Bitcoin Developers Merge Quantum-Resistant Proposal
What happened
Bitcoin developers have merged BIP360, a proposal designed to address future vulnerabilities from quantum computing. The move is a proactive security measure, as fault-tolerant quantum computers are predicted to emerge within the next five to seven years. The upgrade comes as Bitcoin's price recently fell below $69,000 amid broader market volatility.
Why it matters
- The proposal, co-authored by developers Hunter Beast, Ethan Heilman, and Isabel Foxen Duke, introduces a new transaction output type called Pay-to-Merkle-Root (P2MR). This method removes the "key-path spend" option available in Taproot addresses, which is the primary element vulnerable to quantum attacks. - The core threat comes from Shor's Algorithm, which, if run on a powerful enough quantum computer, could break the Elliptic Curve Digital Signature Algorithm (ECDSA) that secures Bitcoin wallets by deriving a private key from a public key. - While BIP360 hardens defenses, it is considered a foundational first step; future upgrades are expected to introduce new post-quantum signature schemes, with potential candidates including ML-DSA (Dilithium) and SLH-DSA (SPHINCS+). - The most susceptible addresses are older types like Pay-to-Public-Key (P2PK), where the public key is permanently exposed, and reused Pay-to-Public-Key-Hash (P2PKH) addresses. Estimates suggest around 25% of all Bitcoin in circulation is held in addresses that are vulnerable to quantum attacks. - Merging a Bitcoin Improvement Proposal (BIP) into the project's official GitHub repository is a formal documentation step for community review and does not mean the upgrade has been activated on the network. - Timelines for a quantum threat vary widely among experts; while some researchers forecast a risk emerging between 2026 and 2028, others like Blockstream's CEO Adam Back view the threat as decades away. - Major tech firms are actively developing the necessary technology, with IBM publicly stating its goal to build a large-scale, fault-tolerant quantum computer by 2029. - The U.S. government is also preparing for this shift, with a mandate to phase out the use of ECDSA cryptography in federal systems entirely by 2035.
Key numbers
- Bitcoin developers have merged BIP360, a proposal designed to address future vulnerabilities from quantum computing.
- The upgrade comes as Bitcoin's price recently fell below $69,000 amid broader market volatility.
- - The proposal, co-authored by developers Hunter Beast, Ethan Heilman, and Isabel Foxen Duke, introduces a new transaction output type called Pay-to-Merkle-Root (P2MR).
- While BIP360 hardens defenses, it is considered a foundational first step; future upgrades are expected to introduce new post-quantum signature schemes, with potential candidates including ML-DSA (Dilithium) and SLH-DSA (SPHINCS+).
What happens next
- The core threat comes from Shor's Algorithm, which, if run on a powerful enough quantum computer, could break the Elliptic Curve Digital Signature Algorithm (ECDSA) that secures Bitcoin wallets by deriving a private key from a public key.
- While BIP360 hardens defenses, it is considered a foundational first step; future upgrades are expected to introduce new post-quantum signature schemes, with potential candidates including ML-DSA (Dilithium) and SLH-DSA (SPHINCS+).
- The move is a proactive security measure, as fault-tolerant quantum computers are predicted to emerge within the next five to seven years.
Quick answers
What happened in Bitcoin Developers Merge Quantum-Resistant Proposal?
Bitcoin developers have merged BIP360, a proposal designed to address future vulnerabilities from quantum computing. The move is a proactive security measure, as fault-tolerant quantum computers are predicted to emerge within the next five to seven years. The upgrade comes as Bitcoin's price recently fell below $69,000 amid broader market volatility.
Why does Bitcoin Developers Merge Quantum-Resistant Proposal matter?
The proposal, co-authored by developers Hunter Beast, Ethan Heilman, and Isabel Foxen Duke, introduces a new transaction output type called Pay-to-Merkle-Root (P2MR). This method removes the "key-path spend" option available in Taproot addresses, which is the primary element vulnerable to quantum attacks. The core threat comes from Shor's Algorithm, which, if run on a powerful enough quantum computer, could break the Elliptic Curve Digital Signature Algorithm (ECDSA) that secures Bitcoin wallets by deriving a private key from a public key. While BIP360 hardens defenses, it is considered a foundational first step; future upgrades are expected to introduce new post-quantum signature schemes, with potential candidates including ML-DSA (Dilithium) and SLH-DSA (SPHINCS+). The most susceptible addresses are older types like Pay-to-Public-Key (P2PK), where the public key is permanently exposed, and reused Pay-to-Public-Key-Hash (P2PKH) addresses. Estimates suggest around 25% of all Bitcoin in circulation is held in addresses that are vulnerable to quantum attacks. Merging a Bitcoin Improvement Proposal (BIP) into the project's official GitHub repository is a formal documentation step for community review and does not mean the upgrade has been activated on the network. Timelines for a quantum threat vary widely among experts; while some researchers forecast a risk emerging between 2026 and 2028, others like Blockstream's CEO Adam Back view the threat as decades away. Major tech firms are actively developing the necessary technology, with IBM publicly stating its goal to build a large-scale, fault-tolerant quantum computer by 2029. The U.S. government is also preparing for this shift, with a mandate to phase out the use of ECDSA cryptography in federal systems entirely by 2035.
