A cryptographically relevant quantum computer (CRQC) could break Bitcoin's current cryptographic security, enabling the theft of funds by deriving private keys from public ones. This threat primarily affects older, unspent coins where public keys are exposed and necessitates a proactive, protocol-level migration to new cryptographic standards.
The transition to post-quantum security will be a slow, multi-stage process involving new signature schemes and gradual wallet adoption. Major contentious decisions, such as freezing vulnerable coins, will not be made by developers but will be resolved by market consensus via forks and trading, as demonstrated by historical events like SegWit2x.
A viable technical roadmap exists to counter the quantum threat. This includes adding optional PQC signature schemes via a soft fork and using quantum-secure zero-knowledge proofs to allow users to prove ownership of their seed phrase, enabling fund recovery from un-upgraded wallets.
Millions of early, dormant Bitcoin (e.g., from 2010-2011 miners) are the most vulnerable to quantum theft due to their address formats. The decision of whether to freeze these coins or risk them being stolen and dumped on the market represents the central economic and philosophical dilemma of the post-quantum transition.
The speaker argues that the public nature of quantum computing research will likely provide the market with a clear timeline for 'Q-Day'. This advanced warning and consensus will enable a rational decision to freeze vulnerable coins, whereas a secret, sudden arrival of a CRQC would create moral hazard and a more chaotic outcome.
Keep pulling the thread on Tim Ruffing.