A brand new proposal circulating amongst Bitcoin builders is forcing the community to confront a long-standing theoretical danger: the impression of quantum computing on its cryptographic foundations.
Bitcoin Enchancment Proposal 361 (BIP-361), launched by a gaggle of researchers together with Jameson Lopp, outlines a structured plan emigrate the community away from legacy signature schemes and towards quantum-resistant options. If adopted, the proposal would impose a phased deadline that might in the end render unmigrated cash completely unspendable.
The proposal goals to scale back Bitcoin’s publicity to a future state of affairs during which sufficiently superior quantum computer systems can break the elliptic curve cryptography that underpins its present system.
“Even when Bitcoin isn’t a major preliminary goal of a cryptographically related quantum pc, widespread information that such a pc exists and is able to breaking Bitcoin’s cryptography will harm religion within the community,” the BIP authors wrote.
In the present day, Bitcoin depends on ECDSA and Schnorr signatures to safe transactions. Each stay sturdy towards classical computing however are theoretically weak to Shor’s algorithm, which might permit an attacker to derive personal keys from uncovered public keys. This danger isn’t evenly distributed throughout the community. Older deal with sorts, significantly pay-to-public-key outputs and reused addresses, reveal public keys onchain and are thought-about essentially the most weak.
Estimates cited by the proposal counsel that greater than one-third of all bitcoin in circulation falls into this class, together with early holdings attributed to Satoshi Nakamoto. In a quantum assault state of affairs, these funds might be compromised, probably destabilizing the community and redistributing wealth to technologically superior actors.
The proposal’s transition phases
BIP-361 introduces a three-phase transition designed to preempt that consequence. Part A, anticipated roughly three years after activation, would prohibit new transactions from sending funds to legacy deal with sorts. Whereas customers might nonetheless transfer funds out of weak addresses, the restriction would push wallets and providers towards adopting quantum-resistant codecs.
Part B, starting about two years later, would escalate the transition by invalidating all legacy signatures on the consensus degree. At that time, any bitcoin that has not been migrated would turn into successfully frozen, unable to be spent underneath community guidelines.
A proposed Part C, nonetheless underneath analysis, would supply a restricted restoration mechanism. This is able to depend on zero-knowledge proofs tied to seed phrases, permitting customers to display possession of frozen funds with out exposing personal keys. The feasibility and timeline of this section stay unsure.
The proposal frames the pressured migration as a defensive measure moderately than a punitive one. By freezing cash that fail to improve, the authors argue the community can eradicate a serious assault floor earlier than quantum capabilities emerge.
In addition they be aware that completely inaccessible cash would scale back efficient provide, a dynamic lengthy mentioned inside Bitcoin’s financial mannequin.
No activation timeline has been set, and BIP-361 stays in draft kind.