Bitcoin Developers Seek to Fortify Against Quantum Attacks, But at What Cost to Users?

For the first time in its 16-year history, Bitcoin's developer community is reevaluating the promise of unconditional access to coins, as it considers measures to shield the network from potential quantum computer threats. A proposal, known as Bitcoin Improvement Proposal (BIP)-361, has been put forth by Jameson Loop and other cryptographers, which could lead to the forced migration of coins to quantum-resistant addresses or result in their permanent freezing by the network. This move is in response to a recent Google report indicating that a sufficiently powerful quantum machine could compromise the Bitcoin blockchain with less computational power than initially thought, prompting concerns about a 'quantum deadline' for Bitcoin by 2029. The proposal, titled 'Post Quantum Migration and Legacy Signature Sunset,' aims to protect against the risks associated with Elliptic Curve Digital Signature Algorithm (ECDSA), the cryptography securing every Bitcoin wallet. When a wallet is set up, a private key and a public key derived from it are generated. The public key is visible on the blockchain whenever funds are sent, making it potentially reversible by a powerful quantum computer, which could then drain the associated funds. Approximately 6.7 million BTC are currently in vulnerable addresses, according to the Google study. BIP-361 proposes a three-phase migration process. Phase A, which would start three years after activation, would prevent new bitcoin from being sent to old, quantum-vulnerable addresses, although spending from these addresses would still be possible. Phase B, kicking in five years after activation, would render old-style signatures invalid, effectively freezing coins in quantum-vulnerable wallets. Phase C, still under research, might allow holders of frozen wallets to prove ownership using zero-knowledge proofs, potentially recovering frozen coins. However, the community is divided, with some viewing the proposal as an authoritarian measure that undermines Bitcoin's core principle of sovereign control over funds. While some developers see it as a necessary defensive measure against quantum threats, others argue that any upgrade should be voluntary, criticizing the proposal for its coercive approach and central planning implications.