The Quantum Threat Is Here: 5 Surprising Truths About the Race to Secure Our Data

"Becoming Quantum Safe: Protect Your Business and Mitigate Risks with Post-Quantum Cryptography and Crypto-Agility"

Authors: Jai Singh Arun, Ray Harishankar, and Walid Rjaibi

Foreword by Whitfield Diffie, co- inventor of public key cryptography

Copyright © 2026 by John Wiley & Sons, Inc. All rights reserved, including rights for text and data mining and training of artificial intelligence technologies or similar technologies.

Published by John Wiley & Sons, Inc., Hoboken, New Jersey.

Published simultaneously in Canada and the United Kingdom.

ISBNs: 9781394374328 (hardback), 9781394374342 (ePDF), 9781394374335 (ePub)

Introduction

Quantum computing often sounds like a concept pulled from the pages of science fiction—a futuristic technology decades away from impacting our daily lives. While the full potential of quantum machines is still on the horizon, the security threat they pose is not a distant problem. It is an urgent, present-day reality that is quietly undermining the security of our most sensitive information.

This threat operates on a simple, insidious principle known as "harvest now, decrypt later." While the digital locks forged in the last century still hold, adversaries are already pocketing the keys for a future heist. They are capturing and storing vast amounts of encrypted data—from government secrets to corporate intellectual property—with the full expectation of breaking the encryption once a powerful quantum computer is built.

This article cuts through the hype to reveal five surprising truths about the quantum threat and the monumental race to secure our digital world.

1. The Real Threat Isn’t a Decade Away—It’s Already Here

The most immediate danger from quantum computers isn't an active attack; it's a patient data heist known as "Harvest Now, Decrypt Later" (HNDL). This strategy involves adversaries intercepting and storing encrypted data today, knowing that it's only a matter of time before a cryptographically relevant quantum computer (CRQC) can break the codes that protect it.

This makes any data with long-term value immediately vulnerable—think of military secrets, intellectual property, financial records, and sensitive healthcare data that must remain secure for decades. This information is being siphoned off and stockpiled right now. This is a threat with no warning signs; there is neither a way to detect it nor a way to protect data that has already been exfiltrated. While the damage from its decryption won't be felt until a CRQC is available, the vulnerability exists today.

The core of the problem is that our current security infrastructure was built on the assumption that certain mathematical problems were too hard for classical computers to solve. As MIT professor and RSA co-inventor Ron Rivest noted, this creates a fundamental challenge.

“It’s very hard to secure a system that’s been built on the assumption that certain problems are hard, once those problems become easy.”

2. Quantum Computers Aren't "Faster" in the Way You Think

A common misconception is that quantum computers will be universally faster than the classical computers we use today. The reality is far more nuanced. Quantum computers will not replace classical machines for tasks like sending emails or creating spreadsheets. Their power is highly specialized, targeting specific types of complex problems.

The relationship between classical and quantum computing can be broken down into four categories of problems:

• Problems classical computers are best suited for. Simple tasks like multiplication are great examples where classical computers will remain superior.
• Problems classical computers cannot solve but quantum computers can. The factorization of very large integers—the mathematical foundation of most modern public-key encryption—is the prime example. This is the core of the quantum threat.
• Problems classical computers can solve, but quantum computers are much better at. Complex optimization problems, such as optimizing supply chains or financial portfolios, fall into this category.
• Problems that neither classical nor quantum computers can solve.

This distinction is critical. It focuses the quantum threat squarely on the algorithms that form the bedrock of cybersecurity. A CRQC won't make your laptop obsolete, but it will have the specific power to shatter the cryptographic shield that protects global finance, communications, and national security.

3. The "Fix" Isn't a Simple Software Update—It's a Monumental Task

Transitioning our digital world to quantum-safe systems is profoundly complex, far exceeding past upgrades. To put this in perspective, earlier cryptographic transitions, such as moving from Secure Hash Algorithm 1 (SHA-1) to Secure Hash Algorithm 2 (SHA-2), have taken anywhere from 7 to 10 years to complete. Cryptography isn't a single application you can update; it's a foundational utility woven deeply and often invisibly into the fabric of our technology.

The challenges are immense:

• Cryptography is everywhere. It is embedded in countless applications, hardware systems, and infrastructure components developed over decades.
• Organizations lack a complete inventory. Most enterprises do not have a comprehensive map of where and how all forms of cryptography are used across their systems, from web servers to third-party APIs.
• The entire supply chain is affected. The transition requires identifying and updating every single instance of vulnerable cryptography. This extends beyond an organization's own systems to include dependencies on vendors, partners, and the entire software supply chain.

This complexity is precisely why organizations cannot afford to wait. The process of discovery, planning, and migration will take years of meticulous effort. Starting now is a strategic necessity to ensure a secure transition before the threat fully materializes.

4. The Solution Is Being Built in Public—For Friends and Enemies Alike

In previous eras of cryptographic transition, nations and corporations worked in secret. The goal was to develop superior encryption for themselves, hoping their adversaries would fail to keep pace. The systems used by opposing entities were never intended to communicate with one another.

As Whitfield Diffie, co-inventor of public-key cryptography, points out, the internet changed everything. It is a global network "intended for communications between friends and enemies alike." This reality demands a fundamentally different approach to building the next generation of security.

The solution cannot be a secret weapon. It must be a public, global infrastructure upgrade. This is why organizations like the U.S. National Institute of Standards and Technology (NIST) have been leading a transparent, international process to standardize new post-quantum cryptographic (PQC) algorithms. This effort has already culminated in the first suite of official standards—including algorithms like CRYSTALS-Kyber for key exchange and CRYSTALS-Dilithium for digital signatures—which are now ready for implementation. The goal is to create new, open standards that everyone can use and trust, ensuring the interoperability required for a secure global network.

5. The Ultimate Goal Isn't Just a New Lock—It's an Entirely New Kind of Key System

Facing a transition so monumental that it could span a decade, it becomes clear that a one-time fix is strategically insufficient. The true long-term goal, therefore, isn't just to replace today's algorithms but to build systems with "crypto-agility"—ensuring we never face a cryptographic crisis of this scale again.

Crypto-agility is the capability to swap out cryptographic algorithms and protocols without making significant, disruptive changes to a system's core infrastructure. It is about designing our technology so that future cryptographic transitions are simple configuration changes, not massive, multi-year engineering projects.

This is the ultimate objective because the quantum threat will not be the last cryptographic challenge we face. By building for crypto-agility, we are future-proofing our digital world. We are creating resilient systems that can adapt quickly to the next vulnerability, whatever it may be. It is a strategic shift from a one-time fix to a state of permanent readiness.

Conclusion

The quantum era is dawning, and while it promises revolutionary advancements, it also casts a long shadow over our digital security. The threat is not a distant hypothetical; it is an active, ongoing risk through "harvest now, decrypt later" attacks. The transition to a quantum-safe world is a monumental undertaking, but a clear, strategic path forward is emerging through public collaboration and a focus on long-term resilience.

The digital world is built on cryptographic promises made decades ago. With quantum computers on the horizon, the critical question every leader must ask is this: Is your organization prepared to make new promises for the future, or will you wait until the old ones are broken?

<Powered by NotebookLM>

A Tale of Vibe Coding by using Google´s Antigravity and Gemini 3.0 Pro

Google released Antigravity, an AI IDE Core. It has options to select among some models: Gemini 3 Pro, Claude Sonnet 4.5,  and GPT-OSS 120B.

For testing purposes, using the default Gemini 3.0 Pro, it was prompted:

<prompt> Generate an app to help teaching how to program quantum computers to undergraduate students by using IBM's Qiskit. </prompt> 

After a few minutes, Antigravity generated the Qiskit Learning App, a Next.js application designed to help students learn quantum computing.

Features Implemented

1. Challenge System

• Challenge List: A home page displaying available challenges.

• Challenge Data: A flexible data structure (lib/challenges.ts) that supports multiple challenges with starter code, solutions, and hints.

• Mock Execution: A simulated Qiskit execution engine (lib/mockExecutor.ts) that validates code logic and returns mock quantum circuit drawings.

2. Interactive Workspace

• Code Editor: Integrated Monaco Editor for a full-featured coding experience.

• Split View: Instructions and Assistant on the left, Code and Output on the right.

• Output Console: Displays execution status, success/failure messages, and ASCII-art circuit diagrams.

3. AI Assistant

• Chat Interface: A built-in chat component (AssistantChat) where students can ask for help.

• Mock Responses: The assistant currently provides predefined hints to guide students.

Verification Results

Build Verification

I ran npm run build to verify the application builds correctly for production.

• Result: Success (Exit code: 0)

• Output:

• ✓ Compiled successfully

• ✓ Linting and checking validity of types    

• ✓ Collecting page data    

• ✓ Generating static pages (4/4)       

• ✓ Finalizing page optimization

Code Quality

• Linting: Resolved all ESLint errors, including unescaped quotes and syntax issues in the mock executor.

• Type Safety: TypeScript checks passed during the build process.

Next Steps

• Real Execution: Replace the mock executor with a backend service (e.g., Python/Flask) running actual Qiskit code.

• More Content: Add more advanced challenges (Teleportation, Grover's Algorithm).

• User Progress: Implement local storage or a database to track completed challenges.

 

Aprendiendo Computación Cuántica

Introducción

La UNESCO declaró 2025 como el "Año  Internacional de la Ciencia y las Tecnologías  Cuánticas". 

Desde finales de 2024 he dedicado parte de mi tiempo al aprendizaje de la Computación Cuántica.

Reconozco que me falta por aprender mucho más de lo que he logrado avanzar, por lo que sigo estudiando con empeño, pensando en aplicaciones realmente factibles en corto plazo, y programando: la única manera que conozco de hacer que las computadoras funcionen para ayudarnos a resolver los problemas que planteamos. 

Resultados obtenidos

En mi proceso de aprendizaje, he obtenido estas credenciales:

1. Microsoft Learn: "Introduction to quantum computing with Azure Quantum" - Training 
2. IBM course: "Quantum Business Foundations" 
3. IBM course: "Practical Introduction to Quantum-Safe Cryptography" 

También he publicado notas sobre el tema:

• A Tale of Programming Languages - The impact of Quantum Computing 
• The Six Fundamental Concepts of Quantum Computing You Must Know
• Crucigrama Física Cuántica. 
• Quantum Computing Advantage 
• What are the most promising industries for quantum advantage applications by 2030? 
• Chile celebra la Semana de las Tecnologías Cuánticas 
• A tale of computers: Quantum AI
• Quantum Approaches to Vehicle Routing Problems: A Review of Recent Advances and Future Directions
• A Tale of Cybernetics

Adicionalmente, participé con mis criterios compartiendo mi visión y experiencias de vida en la Consulta Pública Estrategia Nacional de Tecnologías Cuánticas 2025-2035 en el marco de Chile celebra la Semana de las Tecnologías Cuánticas 

Objetivo

El objetivo de esta nota es divulgar, compartir y, en el plano personal, unificar el acceso a diferentes fuentes de información que has sido revisadas en el camino que estoy recorriendo para aprender Computación Cuántica.

Contenidos que comparto

Al respecto, asistido por NotebookLM, he creado los siguientes cuadernos para el estudio:

• Quantum_IBM_Courses
• IBM_Quantum_Machine_Learning
• Quantum for Cryptography
• Computación Cuántica - Wikipedia
• Computación Cuántica y LLMs
• Quantum_Logistics_Papers
• Quantum Machine Learning (Cuaderno compartido conmigo por otro usuario. Gracias.)

Espero próximamente compartir también un enlace a un repositorio con los códigos en Python 3 que he estado probando.

Conclusión (temporal)  

El aprendizaje es un proceso, y aún estoy comenzando...

A tale of Cybernetics

The first time I read the seminal Norbert Wieners' book "Cybernetics: or Control and Communication in the Animal and the Machine"  I was eleven years old. It was a beautiful challenge that changed my life. Of course, that time I did not understand the mathematics inside the book; but it was the moment to decide studying Computer Sciences.

A few years later, when I was researching for my PhD, I read the book again. Now, after about 30 years later, I am reading the book third time.

Why is this book a MUST READ?

It explores the evolution and implications of Cybernetics, highlighting how the study of information, communication, and control has evolved from a novel field to a fundamental discipline in diverse areas.

Norbert Wiener, in 1948, emphasized the importance of feedback in engineering and biology, and how systems, both artificial and living, operate under shared principles. 

The book also deeps into machine learning and self-organization, examining everything from artificial intelligence in games to the complex physiology of brain waves, and how the new statistical mechanics is just as mechanistic as the old, but with a deeper understanding of time and probability. 

Finally, the text addresses the social dangers of these technologies and the need for an interdisciplinary perspective for their study.

Contents:

PART I ORIGINAL EDITION (1948) <= The one that I have as a printed book, and have read twice.

• Introduction 
• Newtonian and Bergsonian Time 
• Groups and Statistical Mechanics 
• Time Series, Information, and Communication 
• Feedback and Oscillation
• Computing Machines and the Nervous System 
• Gestalt and Universale 
• Cybernetics and Psychopathology 
• Information, Language, and Society 

PART II SUPPLEMENTARY CHAPTERS (1961) <= Additional chapters found in the PDF - Reading.

• On Learning and Self-Reproducing Machines 
• Brain Waves and Self-Organizing Systems 

NOTE: I strongly recommend take your time and read the book. I understand that most of us "do not have enough time", and it would be faster to summarize the book by using your favourite LLM. It is up to you; but if you do so, you will miss the opportunity of  enjoy the pleasure of "letting your imagination fly!".

 

Quantum Approaches to Vehicle Routing Problems: A Review of Recent Advances and Future Directions

DISCLAIMER

This post was generated with the assistance of ChatGPT and NotebookLM. Its content, and redaction are still under human analysis/improvement. Any comment will be welcome. Thanks in advance.

Abstract

The application of quantum computing to vehicle routing problems (VRP) has gained traction as researchers seek novel approaches to tackle combinatorially complex, real-world logistics challenges. This paper surveys recent advancements since 2021, focusing on quantum annealing, gate-based quantum algorithms, and hybrid quantum-classical models. We compare their capabilities in solving different VRP variants, such as those with time windows, heterogeneous fleets, and multi-dimensional constraints. Emphasis is placed on the integration of quantum techniques within practical logistics contexts. We also discuss key challenges, performance metrics, and open problems in current quantum routing research.

1. Introduction

Vehicle Routing Problems (VRPs) represent a central challenge in operations research, with implications for logistics, urban mobility, and supply chains. Traditional algorithms struggle with large, constraint-laden instances due to the NP-hard nature of VRPs. Quantum computing, particularly quantum annealing and hybrid methods, offers a promising alternative. This review synthesizes research since 2021, reflecting the rapid growth and practical experimentation in this domain.

2. Methodologies

2.1 Quantum Annealing

Quantum annealing (QA) relies on minimizing a cost function encoded into a Hamiltonian, enabling optimization over large discrete spaces. D-Wave's Leap Constrained Quadratic Model (CQM) hybrid solver has become a focal point in recent studies. For example, Osaba et al. (2024) developed Q4RPD, a hybrid solver targeting real-world logistics with priority deliveries and multi-dimensional constraints.

Tambunan et al. (2022) extended this by integrating weighted road segments, modeling traffic congestion in the routing process. Weinberg et al. (2022) tackled multi-truck logistics with hybrid methods, demonstrating applicability to supply chain problems.

2.2 Gate-Based Algorithms

Gate-based quantum computing offers alternatives like Quantum Walk Optimization Algorithms (QWOA) and Quantum Approximate Optimization Algorithms (QAOA). A 2021 study introduced QWOA for solving capacitated VRPs with encouraging results on small-scale instances.

Palmieri (2022) proposed a hybrid QAOA-based model with clustering for the Capacitated VRP, showing improved convergence on pre-processed clusters solved with quantum subroutines.

2.3 Hybrid Learning-Quantum Models

Recent works explore integrating classical machine learning with quantum techniques. Abualigah et al. (2024) applied quantum support vector machines (QSVM) to classify optimal routes in small VRPs. While not scalable yet, these methods hint at future AI-quantum synergies.

2.4 Quantum Metaheuristics

A 2024 review introduced hybrid quantum tabu search methods for VRP, showcasing improved solution quality over classical heuristics by leveraging quantum-enhanced diversification.

3. Applications and Benchmarks

3.1 Real-World Scenarios

Q4RPD (Osaba et al., 2024) stands out for its industrial relevance. Applied to real Spanish logistics data, it respects time windows, prioritizes vehicle ownership, and models multi-dimensional truck capacities. It achieves near-parity with Google OR-Tools, validating the model’s practical utility.

Holliday et al. (2025) addressed VRPs with time windows, introducing feasibility-repair heuristics within quantum pipelines, achieving <4% optimality gaps on Solomon benchmarks.

3.2 Toy vs. Scalable Benchmarks

Most quantum studies still use toy-size datasets. Q4RPD and Holliday et al. are notable exceptions, solving 20+ node problems. Scalability remains limited by hardware (qubit count, noise) and model encoding complexity.

4. Challenges and Open Problems

• Scalability: Encoding and solving larger instances remains impractical for pure quantum solutions.

• Constraint handling: Time windows and multi-attribute constraints require flexible encoding strategies.

• Benchmarking: Lack of standard datasets impedes fair performance comparisons.

• Black-box solvers: Proprietary tools (e.g., LeapCQMHybrid) limit transparency and reproducibility.

5. Future Directions

• Heuristic–Quantum Integration: Embedding business preferences as soft constraints or sub-objectives.

• 3D constraints: Extending current models to include bin-packing and volumetric truck capacities.

• Multi-modal logistics: Incorporating air, sea, or rail into routing scenarios.

• Adaptive solvers: Creating systems that auto-tune heuristics and constraint weights based on instance profiles.

• Open frameworks: Developing reproducible, open-source benchmarks and solvers for quantum VRP research.

6. Conclusion

Quantum computing holds considerable promise for solving VRPs, especially via hybrid approaches. As hardware improves and methods mature, quantum-enhanced solvers may become viable for industrial-scale logistics. Current research, while still in early stages, has laid important groundwork—particularly in integrating constraints, business logic, and real-world data into quantum models.

References

1. Osaba, E. et al. (2024). Solving a real-world package delivery routing problem using quantum annealers. Scientific Reports, 14, 24791.

2. Weinberg, S. J. et al. (2022). Supply Chain Logistics with Quantum and Classical Annealing Algorithms. Scientific Reports, 13, 4770.

3. Tambunan, T. D. et al. (2022). Quantum Annealing for Vehicle Routing Problem with Weighted Segment. AIP Conf. Proc., 2906.

4. Palmieri, A. (2022). Quantum Integer Programming for the Capacitated Vehicle Routing Problem. Ph.D. Thesis.

5. Holliday, J. et al. (2025). Advanced Quantum Annealing Approach to Vehicle Routing Problems with Time Windows. arXiv:2503.01234.

6. Abualigah, L. et al. (2024). Solving the Vehicle Routing Problem via Quantum Support Vector Machines. Quantum Machine Learning, 3(1).

7. Mohanty, N., Behera, B.K. & Ferrie, C. Solving the vehicle routing problem via quantum support vector machines. Quantum Mach. Intell. 6, 34 (2024).

8. Frontiers in Physics (2021). Quantum Walk‑Based Vehicle Routing Optimization. Front. Phys., 9, 730856.

9. Hybrid Quantum Tabu Search for VRP (2024). Review Summary, TheMoonlight.io.

10. Quantum Computing in Logistics and SCM (2024). Comprehensive Review, TheMoonlight.io.

APENDIX A

Summary generated by ChatGPT of the paper “Solving a real-world package delivery routing problem using quantum annealers” by Osaba et al., including key achievements, identified drawbacks, and suggested improvements:

---

🔍 Summary

✅ Key Achievements

1. Real-World Relevance:

   • The paper introduces Q4RPD, a hybrid quantum-classical algorithm to solve a realistic last-mile delivery routing problem.

   • Unlike traditional Vehicle Routing Problems (VRP), this includes:

     • A heterogeneous fleet (owned and rented trucks),

     • Multi-dimensional capacities (weight and volume),

     • Priority deliveries (time-constrained),

     • Real business preferences (e.g., prioritize owned vehicles, reduce the number of trucks used).

2. Hybrid Quantum-Classical Approach:

   • The algorithm offloads route computation to D-Wave’s Leap Constrained Quadratic Model (CQM) Hybrid Solver, while classical routines manage problem decomposition and business logic.

3. Iterative Sub-Problem Solving:

   • Uses sub-route decomposition (Depot–TP, TP–TP, TP–Depot, full regular routes), enabling scalability and constraint compliance.

4. Benchmark with Six Scenarios:

   • Evaluated with six synthetic instances designed with the logistics partner Ertransit.

   • Q4RPD respected all constraints (capacity, priority, workday length) across the cases.

   • Performance was comparable or superior to Google OR-Tools, especially when priority constraints (TP) were included.

5. Scalability in NISQ Era:

   • Demonstrated capability to solve instances with up to 29 deliveries, which is larger than typical quantum routing benchmarks in current literature.

⚠️ Drawbacks and Limitations

1. Suboptimality due to Heuristics:

   • The pre-routing heuristics (e.g., preference for owned trucks) can limit global optimization potential, sometimes preventing the best solution.

2. Limited Constraint Flexibility:

   • Some preferences (notably P3: minimize number of trucks used) are not consistently enforced, despite being modeled as high-priority preferences.

3. No True End-to-End Quantum Formulation:

   • The actual quantum computation only addresses single-route subproblems, not the full 2DH-PDP optimization.

   • Full end-to-end quantum optimization remains out of reach, reflecting current hardware limitations.

4. Lack of Comparative Full-Classical Baseline:

   • While comparisons are made to classical TSP via Google OR-Tools, a full classical solver that handles all constraints (priority, heterogeneous fleet, 2D capacities) was not implemented as a baseline.

5. Synthetic Data Only:

   • All test instances are synthetic, limiting external generalizability. There's no validation against open, standard logistics datasets.

6. Proprietary Solver Black Box:

   • D-Wave’s LeapCQMHybrid is a proprietary black-box solver, limiting reproducibility and deeper understanding of quantum contributions.

🛠️ Suggested Improvements

1. Transform Preferences into Soft Constraints:

   • Rather than rigid heuristics, preferences like P1–P3 could be integrated into the objective function with penalty weights, allowing optimization flexibility.

2. Implement a Full Classical Baseline:

   • Design a comparable metaheuristic or MILP-based solver that handles the same constraints to better assess quantum advantage.

3. Generalize Dataset and Validation:

   • Incorporate real-world or standardized benchmarks, or release the synthetic generator to ensure better benchmarking by others.

4. Improve Constraint Fulfillment Mechanism:

   • Develop mechanisms to guarantee enforcement of business preferences like minimizing vehicle use (P3), possibly via dynamic preference weighting.

5. Quantum Efficiency Analysis:

   • Include runtime breakdown and a more detailed analysis of quantum vs classical contribution in solving times and quality.

6. Enable Truck Reuse and 3D Capacities:

   • Extend the model to allow multi-route assignments per truck and 3D volume constraints, increasing applicability.

7. Open Solver Source (if possible):

   • Open-source the classical components of Q4RPD for broader adoption and independent benchmarking.

🧠 Conclusion

The Q4RPD framework represents a significant step forward in real-world quantum logistics applications, pushing past toy problems into more practical constraints and objectives. However, to fully realize its potential, the authors (or future researchers) should prioritize:

• More flexible modeling of constraints and preferences,

• A stronger comparative baseline against classical solvers,

• Greater transparency in solver behavior, and

• Expansion of the framework’s generalizability and realism.

APENDIX B

Notable papers since 2021 found using ChatGPT that build on or relate closely to the topic of quantum-based vehicle routing and package-delivery:

\🛰️ Frontiers, 2021

"Quantum Walk‑Based Vehicle Routing Optimisation" demonstrates a gate-based quantum algorithm (QWOA) applied to the Capacitated Vehicle Routing Problem (CVRP). Through simulation on an 8-location instance, it achieves near-optimal results—showing the potential of quantum walks in routing contexts.

🧠 Weinberg et al., 2022

"Supply Chain Logistics with Quantum and Classical Annealing Algorithms" explores a hybrid workflow where multi-truck routing is broken down per truck. Using D-Wave Hybrid and simulated annealing on ~2500-variable QUBO subproblems, the routes feed into a classical simulation showing excellent supply-chain performance .

🚗 Tambunan et al., 2022

"Quantum Annealing for Vehicle Routing Problem with weighted Segment" offers a pure QUBO formulation targeting road congestion by incorporating weighted road segments. Tested on D-Wave hardware, it optimizes multi-vehicle route selection to ease congestion .

📦 Palmieri, 2022–2023 (Ph.D. thesis)

"Quantum Integer Programming for the Capacitated Vehicle Routing Problem" presents a two-phase hybrid: clustering via modularity maximization, then solving TSP subproblems using VQE/QAOA. Benchmarked against Gurobi for small instances .

🕒 Holliday et al., 2025 (arXiv)

"Advanced Quantum Annealing Approach to Vehicle Routing Problems with Time Windows" (Mar 2025) builds directly on the Q4RPD lineage. It uses D-Wave’s CQM hybrid solver and adds a feasibility-repair heuristic to handle time window violations. Achieves ~3.86% optimality gap on Solomon benchmarks .

🧪 Abualigah et al., 2024

"Solving the vehicle routing problem via quantum support vector machines" (June 2024) investigates a hybrid QSVM‑based encoding for small VRP instances (3–4 cities), using VQE-trained classifiers to predict optimal routes.

🔄 Hybrid Quantum Tabu Search, 2024

A promising hybrid metaheuristic combining tabu search with quantum annealing. Though I only found Lit‑Review coverage (April 2024), it specifically targets VRP and shows higher-quality solutions via intelligent search.

📈 2021–2023 Survey: "Quantum Computing in Logistics and SCM"

A comprehensive review published in February 2024 catalogs multiple hybrid and gate-based quantum approaches to VRP, CVRP, and VRP with time windows since 2021.

📊 Summary Table

Year	Approach / Platform	Highlights
2021	QWOA (gate-based)	CVRP on 8 locations (frontiersin.org)
2022	Hybrid D-Wave + classic	Multi-truck routing, 2500-variable models
2022	QUBO with road congestion	Weighted-segment VRP
2022/23	Quantum integer programming (thesis)	Clustering + TSP via VQE/QAOA
2024	QSVM-based for small VRPs	Hybrid ML + quantum classification
2024	Hybrid Quantum Tabu Search	VRP-focused metaheuristic
2025	Advanced CQM hybrid + fix heuristic	VRPTW, ~3.9% gap on benchmarks
2024	Broad logistics/SCM quantum survey	Catalog of recent VRP quantum research

🧭 Takeaways & Potential Gaps

• Techniques range widely: gate-based (QWOA, QSVM), annealing + hybrid splits, heuristic repair methods, and metaheuristics (tabu).

• Most scale only to small/routed subproblems, with few studies addressing real-world-sized, time-windowed, heterogeneous fleet problems.

• Time-window feasibility remains a bottleneck—recent repair heuristics (Holliday et al.) begin to bridge that gap.

• There’s a growing trend of hybridizing quantum with classical algorithms, plus early forays into machine learning enhancements.

---

A Tale of Computer Programming: LLM to generate application

MODEL:

Gemini 2.5 Pro Preview 3-25 - AIStudio 

 PROMPTS:

<prompt 1>

As an expert Java developer, generate complete app to look for files with the same size and SHA sum, in two different folders of a windows disk. Consider that the files could have different names, and/or extensions, and/or sizes, and/or different dates. The output should show what are these files, and all their locations.

</prompt 1>

<prompt 2>

Generate a new version of the code to improve usability by adding the following options to the command line:
--type or -t : Check only files of this type. Examples: -t PDF or --type CSV
--size or -s: Check only files with size greater than specified value. Use "M" or "m" to indicate megabytes. Examples: --size 10M -s 10m
In addition, and if the typed command does not include the directories to be compared, add the code to ask for both directories

</prompt 2>

THOUGHTS 1

Here's a breakdown of the thought process to generate the Java application for finding duplicate files based on size and SHA-256 hash:

1. Understand the Core Requirement: The goal is to find files that are identical in content across two specified directories, even if their names, extensions, or timestamps differ. The primary identifiers for identical content will be file size and a cryptographic hash (SHA-256 is a good choice).

2. Identify Key Tasks:

   • Get the two directory paths from the user.

   • Recursively scan the first directory.

   • For each file in the first directory, store its size and calculate its SHA-256 hash.

   • Store this information efficiently (size -> hash -> list of file paths).

   • Recursively scan the second directory.

   • For each file in the second directory, get its size and calculate its SHA-256 hash.

   • Check if a file with the same size and same hash exists in the data collected from the first directory.

   • If a match is found, record it as a duplicate pair (original file path, matching file path).

   • Present the results clearly to the user.

   • Handle potential errors (invalid paths, I/O errors, security exceptions).

3. Choose the Right Tools/Classes:

   • File System Interaction: java.nio.file.Path, java.nio.file.Paths, java.nio.file.Files, java.nio.file.DirectoryStream, java.io.File (though Path is generally preferred for modern Java). Files.walkFileTree is excellent for recursive directory traversal.

   • Hashing: java.security.MessageDigest for SHA-256 calculation. java.io.InputStream, java.io.FileInputStream to read file content for hashing.

   • Data Structures:

     • Need a way to quickly look up files based on size first (as it's cheaper to compute than the hash). A Map<Long, ...> seems appropriate, where the key is the file size.

     • For files with the same size, we need to store their hashes and corresponding paths. Inside the size map, another Map<String, List<Path>> seems suitable, where the key is the SHA-256 hash (as a String) and the value is a list of Path objects having that size and hash. This handles potential hash collisions (though unlikely with SHA-256) and multiple files with the same content within the first directory itself.

     • To store the final results (duplicates found), a List<DuplicateInfo> or similar structure would work. A simple Map<Path, Path> or List<Pair<Path, Path>> could also work, but a dedicated class might be clearer. Let's go with List<Pair<Path, Path>> for simplicity initially, representing (file_in_dir1, file_in_dir2).

   • User Input: java.util.Scanner for reading directory paths from the console.

   • Error Handling: try-catch blocks for IOException, NoSuchAlgorithmException, SecurityException.

4. Develop the Algorithm (Step-by-Step):

   •  main method:

     • Create a Scanner to get input.

     • Prompt for and read the first directory path. Validate it (exists, is a directory).

     • Prompt for and read the second directory path. Validate it.

     • Instantiate the main logic class (e.g., DuplicateFileFinder).

     • Call the method to find duplicates, passing the paths.

     • Print the results.

     • Close the scanner.

   •  findDuplicates method:

     • Initialize the primary data structure: Map<Long, Map<String, List<Path>>> filesBySizethenHash = new HashMap<>();

     • Call a helper method scanDirectory(dir1Path, filesBySizethenHash) to populate the map from the first directory.

     • Initialize a result list: List<Pair<Path, Path>> duplicates = new ArrayList<>();

     • Call another helper method findMatches(dir2Path, filesBySizethenHash, duplicates) to scan the second directory and find matches.

     • Return the duplicates list.

   •  scanDirectory method (or use Files.walkFileTree):  

     • Use Files.walkFileTree with a custom SimpleFileVisitor.

     • Inside visitFile:

       • Check if it's a regular file (Files.isRegularFile).

       • Get the file size (Files.size).

       • Calculate the SHA-256 hash (call calculateSHA256). Handle potential exceptions during hashing.

       • If hashing is successful:

         • Use computeIfAbsent on the outer map (size) to get or create the inner map.

         • Use computeIfAbsent on the inner map (hash) to get or create the list of paths.

         • Add the current file's Path to the list.

     • Handle visitFileFailed appropriately (e.g., print a warning).

   •  findMatches method 

     • Use Files.walkFileTree with a custom SimpleFileVisitor for the second directory.

     • Inside visitFile:

       • Check if it's a regular file.

       • Get the file size.

       • Check if the filesBySizethenHash map contains this size as a key (containsKey(size)).

       • If the size exists:

         • Calculate the SHA-256 hash for the current file.

         • Get the inner map for this size: Map<String, List<Path>> hashesForSize = filesBySizethenHash.get(size);

         • Check if the inner map contains the calculated hash as a key (containsKey(hash)).

         • If the hash exists:

           • Get the list of original paths: List<Path> originalPaths = hashesForSize.get(hash);

           • For each originalPath in originalPaths:

             • Add a new Pair(originalPath, currentFilePath) to the duplicates list.

     • Handle visitFileFailed.

   •  calculateSHA256 method:

     • Takes a Path as input.

     • Creates MessageDigest.getInstance("SHA-256").

     • Opens a FileInputStream for the path (use try-with-resources).

     • Reads the file in chunks (e.g., 8192 bytes) using a byte[] buffer.

     • Updates the MessageDigest with each chunk (md.update(buffer, 0, bytesRead)).

     • After reading, gets the digest bytes (md.digest()).

     • Converts the byte array to a hexadecimal String representation (important for using as a map key). A helper method bytesToHex is needed.

     • Returns the hex string.

     • Handles IOException and NoSuchAlgorithmException. Returns null or throws a custom exception on error.

   •  bytesToHex method:

     • Takes byte[] as input.

     • Iterates through the bytes.

     • Formats each byte as a two-digit hex string (e.g., using String.format("%02x", b)).

     • Appends to a StringBuilder.

     • Returns the final string.

   • Helper play class 

     • A generic class Pair<L, R> with fields left and right.

     • Constructor, getters, potentially equals and hashCode. A record is perfect for this in modern Java.

   • Output Formatting:

     • In main, iterate through the duplicates list.

     • Print each pair clearly, indicating which file is from which original directory. Grouping by original file might be nice but adds complexity; let's start simple.

5. Refinement and Edge Cases:

   • Large Files: The current approach reads the entire file to hash it. This is necessary for correctness but can be memory/time-intensive for huge files. No easy way around this if full content comparison is required. Using buffered reads helps.

   • Permissions: The application needs read permissions for all files and directories being scanned. SecurityException should be caught.

   • Symbolic Links: Files.walkFileTree by default does not follow symbolic links. This is usually desired behavior to avoid infinite loops and scanning outside the target directories. If following links is needed, FileVisitOption.FOLLOW_LINKS can be added. Need to be careful about cycles. Files.isRegularFile should handle links appropriately depending on options. Let's stick to the default (no link following) for safety.

   • Empty Files: Empty files will have size 0 and the same hash. The code should handle this correctly.

   • Performance: Hashing is the bottleneck. Pre-checking size drastically reduces the number of hashes needed. Using Files.walkFileTree is efficient for traversal. The map lookups are fast (O(1) average).

   • Clarity: Use meaningful variable names. Add comments explaining complex parts. Structure the code logically into methods.

   • User Experience: Provide progress indication (e.g., print dots or currently scanned directory) for long operations (maybe add later if needed). Clear error messages.

   • Dependencies: Keep dependencies minimal (only standard Java SE library).

6. Code Implementation: Translate the refined algorithm and data structures into Java code, creating the necessary classes and methods. Add imports. Test with sample directories.

7. Final Review: Check for correctness, completeness, error handling, style, and comments. Ensure the output format is clear. Make sure resources like InputStream and Scanner are closed properly (try-with-resources helps).

This structured thinking process, moving from requirements to tools, algorithm design, implementation details, and refinement, helps ensure all aspects are considered and leads to a robust and correct solution.

RESULTS 1

Features:

1. Command-line execution: Takes two directory paths as arguments.

2. Recursive Scan: Scans both specified directories and their subdirectories.

3. Size Check First: Optimizes by only calculating hashes for files with matching sizes.

4. SHA-256 Hashing: Uses SHA-256 for robust content comparison.

5. Handles Different Names/Extensions: Focuses solely on content identity.

6. Clear Output: Lists pairs of identical files found in the two different base directories.

7. Error Handling: Basic checks for directory validity and handles potential I/O or hashing errors.

8. Modern Java: Uses java.nio.file API and try-with-resources.

How to Compile and Run:

1. Save: Save the code as DuplicateFileFinder.java inside the directory structure mentioned (Example:src/main/java/com/example/duplicatefinder/).

2. Compile (using command line):

   • Navigate to the src/main/java directory in your terminal.

   • Compile:

     javac com/example/duplicatefinder/DuplicateFileFinder.java

   • This will create DuplicateFileFinder.class and DuplicateFileFinder$DuplicatePair.class inside com/example/duplicatefinder.

3. Run:

   • Stay in the src/main/java directory (or navigate back to the project root if using Maven structure).

   • Execute, replacing <path_to_dir_1> and <path_to_dir_2> with the actual absolute or relative paths to the folders you want to compare on your Windows machine:

     java com.example.duplicatefinder.DuplicateFileFinder "C:\Users\YourUser\Documents\FolderA" "D:\Backups\FolderB_copy"

     • Important: Use quotes around paths, especially if they contain spaces.

Example Output:

Starting duplicate file search...
Directory 1: C:\Users\TestUser\Documents\SourceFolder
Directory 2: C:\Users\TestUser\Desktop\CompareFolder
Comparison based on Size and SHA-256 hash.
--------------------------------------------------
Scanning Directory 1: C:\Users\TestUser\Documents\SourceFolder ...
Directory 1 scan complete. Indexed 5 files.

Scanning Directory 2: C:\Users\TestUser\Desktop\CompareFolder and comparing...
WARNING: Could not read or hash file: C:\Users\TestUser\Desktop\CompareFolder\~$locked.docx (The process cannot access the file because it is being used by another process.)
Directory 2 scan and comparison complete.

--------------------------------------------------
Search finished in 0.85 seconds.
Found 2 pairs of identical files:
--------------------------------------------------
File in Dir 1: C:\Users\TestUser\Documents\SourceFolder\report.pdf
  Identical file(s) in Dir 2:
    - C:\Users\TestUser\Desktop\CompareFolder\final_report_copy.pdf

File in Dir 1: C:\Users\TestUser\Documents\SourceFolder\images\logo.png
  Identical file(s) in Dir 2:
    - C:\Users\TestUser\Desktop\CompareFolder\Graphics\company_logo.png

TIME: 69 seconds

THOUGHTS 2

Here's a breakdown of the thought process to modify the DuplicateFileFinder code:

1. Understand the Requirements:

   • Keep the core functionality: Find duplicate files (size + SHA hash) in two directories.

   • Add command-line options using a library for easier parsing (like Apache Commons CLI or picocli). Picocli is generally more modern and annotation-based, making it cleaner. Let's go with picocli.

   • New options:

     • --type or -t: Filter by file extension (case-insensitive). Takes one argument (e.g., "PDF", "csv").

     • --size or -s: Filter by minimum size. Takes one argument (e.g., "1024", "10M", "2g"). Need to parse the unit (B, K, M, G).

   • Handle missing directory arguments: If the two directory paths are not provided as positional parameters, prompt the user interactively to enter them.

2. Choose a Command-Line Parsing Library:

   • Manual parsing (args[] loop) is tedious and error-prone for options.

   • Apache Commons CLI is established but slightly more verbose.

   • Picocli is annotation-driven, provides excellent usage help generation, and is well-suited for this. Decision: Use Picocli.

3. Integrate Picocli:

   • Add the Picocli dependency (if using Maven/Gradle) or ensure the JAR is on the classpath.

   • Annotate the main class (DuplicateFileFinder) with @CommandLine.Command.

   • Define fields for the options and positional parameters using Picocli annotations:

     • @CommandLine.Option for --type (-t) and --size (-s).

       • Specify names (names), description (description).

       • type: String for --type.

       • size: String for --size (will parse manually later).

     • @CommandLine.Parameters for the directory paths.

       • Use index = "0..1" or similar if we always expect them, or make them optional if prompting is the primary fallback. Correction: The requirement is to prompt if they are missing. So, make the parameters optional (arity = "0..2") or handle the args length before parsing if Picocli doesn't elegantly handle "required or prompt". Let's try making them regular parameters (index = "0", index = "1") and check after parsing if they are null. Refinement: A cleaner Picocli way is to make them @Options as well, or use a dedicated List<Path> parameter. An even better Picocli approach is to make the main class implement Runnable or Callable, and Picocli will handle the execution flow. Let's make the class implement Callable<Integer> (to return an exit code). Define the directory paths as @CommandLine.Parameters.

   • Modify the main method:

     • Instantiate the annotated class.

     • Create a CommandLine object with the instance.

     • Call execute(args). Picocli will parse args, populate the annotated fields, and call the call() method (because we implement Callable).

     • Handle exit codes.

4. Implement the call() Method (The Main logic)

   • This method replaces the logic previously in main.

   • Directory Handling:

     • Check if dir1Path and dir2Path (the @Parameters fields) were populated by Picocli.

     • If either is null, call a new method promptForDirectories() to get them interactively using System.console() or Scanner. Store the results back into dir1Path and dir2Path.

     • Validate the obtained directories (exist, are directories, are different, check for overlap) as before.

   • Filtering Logic:

     • Parse the --size option string (minSizeStr). Create a helper method parseSize(String sizeStr) that handles "1024", "10M", "2G", etc., returning the size in bytes (long). Handle potential NumberFormatException or invalid unit errors. Store the result in a minSizeBytes field (defaulting to 0 or -1 if not specified).

     • Normalize the --type option (fileTypeFilter). Convert it to lowercase for case-insensitive comparison. Store it in a field (e.g., normalizedFileTypeFilter).

     • Modify the SimpleFileVisitor logic (in both buildFileIndex and findMatchesInSecondDirectory):

       • Inside visitFile, before processing the file, add checks:

         • Size Check: if (minSizeBytes > 0 && attrs.size() < minSizeBytes) { return FileVisitResult.CONTINUE; }

         • Type Check: if (normalizedFileTypeFilter != null && !getFileExtension(file).equalsIgnoreCase(normalizedFileTypeFilter)) { return FileVisitResult.CONTINUE; }. Need a helper getFileExtension(Path file) method.

   • Core Logic: The rest of the logic (building the index, comparing, hashing) remains largely the same, but now it operates only on the files that pass the filters.

   • Output: Print the applied filters at the beginning for clarity. The final duplicate reporting remains the same.

   • Return an exit code (0 for success, non-zero for errors).

5. Helper Methods:

   • promptForDirectories(): Uses Scanner (more robust than Console) to read paths from standard input. Includes basic retry logic if a path is invalid.

   • parseSize(String sizeStr): Parses strings like "10M", "2G". Handles units (K, M, G, case-insensitive). Returns size in bytes (long). Throws IllegalArgumentException on error.

   • getFileExtension(Path file): Extracts the file extension (text after the last dot). Handles cases with no extension or leading dots. Returns an empty string or the extension (lowercase). Refinement: Make the comparison case-insensitive later, so returning the original case extension is fine, but converting the filter to lowercase is essential. Let's return the lowercase extension for consistency.

6. Error Handling and Refinements:

   • Add try-catch around parseSize call.

   • Improve error messages (e.g., invalid size format, invalid directory input).

   • Ensure Scanner is closed in promptForDirectories.

   • Handle potential NullPointerException if file.getFileName() is null (unlikely for regular files but possible).

   • Make sure Picocli's help message (--help) is generated automatically. Add descriptions to options and parameters.

   • Consider edge cases: Empty directories, files with no extension, very large files (memory usage for index – current approach is okay for moderate use, but for massive datasets, more advanced techniques might be needed).

7. Code Structure and Final Review:

   • Organize methods logically.

   • Add comments where necessary.

   • Ensure imports are correct.

   • Test with various command-line combinations:

     • No args (prompting).

     • Both dirs.

     • Dirs + type.

     • Dirs + size.

     • Dirs + type + size.

     • Invalid size format.

     • Invalid type format (though it's just a string).

     • Invalid directory paths.

     • Using short options (-t, -s).

     • Requesting help (--help, -h).

This detailed thought process, including choosing the right tools, planning the structure, implementing features incrementally, and considering edge cases, leads to the improved version of the code.

RESULTS 2

How to Compile and Run

1. Ensure Picocli is Available:

   • If using Maven/Gradle, build your project (mvn package or gradle build). This usually creates a JAR with dependencies or puts them in a lib folder.

   • If manual, make sure picocli-x.y.z.jar is available.

2. Compile:

   • Navigate to src/main/java (or your source root).

   • Compile (including picocli in the classpath):

     # If picocli JAR is in a 'lib' folder relative to project root
     javac -cp ../../../lib/picocli-4.7.6.jar com/example/duplicatefinder/DuplicateFileFinder.java
     
     # Or if picocli JAR is in the current directory (less common)
     # javac -cp picocli-4.7.6.jar:. com/example/duplicatefinder/DuplicateFileFinder.java
     
     # Simpler if using IDE or build tool

3. Run:

   • Navigate to the directory containing the com folder (e.g., target/classes if using Maven, build/classes/java/main if using Gradle, or src/main/java if you compiled manually there and the JAR is accessible).

   • Execute using the java command, including picocli in the classpath.

   Example Usages:

   • Prompt for directories, no filters:

     java -cp <classpath_including_picocli> com.example.duplicatefinder.DuplicateFileFinder

     
     

   • Specify directories, no filters:

     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder "C:\FolderA" "D:\FolderB"

   • Specify directories, filter by type (PDF):

     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder --type PDF "C:\FolderA" "D:\FolderB"
     # or
     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder -t pdf "C:\FolderA" "D:\FolderB"
     # or
     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder "C:\FolderA" "D:\FolderB" -t PDF

   • Specify directories, filter by size (greater than 10 MB):

     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder --size 10M "C:\FolderA" "D:\FolderB"
     # or
     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder -s 10m "C:\FolderA" "D:\FolderB"

   • Specify directories, filter by type AND size:

     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder -t TXT -s 1K "C:\FolderA" "D:\FolderB"

   • Get Help:

     java -cp <...> com.example.duplicatefinder.DuplicateFileFinder --help

This version is much more user-friendly due to the command-line options and interactive prompting provided by Picocli. Remember to adjust the classpath (-cp) argument according to how you are managing the Picocli dependency.

TIME: 79 seconds.

TIME TOTAL: 148 seconds. 

FINAL TOKEN COUNT: 17235 / 1048576

FINAL CODE: https://github.com/juanjosearanda/DuplicateFilesFinder