A number of devs and founders have been speaking publicly about concrete submit‑quantum paths for Bitcoin. Two completely different proposals have caught the crypto world’s consideration.
Bitcoin’s Internet-Watchers Begin Constructing Their Blackwall
The ticking clock marking 2029 because the potential “deadline” for quantum computer systems to have the ability to break Bitcoin and Ethereum’s cryptography has made devs roll up their sleaves and get to work.
The latest spike of the Bitcoin quantum-panic or “quantum FUD” (concern, uncertainty and doubt) has moved on from the preliminary chaos that ensued following Google’s “doomsday” whitepaper to a race in opposition to an enemy that doesn’t but exist. Up to now days, two Bitcoin devs landed at completely different proposals aimed to guard Bitcoin from the longer term menace of quantum assaults.
Certainly one of them consists in a “Taproot kill‑switch + zk‑proof recovery” path for current UTXOs (Unspent Transaction Outputs). The opposite is a QSB (Quantum Protected Bitcoin), a transaction‑stage development that makes particular person spends quantum‑secure at present with none smooth fork (rule modifications that keep appropriate with previous software program).
Each approaches assume Shor‑type quantum computer systems (quantum computer systems primarily based on Shor’s algorithm) will nuke the mathematics behind Bitcoin’s present signatures (ECDSA/Schnorr), however they differ on how a lot of Bitcoin wants to vary: consensus guidelines vs consumer‑stage tooling.
Let’s study each proposals carefully.
Answer #1
The primary resolution comes from Olaoluwa Osuntokun, co‑founder and CTO of Lightning Labs (the principle firm constructing the Lightning Community implementation) and Tim Ruffing, co‑writer and contributor on Schnorr/Taproot, multisignature schemes like MuSig2 and a maintainer of Bitcoin’s core elliptic‑curve library.
On a submit made on the social media X on April 8, Osuntokun resurfaced Ruffing’s July 2025 whitepaper on Bitcoin’s post-quantum safety so as to suggest an answer for one of many issues introduced within the paper: “to create a variant of seed-lifting that doesn’t reveal the wallet’s master secret”. He known as this “zk-STARK proof”.
within the face of quantum adversary, a generally mentioned emergency smooth fork for Bitcoin can be to disable the Taproot keyspend path ( successfully turning it into one thing that resembling BIP-360
assuming an current precautionary soft-fork so as to add a pq…
— Olaoluwa Osuntokun (@roasbeef) April 8, 2026
In plain language, Osuntokun’s software creates a particular cryptographic proof (the zk‑STARK) that allows you to show you actually have the unique pockets secret behind a given Taproot handle, and that you simply used the usual pockets guidelines to get from that secret to this handle. They essential facet of the zk-STARK proof is that it does this with out ever revealing the key itself, or any non-public keys, to anybody.
If, sooner or later, Bitcoin does a quantum‑protection smooth fork that disables regular key‑primarily based spends, many BIP‑86 Taproot wallets might be caught and unable to maneuver cash. With this proof, these customers get an additional “escape hatch”: they’ll show possession of their Taproot cash by way of the seed‑derivation proof and transfer funds in a brand new, quantum‑secure method, despite the fact that the previous key‑spend path is turned off.
He mentioned all of the technicalities behind this on the Bitcoin dev mailing listing.
The answer has discovered acceptance, and it’s been usually acquired very effectively within the crypto group.
Seems like this doubtlessly solves the thorniest situation round quantum proofing Bitcoin: confiscation of cash.
A PQ smooth fork like BIP360 successfully “confiscates” cash by completely disabling spends from sure “vulnerable” wallets the place public keys have been revealed.…
— Vijay Selvam (@VijaySelvam) April 9, 2026
Answer #2
The second, and extra polemic resolution, comes from Avihu Mordechai Levy, a cryptography engineer at StarkWare who works on zero‑information proofs and STARKs. His whitepaper, revealed yesterday, reveals the right way to make particular person Bitcoin transactions quantum‑secure at present, utilizing Lamport‑type one‑time signatures plus a “hash‑to‑signature” proof‑of‑work puzzle, with zero modifications to Bitcoin’s base protocol.
Quantum-Protected Bitcoin Transactions With out Softforks pic.twitter.com/Ni7pA6dEsC
— Avihu Levy ✨🐺 (@avihu28) April 9, 2026
QSB replaces the previous signature‑dimension PoW (which quantum assaults might utterly break by discovering tiny ECDSA r‑values) with a RIPEMD‑160‑primarily based puzzle that solely depends on hash pre‑picture resistance, which is merely weakened, not destroyed, by Grover’s algorithm (quantum tech).
Once more in plain language, what QSB does is it throws away the previous “make the signature tiny” proof‑of‑work trick, as a result of a powerful quantum pc might cheat that by exploiting the elliptic‑curve math. As an alternative, QSB makes use of a brand new puzzle constructed on the RIPEMD‑160 hash operate. Breaking a hash like that’s extraordinarily arduous, even with a quantum pc.
QSB matches in legacy script limits and offers round 118‑bit submit‑quantum pre‑picture safety. Nevertheless, it prices a whole lot of {dollars} in off‑chain GPU work per transaction and requires non‑customary naked scripts mined by way of non-public relay providers. For this reason many are calling QSB a “last resort” or perhaps a “whale-grade band-aid”.
I’m not claiming this isn’t grossly inefficient, nor that it wouldn’t make sense to ultimately enhance the protocol layer if a cleaner resolution emerges.
My level is just that it’s false to say this type of whale-grade band-aid doesn’t exist already on the present protocol…
— Coinjoined Chris ⚡ (@coinjoined) April 10, 2026
A Philosophical Cut up
The group is now not arguing if quantum breaks ECDSA/Schnorr, however the right way to stage an orderly migration. Let’s keep in mind that the creator of Bitcoin, Satoshi Nakamoto himself, assured in 2010 {that a} gradual transition to post-quantum, stronger know-how, was potential for Bitcoin.
A submit from Satoshi Nakamoto concerning the quantum menace for Bitcoin. Supply: Bitcoin Journal on X.
Taproot‑primarily based restoration tries to guard all the UTXO set with minimal worth destruction, whereas some distinguished voices nonetheless argue non‑migrated cash ought to merely expire somewhat than be “rescue” in bizarre methods, to protect Bitcoin’s financial story.
For the time being of writing, BTC trades for the excessive $71ks on the day by day chart. Supply: BTCUSD on Tradingview.
Cowl picture from Perplexity. BTCUSD chart from Tradingview.
Editorial Course of for bitcoinist is centered on delivering totally researched, correct, and unbiased content material. We uphold strict sourcing requirements, and every web page undergoes diligent overview by our staff of prime know-how specialists and seasoned editors. This course of ensures the integrity, relevance, and worth of our content material for our readers.
