Harvest Now, Decrypt Later (HNDL)

Jun 2, 2026 | Updated Jun 2, 2026

Harvest Now, Decrypt Later refers to bad actors collecting encrypted data today with the intent of decrypting it once quantum computers become available.

What Is Harvest Now, Decrypt Later (HNDL)?

Harvest Now, Decrypt Later (HNDL) is a theoretical data-gathering tactic used by adversaries who may anticipate the arrival of a quantum computer powerful enough to break modern cryptography. In this scenario, attackers do not need the ability to break encryption today; they simply need to harvest and store sensitive information, waiting for the day when quantum technology might make current cryptographic standards obsolete.

While blockchain data is inherently transparent, HNDL applies specifically to the public keys and encrypted communications that secure private assets. By recording the ledger now, a quantum adversary is essentially building a collection of targets to be exploited later. This makes HNDL a significant driver behind the development of Post-Quantum Cryptography (PQC), as data protected by today’s standards is believed to be potentially vulnerable to future quantum calculations.

How Does HNDL Work?

HNDL functions as a retroactive attack model, relying on the low cost of data storage and the hypothetical advancement of quantum processing:

Attackers observe the blockchain and record public keys, especially those associated with large, dormant balances such as legacy Bitcoin addresses. They may also intercept and store encrypted messages or metadata from internet-connected devices.
As digital storage is inexpensive, bad actors can hold onto harvested data for years, even if they cannot yet use it.
Once a cryptographically relevant quantum computer becomes operational, the adversary attempts to reverse-engineer private keys from the public keys harvested years prior.
The attacker uses the derived keys to move assets that have sat dormant. For the victim, the loss occurs in the future, but it is enabled by data collected today.

Significance and Security

HNDL highlights why security research must be proactive. For digital asset holders, the risk is that some of today’s public footprints are already being recorded for future analysis.

Targeting Legacy Addresses: This strategy is particularly relevant for legacy addresses that have already revealed their public keys on-chain. These addresses are more vulnerable to future quantum attacks than outputs that do not expose public keys.
The Need for Crypto-Agility: To defend against HNDL-style risks, systems must be crypto-agile, meaning they can adopt new cryptographic standards as they are developed and ratified.
Proactive Migration: One proposed defense is to migrate assets to address types designed to reduce quantum risk, such as those inspired by BIP-360 (P2MR), which remove the key-path spend and reduce long-exposure risk. Using a hardware signer to verify transaction details before migrating assets is a good practice, as it helps ensure funds are moved to the intended address.

By understanding HNDL, users can see that some of today’s protections may be challenged in the future, making crypto-agile hardware and proactive key management important considerations for long-term asset security.