If quantum computers break current keys, could attackers drain player wallets before the migration finishes?

This is an important question about blockchain security, though the provided preprints don't directly address the wallet-draining scenario you're asking about.

Here's what we know from the archive:

The quantum threat to cryptographic keys is real but not imminent. Shor's algorithm can break the discrete-logarithm and RSA schemes that currently protect cryptocurrency wallets [AG-2024.05-2225]. However, a fault-tolerant quantum computer powerful enough to execute Shor's algorithm "seemed to be far out in the future" when the algorithm was invented, and remains so—quantum computers today are not believed to currently pose security risks to cryptographic systems [AG-2024.01-2022].

The migration timeline matters. Post-quantum cryptography solutions already exist: lattice-based schemes like Kyber and Dilithium are considered safe against both quantum and classical attacks [AG-2024.05-2225], and researchers have studied how to redesign blockchains around quantum-resistant cryptosystems [AG-2024.02-1291]. Whether attackers could drain wallets *during* a migration window depends on how quickly the ecosystem deploys these defenses—a governance and coordination problem, not a physics one.

Quantum mining poses a separate threat. Even before quantum computers break cryptographic keys, a sufficiently powerful quantum miner could execute a 51%-style attack on proof-of-work blockchains like Bitcoin by manipulating block timestamps and using Grover's algorithm, though this "will likely be impossible to execute in forthcoming years" [AG-2024.03-1707].

The preprints don't address the specific scenario of attackers exploiting a migration window to extract funds from existing wallets.