OPN Intel
LIVE
BTC$76,620MAYER0.95×200W1.25×PI-CYCLE38%DRAWDOWN-39%PUELL0.81×W-RSI45BMSB0.97×
AS OF 2026-05-24
Intel· Quantum series· June 23, 2026· 5 min read

Trump Executive Order Moves Federal PQC Deadline to 2031

On Monday, June 22, President Trump signed two executive orders on quantum computing: one setting a target of deploying a scientifically relevant quantum computer at a national lab by 2028, and one moving the federal post-quantum cryptography migration deadline from 2035 to December 2031. NIST must complete a pilot migration of federal systems by end of 2027. Federal civilian agencies must move high-value key-establishment systems to ML-KEM by end of 2030 and digital signature systems to ML-DSA by end of 2031. The orders cover federal agencies. They say nothing about Bitcoin. The 6.9 million BTC the Coinbase advisory board identified in April as sitting in quantum-vulnerable addresses has no equivalent mandate, no named enforcement authority, and no funded migration plan. Federal agencies get a 4-year acceleration and a compliance checklist. Self-custody Bitcoin holders get the same community debate they have been having since 2021.

Key takeaways

  1. On June 22, 2026, President Trump signed two quantum computing executive orders. The first, titled 'Ushering in the Next Frontier of Quantum Innovation,' sets a target of deploying a scientifically relevant quantum computer at a national laboratory or Department of Energy facility by 2028 and directs Commerce, Energy, Defense, and NASA to develop quantum sensor and networking deployment plans within five years. White House OSTP Director Michael Kratsios confirmed publicly that the 2028 deployment target is achievable.
  2. The second order moves the federal post-quantum cryptography migration deadline from 2035 to December 2031, a 4-year acceleration. Specific milestones: NIST completes a pilot migration of federal systems by end of 2027. All federal civilian agencies migrate high-value key-establishment assets to ML-KEM (FIPS 203, formerly CRYSTALS-Kyber) by end of 2030. Digital signature systems migrate to ML-DSA (FIPS 204, formerly CRYSTALS-Dilithium) by end of 2031. The Office of Management and Budget and the National Cyber Director are the named enforcement authorities.
  3. The Coinbase advisory board identified 6.9 million BTC in April 2026 as sitting in quantum-vulnerable addresses where public keys are already exposed on-chain, approximately 33% of circulating supply. BIP-360 (Pay to Quantum Resistant Hash) is active on testnet. BIP-361, the freeze proposal for legacy-format coins, remains in community debate. Postquant Labs' Quip Network launched in May 2026 as the first permissionless individual migration tool. None of these has a mandate, a deadline, or an enforcement mechanism equivalent to the federal orders.
  4. The shift from 2035 to 2031 carries an implicit signal: the US government no longer believes 2035 is a safe timeline. The Trump administration saw the same accelerating hardware curves, falling resource estimates, and expanding adversary programs that the Coinbase advisory board flagged in April, and concluded the government needs 4 more years of lead time than prior guidance assumed. If 2035 was too slow for federal systems, the argument that Bitcoin has another decade to settle its migration debate has less government behavior to support it.
  5. Federal agencies have a compliance checklist, institutional engineering resources, and named enforcement authorities. Self-custody Bitcoin holders have private keys, community BIPs, and individual responsibility for migrating on a timeline no executive order will set and no custodian will execute on their behalf. The asymmetry is structural and has been visible since the Coinbase advisory board paper. The Trump orders make the asymmetry a matter of federal policy.

What Happened

On June 22, 2026, President Trump signed two executive orders on quantum computing. The first, titled 'Ushering in the Next Frontier of Quantum Innovation,' sets a 2028 target for deploying a scientifically relevant quantum computer at a national laboratory or Department of Energy facility. It also directs the Departments of Commerce, Energy, and Defense, plus NASA, to develop quantum sensor and networking deployment plans within five years. White House Office of Science and Technology Policy Director Michael Kratsios stated publicly that the 2028 deployment target is achievable.

The second order moves the federal government's post-quantum cryptography migration deadline from 2035 to December 2031, a 4-year acceleration. The order establishes specific milestones: NIST completes a pilot migration of federal systems by end of 2027; all federal civilian agencies migrate high-value key-establishment assets to ML-KEM (FIPS 203) by end of 2030; and digital signature systems migrate to ML-DSA (FIPS 204) by end of 2031. The Office of Management and Budget and the National Cyber Director are the named enforcement authorities. The orders also direct the intelligence community to protect US quantum research from foreign adversary theft, a signal that foreign programs are considered more advanced than publicly disclosed timelines suggest.

The Signal in the Deadline Acceleration

The move from 2035 to 2031 is the more important signal. The Biden-era NSM-10 guidance set 2035 as the federal PQC migration target. Four years of accelerating hardware development, falling resource estimates, and expanding adversary programs changed that calculation. Google's March 2026 paper estimated a full break of 256-bit ECC could require fewer than 500,000 physical qubits, a 20-fold reduction from prior estimates. The Coinbase advisory board concluded in April 2026 that 2035 may be optimistic. The Trump executive orders represent the executive branch arriving at the same conclusion and encoding it as federal policy.

A 2028 scientifically relevant quantum computer is not necessarily a cryptographically relevant machine capable of running Shor's algorithm against 256-bit keys at wallet scale. The genuine hardware trajectory puts credible cryptographic capability in the 2030s, and critics of immediate urgency note that BIP-360 is already active on testnet and that Bitcoin has navigated major coordination challenges before. Those arguments have real weight. What they do not account for is that quantum migration has to precede the attack: you cannot retroactively migrate exposed public keys once a capable machine exists. The 2028 target and the 2031 migration deadline together frame a 3-year protection window the government considers adequate, implying the executive branch believes credible threat capability may exist before the deadline.

Federal Agencies Get a Plan; Bitcoin Gets the Same Debate

Federal agencies now have a checklist. Inventory cryptographic dependencies. Migrate key-establishment to ML-KEM by 2030. Migrate digital signatures to ML-DSA by 2031. OMB tracks it. The National Cyber Director enforces it. Agency CISOs own it. Acquisition vehicles and contractor compliance requirements for FIPS-203 and FIPS-204 implementations will exist before the deadlines. The plan is bureaucratic and slow, but it is funded and it is mandatory.

Bitcoin's migration path remains community-coordinated and individually executed. BIP-360 defines a new address type (P2QRH, Pay to Quantum Resistant Hash) using hash-based signatures. BIP-360 is active on testnet but has not been formally proposed for mainnet activation. BIP-361 would enforce migration by making unmigrated legacy coins unspendable after a transition window, generating controversy because of the approximately 1 million Satoshi-attributed coins it would affect. Postquant Labs' Quip Network, launched in May 2026, offers a permissionless option through Arch Network's smart contract layer requiring no protocol change. Each path has real promise and real caveats. None has a mandate. The Coinbase advisory board made the structural risk explicit in April: a badly handled quantum migration becomes a centralization argument, because custodians will move faster than self-custody users. The Trump executive orders do not change that dynamic. They sharpen it. Regulated custodians will face pressure to align with the compliance environment federal agencies now operate under. Self-custody holders will face exactly what they faced before: their own responsibility.

What This Means for You

If you self-custody Bitcoin, the executive orders update your timeline frame rather than your immediate operational posture. The US government has put 2031 in writing as the deadline for protecting high-value federal systems from post-quantum attack. Bitcoin has no equivalent mandate. But the implicit logic is useful: if the executive branch believes 2031 is the appropriate protection deadline for its own systems, the case that Bitcoin's community has another decade without urgency no longer has government behavior to support it.

The action items remain what they have been since April. Stop reusing addresses. Use hardware wallets with active development programs, because quantum-resistant firmware will need to ship before 2031 and you want to be on a device that will receive it. Evaluate Postquant Labs' Quip Network after the third-party audit publishes. Watch BIP-360's path toward mainnet activation. Maintain access to your seed phrase and private keys: the migration, when it comes, will require a spending transaction from your current keys to a new quantum-resistant address. If your keys are inaccessible, migration is impossible. The migration window is the asset. The executive orders just made the window visible from the federal policy layer.

If you hold Bitcoin through a regulated custodian, watch whether Coinbase, BlackRock, or Fidelity publish updated PQC roadmaps in response to the orders within the next 90 days. Coinbase published a position through its advisory board in April. BlackRock and Fidelity have not. But note the mechanism: a custodian can migrate your coins to a quantum-resistant address on your behalf, because it holds the keys. A self-custody holder has to sign that spending transaction themselves, from keys they still control, before a capable machine exists. Quantum migration is the one upgrade that requires moving coins, not just running new software. That is why the migration window, not the deadline, is the thing to protect.

What to Watch

NIST's 2027 pilot migration is the first verifiable checkpoint in the new federal timeline; watch it for progress updates. Whether major custodians publish PQC roadmaps in response is the clearest near-term institutional signal. BIP-360's status on Bitcoin's developer mailing list bears watching, since external policy events have historically reopened stalled community debates. The Quip Network audit, expected in coming weeks, would make permissionless individual migration a credible option at scale if it holds up. Any declassified intelligence assessment of adversary quantum programs would set a more concrete threat timeline than any academic paper or vendor estimate has. And the migration mandate becomes operational reality the moment the 2030 ML-KEM deadline starts appearing in federal acquisition vehicles and contractor requirements.

The federal government has a deadline, named standards, and named enforcers. Bitcoin's migration is a spending transaction only the keyholder can sign, on a timeline no order will set. Whoever holds the keys does the migrating.

Sources

  1. [1]Bitcoin Magazine — 'Trump Signs Quantum Computing Orders — What Does This Mean For Bitcoin?', June 22, 2026
  2. [2]TheStreet Crypto — 'Trump signs quantum orders that could reshape crypto security', June 22, 2026
  3. [3]CyberScoop — 'Trump executive orders speed up post-quantum migration, boost industry', June 22, 2026
  4. [4]SecurityWeek — 'Trump Signs Executive Order Accelerating Post-Quantum Cryptography Migration', June 22, 2026
  5. [5]Decrypt — 'Trump Orders Acceleration of Quantum Readiness as Bitcoin Faces Coming Risk', June 22, 2026
  6. [6]ABC News — 'Trump signs executive orders to supercharge quantum computing', June 22, 2026
  7. [7]OPNorange archive — 'Coinbase's Quantum Board Flags 6.9 Million Bitcoin as Vulnerable', April 22, 2026
  8. [8]OPNorange archive — 'Postquant Labs Shipped Quantum Protection Without a Bitcoin Soft Fork', April 28, 2026
  9. [9]OPNorange archive — 'Project Eleven's 15-Bit Quantum Bounty, Reproduced in 20 Python Lines', April 30, 2026
Quantum series · Part 9 of 9
← Previous part
Project Eleven's 15-Bit Quantum Bounty, Reproduced in 20 Python Lines

More in Quantum

Project Eleven's 15-Bit Quantum Bounty, Reproduced in 20 Python LinesPostquant Labs Shipped Quantum Protection Without a Bitcoin Soft ForkCoinbase's Quantum Board Flags 6.9 Million Bitcoin as Vulnerable