In a recent assessment by Coinbase’s Independent Advisory Board on Quantum Computing and Blockchain, a significant concern has emerged regarding the vulnerability of Bitcoin to future quantum attacks. Approximately 7 million bitcoins are estimated to be in addresses that could be compromised if a sufficiently powerful quantum computer were to be developed. This report shifts a long-standing technical concern into a pressing governance issue for the broader Bitcoin community.
While the board emphasizes that Bitcoin’s current cryptography remains intact, the report highlights the lengthy migration process needed to ensure future security. Waiting for a cryptographically relevant quantum computer to emerge before taking action is deemed imprudent, hence proactive measures are essential.
The exposure to quantum threats is categorized into two primary groups. First, around 1.7 million bitcoins are held in about 20,000 legacy pay-to-public-key addresses, which directly expose these coins should quantum computers become capable of deriving private keys from public keys. Many of these coins likely belong to early adopters, including potentially the pseudonymous creator of Bitcoin or individuals who may have lost access to their funds.
The second group presents a greater risk: approximately 5 million bitcoins are exposed due to address reuse. Citing data from quantum-security firm Project Eleven, the board indicates that a significant portion of this exposure is linked to active users, including large cold wallets of well-known exchanges and wallets with recent transactions.
The issue of address reuse is critical for Bitcoin’s security. Safe practices dictate that public keys should only be revealed when coins are spent. When users opt to reuse addresses or employ outdated address formats, the risk of exposure increases significantly in a potential quantum scenario. The debate over governance becomes more complex when considering active holders of vulnerable coins, including exchanges and custodians, compared to those who may have lost access long ago.
This impending quantum threat cannot be ignored by the market. The potential risk does not stem from an immediate quantum attack but rather from the uncertainty surrounding how Bitcoin will navigate a lengthy security migration period involving numerous exchanges, active wallets, and potentially millions of coins that might remain untouched before a crucial deadline.
The board explored various proposals regarding whether vulnerable bitcoins should be frozen or allowed to remain untouched. One contentious suggestion is to establish a future deadline after which quantum-vulnerable signatures, like ECDSA and Schnorr, would no longer be accepted. This could render coins that fail to migrate ineffective, reflecting concerns that a post-quantum landscape could see old signatures lose their legitimacy in proving ownership.
Advocates for this “freeze” approach argue that permitting dormant vulnerable coins to trade after a quantum event could lead to a sudden influx in supply, destabilizing the market for remaining holders. There are also concerns that malicious actors could seize these vulnerable coins if the network didn’t take steps to mitigate the risks.
Conversely, some community members argue against freezing or burning coins, positing that each owner should maintain responsibility for their assets. They caution that such actions could undermine the fundamental property rights underpinning Bitcoin. The complexity of distinguishing between negligent owners and those with valid reasons for not migrating their coins complicates the matter further.
The report also hinted at intermediate solutions, such as an “Hourglass” design that would limit the volume of legacy coins moving per block, reducing the likelihood of a sudden market shock, or Draft BIP-361 which proposes a phased approach to transitioning away from legacy signatures while allowing ownership to be proven through quantum-resistant zero-knowledge proofs.
The potential implications for exchanges and institutions regarding Bitcoin’s exposure are critical. If large cold wallets contain a majority of the exposed 5 million bitcoins, this could transform quantum migration into a significant custody and disclosure challenge. Institutions scrutinizing their Bitcoin investments may soon find it essential to determine whether their custodians have assessed vulnerable wallets and established robust migration protocols.
The Advisory Board has urged the Bitcoin community to initiate technical migration work immediately, stressing that the transition to post-quantum signature support should not be stalled by discussions surrounding abandoned coins. Clear communication regarding timelines, risks, and required actions is vital to prevent user confusion.
The members of the board included experts from numerous reputable institutions, emphasizing the collaboration needed to address the complex issues at hand. Their conclusion presents a cautious yet imperative message: while the quantum risk remains uncertain, the migration process is lengthy enough that proactive planning is necessary before the threat becomes a reality. For investors, this debate is less about immediate price implications and more about preserving Bitcoin’s long-term credibility, as the asset’s value relies significantly on the integrity of its security model. A well-defined post-quantum roadmap could alleviate uncertainty for exchanges, custodians, and institutional investors, thereby reinforcing Bitcoin’s position as a significant asset in the financial landscape.
