Expert opinions on the impact of quantum computing on Bitcoin have recently diverged, signaling a shift in the conversation surrounding the cryptocurrency’s future security. For years, concerns that quantum computers might “break Bitcoin” were largely dismissed as overblown, primarily because practical quantum computing machines capable of executing such attacks did not exist. However, with advancements in quantum technology becoming more pronounced, stakeholders are reassessing the situation.
In January, Christopher Wood, the global head of equity strategy at Jefferies, a major investment bank, made headlines by completely removing a 10% Bitcoin allocation from his “Greed & Fear” model portfolio. He cited long-term risks posed by advancements in quantum computing, raising alarms about the potential vulnerability of Bitcoin’s cryptographic foundations.
Shortly after, U.S. crypto exchange Coinbase announced the formation of an advisory board composed of experts in both cryptocurrency and quantum computing. This board is tasked with evaluating the risks and mapping out potential migration strategies to ensure the security of Bitcoin against future quantum threats. The pressing question now is how imminent and substantial this quantum computing threat to Bitcoin is.
The Bitcoin blockchain operates on a fully public ledger system where all transactions are visible. Cryptographic signatures and hashes play a critical role in securing ownership and transaction integrity. However, the vulnerability lies in the cryptographic proofs, or signatures, necessary for spending coins. Most Bitcoin addresses are not public keys but rather cryptographic hashes. This means that the actual public key is often revealed only when coins are spent, exposing them to potential threats from quantum attacks.
Cais Manai, co-founder of the privacy-preserving Layer 2 protocol TEN Protocol, indicated that while Bitcoin’s cryptographic foundations have long been considered secure, the introduction of quantum computing poses a significant challenge. Nevertheless, he emphasized that the immediate threat is still a considerable distance away: “Not this cycle. Probably not this decade. But well within the investment horizon of anyone calling Bitcoin ‘digital gold.'”
In theory, with sufficient quantum computing power, one could derive a private key from a public key and forge a signature to steal coins. However, only coins associated with public keys that have been revealed are at risk. Different types of Bitcoin addresses determine the timing of when the public keys become visible. Older P2PK addresses expose keys immediately, while P2PKH and P2WPKH addresses reveal keys only when coins are spent. Newer Taproot addresses present additional complexities as their public keys are embedded directly in the output.
The estimated risks vary widely. A research report from Chaincode Labs suggested that between 20-50% of all Bitcoin circulation is currently vulnerable because private keys can be derived from public keys. Manai characterized these exposed coins as “low-hanging fruit” for potential quantum attacks, emphasizing that the primary risk lies in private-key theft rather than quantum mining capabilities.
The timing of potential threats also complicates matters, as upgrading an established network like Bitcoin to post-quantum standards requires global coordination. Manai pointed out, “The real risk isn’t timing certainty. It’s timing asymmetry.” Bitcoin upgrades typically take 5-10 years to organize, while advancements in quantum hardware are progressing at a nonlinear pace. If significant quantum computing capabilities emerge sooner than anticipated, the consequences could be severe, outpacing mitigating responses.
Other blockchain networks, such as Ethereum, are also taking steps to prepare for a post-quantum future. Recently, the Ethereum Layer 2 protocol Optimism outlined a comprehensive roadmap for upgrading wallets to support quantum-safe signatures over the next decade. Ethereum co-founder Vitalik Buterin has emphasized the importance of integrating quantum-resistant cryptography into the Ethereum mainnet.
As the dialogue on quantum computing’s implications for digital currencies evolves, the tension between technological advancements and the stability of existing systems is palpable. The race to enhance security measures will be crucial as stakeholders navigate the potential pitfalls of quantum technology.
