Quantum Snake Oil

Unbounded Key Length

This article is part of the Quantum Snake Oil Dictionary a series examining terms used in quantum technology marketing. The series is divided into Red Flag Terms (terms with no established technical meaning that almost always signal hype or fraud) and Misused Terms (legitimate concepts routinely stripped of context in marketing). This entry is a Misused Term.

“Unbounded Key Length”

A note before we begin. This entry examines claims built on key size: “unbounded key length,” “infinite keys,” “million-bit keys,” “near-unbounded key scalability,” and the broader intuition that bigger keys mean stronger encryption. I am not writing about any specific company or product. Key length is a real and important parameter. The intuition that more is always better is where it gets misused.

Where Bigger Keys Stop Helping

Up to a point, longer keys do mean more security, which is why the intuition feels right. Past that point, it stops, and the point arrives sooner than the marketing suggests.

For symmetric encryption, a 128-bit key already puts brute-force search beyond the reach of any classical computer that could be built, and a 256-bit key sits comfortably beyond even the reduction that Grover’s algorithm offers a future quantum computer. This is why AES-256 is the strong, standard choice and why no one needs more. A 512-bit symmetric key would not be twice as secure as 256; it would be unbreakable and then unbreakable, with the extra bits buying nothing but slower performance. Doubling a number that is already past the point of physical infeasibility does not double anything that matters.

For public-key cryptography the relationship is even less flattering to the marketing. Security strength grows far more slowly than key size. RSA at 3,072 bits provides roughly the 128-bit security level; reaching the 256-bit level requires a 15,360-bit key. Each doubling of strength costs far more than a doubling of key length, with steep penalties in speed and size, and the ceiling is always set by the best known attack on the underlying problem rather than by the raw bit count.

Security Lives in the Problem, Not the Bit Count

The deeper issue is that key length is not the source of cryptographic strength. The source is the hardness of the mathematical problem the cipher rests on, and the quality of the cipher’s design and implementation. A long key on a weak scheme is weak. A long key generated from poor randomness is weak no matter how many bits it has, because an attacker who can predict or narrow the key space never has to search all of it.

This is why “more key” cannot rescue a flawed system, and why nearly every cryptosystem broken in practice was broken through its structure, its randomness, or its implementation, not because its keys were too short. Adding bits to a broken design is like adding locks to a door with no frame.

Why “Unbounded” Is a Tell

Claims of enormous or unlimited key length have been a recognized warning sign for as long as cryptographers have been cataloguing snake oil. Bruce Schneier listed ridiculous key lengths and “million-bit keys” among his warning signs back in 1999, precisely because they signal a vendor who has located security in the wrong place. A team that understands cryptography talks about the hardness assumption, the security level in bits, the standard the scheme meets, and the quality of its randomness. A vendor reaching for “unbounded key scalability” is advertising a number because the number sounds impressive, while saying nothing about where the security actually comes from.

There is a tell within the tell. “Unbounded” or “infinite” key length is not even a meaningful security property, because once you are past the standard sizes, the key length is no longer the bottleneck. Offering more of the thing that stopped mattering is not a feature. It is a distraction from the questions that do matter.

Questions to Ask a Vendor

“What security level in bits does the product provide, and against which attack?” This is the question key length is meant to make you skip. A real answer is a specific strength against a specific adversary, classical or quantum.

“Which hardness assumption does the security rest on?” Strength comes from the underlying problem. A vendor who answers with key size instead of a problem has confused the parameter for the source.

“Where does the key randomness come from?” A long key from a weak source is a short key in disguise. This question often matters more than the key length the marketing leads with.

The Bottom Line

Key length matters until it doesn’t, and the threshold is lower than the marketing implies: 256-bit symmetric keys and standard public-key sizes already sit past the point of any feasible brute-force attack. Beyond that, more bits buy cost, not security, because cryptographic strength comes from the hardness of the underlying problem and the quality of the design, not from the size of the number on the key. Claims of unbounded, infinite, or million-bit keys are a long-recognized sign that a vendor has put security in the wrong place. Ask for the security level in bits and the hardness assumption behind it, and the key-size theater fades.

Quantum Upside & Quantum Risk – Handled

My company – Applied Quantum – helps governments, enterprises, and investors prepare for both the upside and the risk of quantum technologies. We deliver concise board and investor briefings; demystify quantum computing, sensing, and communications; craft national and corporate strategies to capture advantage; and turn plans into delivery. We help you mitigate the quantum risk by executing crypto-inventory, crypto-agility implementation, PQC migration, and broader defenses against the quantum threat. We run vendor due diligence, proof-of-value pilots, standards and policy alignment, workforce training, and procurement support, then oversee implementation across your organization. Contact me if you want help.

Marin Ivezic

I am the Founder of Applied Quantum (AppliedQuantum.com), a research-driven consulting firm empowering organizations to seize quantum opportunities and proactively defend against quantum threats. A former quantum entrepreneur, I’ve previously served as a Fortune Global 500 CISO, CTO, Big 4 partner, and leader at Accenture and IBM. Throughout my career, I’ve specialized in managing emerging tech risks, building and leading innovation labs focused on quantum security, AI security, and cyber-kinetic risks for global corporations, governments, and defense agencies. I regularly share insights on quantum technologies and emerging-tech cybersecurity at PostQuantum.com.