nehan1d ago

Bitcoin and quantum computing

https://nehanarula.org/2026/04/03/bitcoin-and-quantum-computing.html

Neha's Writings

Neha Narula

Show threadglerk

One thing that is not addressed: say this quantum attack happens tomorrow and everyone agrees it was an attack, what would prevent the community (miners, node operators, and users) to hard fork the chain at a snapshot before the attack, patch the protocol, and call that Bitcoin? There would be loss of value of course, but it is not unrecoverable.

It’s worth remembering that Ethereum forked for much less (not even a bug in the protocol, but a bug in a private application running on the protocol) and nobody seems too upset about it a decade later.

Apr 7 at 10:10pmWeb
Show threadRetr0id1d ago

A hard fork implies a difference in consensus rules, and what do you propose that difference be?

Existing wallets need to actively commit to some PQ signature mechanism, prior to Q-day.

Show threadglerk1d ago

Even if Q-day means there is a way to deterministically retrieve any private key from a public key (is that what it means? or is the blast radius of q-day contained? This is a bit above my level of cryptography), I’m sure we could come up with something to minimize the damage. In the worst case, it might involve a claim process with an authority or consensus mechanism to prove who the rightful owner of the funds is and revert the unauthorized transactions on the new chain.

Yes, this is not ideal! But if the wallet conversion requires active participation, preemptive measures are also not ideal.

Show threadRetr0id1d ago

> Q-day means there is a way to deterministically retrieve any private key from a public key

That's exactly what it means. (Note also that under ECDSA you can retrieve a public key from a valid signature).

How do you prove anything, after the key material is compromised?

Show threadglerk1d ago

> How do you prove anything, after the key material is compromised?

It’s a blockchain, so the simplest would be chain of custody until the chain points undeniably at you. This is not a pure cryptographic device, some social intervention might be needed here.

Show threadwmf1d ago
In theory nothing prevents that but it would be so contentious that the backlash (e.g. 90% drawdown) may be even worse than just letting the hacks stand.
Show threadglerk1d ago
Letting the hack stand means the chain comes to a halt and all value is destroyed? Even if you’re a staunch bitcoin purist, I don’t think that’s the path you want to go on.
Show threadpants21d ago
The Bitcoin “value overflow incident” on August 15, 2010 is probably the closest thing and that didn't affect the price much (though one BTC was around 8c at the time)
Show threadHasslequest1d ago
[dead]
Show threadtuckwat1d ago
BTC thrives on hype and hope that others will buy in. A successful quantum attack would obliterate the value and future value.