In their article on post-quantum cryptography, Emily Fox and Simo Sorce explained how Red Hat is integrating post-quantum cryptography (PQC) into our products. PQC protects confidentiality, integrity and authenticity of communication and data against quantum computers, which will make attacks on existing classic cryptographic algorithms such as RSA and elliptic curves feasible. Cryptographically relevant quantum computers (CRQCs) are not known to exist yet, but continued advances in research point to a future risk of successful attacks. While the migration to algorithms resistant against such quantum attacks will take years, the risk today is that state-level actors are likely already storing encrypted communication now to gain access when quantum computers are available. This is called "harvest now, decrypt later", or "steal/store now, decrypt later". The transition to PQC needs to start now.

отсюда.

Я вот не понимаю. Зачем тратить ресурсы на внедрение новой криптографии, которая будет якобы устойчивой ко взлому на квантовых компах, если их ещё нет и неизвестно когда будут?
Где гарантия, что в этих алгоритмах так же потом не будет уязвимостей, что не хватит производительности для взлома и т.д.?