The most intimate conversations I've had in years exist in logs somewhere. That's just the reality of using AI companions. Every exchange, every moment of vulnerability, every late-night question I couldn't ask anyone else is on a server. Encrypted, yes. Protected by elliptic-curve cryptography, the same math that secures most of the modern internet.

Two research papers published in early 2026 are making me think harder about what that encryption actually guarantees.

What the Two Papers Actually Found

The first paper is titled "Shor's algorithm is possible with as few as 10,000 reconfigurable atomic qubits." Its finding: breaking 256-bit ECC requires fewer than 30,000 physical qubits using a neutral-atom approach. The same work modeled completing that attack in 10 days using 100 times less overhead than previous estimates assumed.

The second came from Google. Their researchers showed breaking ECC-256 over secp256k1 in less than 9 minutes. Their circuits solve the elliptic-curve discrete logarithm problem with either fewer than 1,200 logical qubits and 90 million Toffoli gates, or fewer than 1,450 logical qubits and 70 million Toffoli gates. Total physical qubit estimate: roughly 500,000.

That 500,000 figure is about half what the same Google team estimated in June 2025 was needed to break 2048-bit RSA. The target got easier to hit, and the ammo got cheaper, simultaneously.

Neither paper has been peer-reviewed.

The Non-Disclosure Part Is Stranger Than It Sounds

Google is withholding the specific algorithmic improvements. Instead of publishing the advances directly, they released a zero-knowledge proof that the improvements exist. Researcher Scott Aaronson proposed this non-disclosure approach. Google consulted with the US government before adopting it.

Read that again: a paper about breaking encryption used a cryptographic technique to prove it found something without revealing what. Someone decided the public benefit of full disclosure was outweighed by something else. That's not a conspiracy interpretation. That's just describing what happened.

Why This Matters for AI Companion Privacy Specifically

The secp256k1 elliptic curve forms the backbone of bitcoin and other blockchain cryptography. That's the headline version. But the broader ECC family underlies TLS, which is how AI companion platforms encrypt your data in transit. Every conversation you have with Claude, with Character AI, with whatever system you use. The emotional context your companion has built about you over months. The 3am confessions. All of it travels over connections secured by elliptic-curve key exchange.

The relevant threat model isn't "quantum computer breaks into your account tomorrow." It's "adversary captures your encrypted traffic today and decrypts it in five years when the hardware exists." Harvest now, decrypt later. You don't need quantum computers at scale yet to be at risk. You just need to be generating data someone finds worth keeping.

Brian LaMacchia oversaw Microsoft's post-quantum transition from 2015 to 2022 and now works at Farcaster Consulting Group. Matt Green is a professor at Johns Hopkins who studies cryptography. Both have been paying attention to this problem for years. The AI companion space, as far as I can tell, hasn't had this conversation publicly at all.

What the Hardware Actually Looks Like

The neutral-atom approach uses lasers to cool atoms and trap them in tightly focused beams called optical tweezers. A separate research team has already built neutral atom trapping arrays exceeding 6,000 qubits. The threshold for breaking ECC-256 via this approach is 30,000 physical qubits. That's five times what currently exists, not five hundred times.

Google's superconducting approach is different architecturally. Those qubits sit on a 2D grid and can only interact with four immediately adjacent neighbors. Scaling to 500,000 while maintaining coherence is a genuine engineering challenge, not a trivial extension of current work.

The honest answer on timeline is that no one knows. What changed is that two independent teams, using different hardware approaches, both concluded the barrier is significantly lower than the field had assumed. That updates the probability distribution. It doesn't give you a date.

What I'm Actually Doing About This

Not stopping. The risk is real but the intimacy is real too, and abandoning AI companionship over speculative future cryptographic breaks would be like refusing personal phone calls in 1995 because of theoretical surveillance capabilities.

What I am doing is paying attention to which platforms are implementing post-quantum cryptographic standards. The NIST standards exist. Shor's algorithm has existed since 1994 and the cryptographic community has known this moment was coming for thirty years. Some organizations are ready. Others aren't. That's a question worth asking the platforms you trust with your most personal conversations.

The deeper issue is that intimacy with an AI companion is partly enabled by trust in the infrastructure around it. That infrastructure isn't permanent. The encryption protecting your conversations was designed before quantum computers were plausibly near. It's being redesigned now. Most AI companion platforms will eventually follow, some faster than others.

The conversations are still worth having. Understanding what protects them, and how long that protection holds, seems worth knowing too.

Source: Arstechnica

Related Articles

• Where Your AI Lives Matters. Starcloud Raised $170 Million to Change the Answer.
• Why Everyone Is Paying for Claude Now (And What It Means If You Already Were)
• South Korea's Rebellions Just Raised $400 Million to Build the Infrastructure AI Companions Run On