

Three 1,386-qubit chips linked via quantum communication — IBM's first large-scale multi-chip system.

2028

IonQ · Target

Cryptographically Relevant QC

A machine capable of running Shor's algorithm on RSA-2048 — requires ~4,000 logical qubits.

2029

Google · IBM · Target

Fault-Tolerant Computers

Both companies target 2029 for fully error-corrected, commercially useful quantum computers.

2030

NSA · Deadline

PQC Migration Deadline

All U.S. national security systems must have completed post-quantum cryptography migration.

2035

GRI · Estimate

Q-Day Probability Peak

Global Risk Institute's 50% probability estimate: a quantum computer capable of breaking RSA-2048.

défiler →

We are already having the wrong conversation in cryptography if we argue about whether we have one, three, or five years before quantum computers will break today's security algorithms. We must always be ahead of the curve — especially in the era of 'Store now, decrypt later'.

Johann Polecsak Co-Founder & CTO — QANplatform

In three to five years' time, we will have that moment where from a cryptographic standpoint we have to adapt to quantum, for sure.

Sundar Pichai CEO — Google · Bloomberg, Feb 2025

Preparing for a post-quantum world will be a complex change programme that makes fixing the Millennium Bug look easy.

Ollie Whitehouse Chief Technologie Officer — NCSC, UK National Cyber Security Centre

The averaged expert estimate of the probability of a cryptographically relevant quantum computer emerging within the next 10 years is now between 28% and 49% — the highest in this report's history.

Michele Mosca Co-founder, evolutionQ — Professor, University of Waterloo · Quantum Threat Timeline Report 2025

Q-Day could come as soon as 2025. The question is not if, but when — and most organisations are dangerously unprepared.

Tilo Kunz Executive VP — Quantum Defen5e · US Defense Information Systems Agency briefing

Elliptic curves are going to die. There is about a 20% chance that quantum computers capable of breaking today's cryptography arrive before 2030 — and that is not a risk Ethereum can afford to ignore.

Vitalik Buterin Co-founder — Ethereum · Devconnect, Buenos Aires, Nov 2025

It's a really serious threat, and I think the modern crypto community doesn't fully understand just how serious it is. My forecast is a matter of years — not decades.

Dmitry Gerasimov CEO — Demlabs · Founder, Cellframe Network · post-quantum blockchain infrastructure

When a suitably powerful quantum computer becomes available, conventional digital signature schemes will be broken — and all existing ledgers will be susceptible to attack. I built QRL because this is not a theoretical problem.

Peter Waterland Founder & Lead Developer — Quantum Resistant Ledger (QRL)

Q-Day

Comment ce compte à rebours est-il calculé ?

Nous contacter

Keep Q-Day ticking