Quantum computers capable of breaking the Bitcoin blockchain do not exist today. Developers, however, are already considering a wave of upgrades to build defenses against the potential threat, and rightfully so, as the threat is no longer hypothetical.
This week, Google published research suggesting that a sufficiently powerful quantum computer could crack Bitcoin’s core cryptography in under nine minutes — one minute faster than the average Bitcoin block settlement time. Some analysts believe such a threat could become a reality by 2029.
Stakes are high: About 6.5 million bitcoin tokens, worth hundreds of billions of dollars, sit in addresses a quantum computer could directly target. Some of these coins belong to Bitcoin’s pseudonymous creator, Satoshi Nakamoto. Besides, the potential compromise would damage Bitcoin’s core tenets – "trust the code "and “sound money.”
Here’s what the threat looks like, along with proposals under consideration to mitigate it.
Two ways a quantum machine could attack Bitcoin
Let’s first understand the vulnerability before discussing the proposals.
Bitcoin’s security is built on a one-way mathematical relationship. When you create a wallet, a private key and a secret number are generated, from which a public key is derived.
Spending bitcoin tokens requires proving ownership of a private key, not by revealing it, but by using it to generate a cryptographic signature that the network can verify.
This system is foolproof because modern computers would take billions of years to break elliptic curve cryptography — specifically the Elliptic Curve Digital Signature Algorithm (ECDSA) — to reverse-engineer the private key from the public key. So, the blockchain is said to be computationally impossible to compromise.
But a future quantum computer can change this one-way street into a two-way street by deriving your private key from the public key and draining your coins.
The public key is exposed in two ways: From coins sitting idle onchain (the long-exposure attack) or coins in motion or transactions waiting in the memory pool (short-exposure attack).
Pay-to-public key (P2PK) addresses (used by Satoshi and early miners) and Taproot (P2TR), the current address format activated in 2021, are vulnerable to the long exposure attack. Coins in these addresses do not need to move to reveal their public keys; the exposure has already happened and is readable by anyone on earth, including a future quantum attacker. Roughly 1.7 million BTC sits in old P2PK addresses — including Satoshi’s coins.
The short exposure is tied to the mempool — the waiting room of unconfirmed transactions. While transactions sit there awaiting inclusion in a block, your public key and signature are visible to the entire network.
A quantum computer could access that data, but it would have only a brief window — before the transaction is confirmed and buried under additional blocks — to derive the corresponding private key and act on it.
Initiatives
BIP 360: Removing public key
As noted earlier, every new Bitcoin address created using Taproot today permanently exposes a public key onchain, giving a future quantum computer a target that never goes away.
The Bitcoin Improvement Proposal (BIP) 360 removes the public key permanently embedded on-chain and visible to everyone by introducing a new output type called Pay-to-Merkle-Root (P2MR).
Recall that a quantum computer studies the public key, reverse-engineers the exact shape of the private key and forges a working copy. If we remove the public key, the attack has nothing to work from. Meanwhile, everything else, including Lightning payments, multi-signature setups and other Bitcoin features, remains the same.
However, if implemented, this proposal protects only new coins going forward. The 1.7 million BTC already sitting in old exposed addresses is a separate problem, addressed by other proposals below.
SPHINCS+ / SLH-DSA: Hash-based post-quantum signatures
SPHINCS+ is a post-quantum signature scheme built on hash functions, avoiding the quantum risks facing elliptic curve cryptography used by Bitcoin. While Shor’s algorithm threatens ECDSA, hash-based designs like SPHINCS+ are not seen as similarly vulnerable.
The scheme was standardized by the National Institute of Standards and Technology (NIST) in August 2024 as FIPS 205 (SLH-DSA) after years of public review.
The tradeoff for security is size. While current bitcoin signatures are 64 bytes, SLH-DSA are 8 kilobytes (KB) or more in size. As such, adopting SLH-DSA would sharply increase block space demand and raise transaction fees.
As a result, proposals such as SHRIMPS (another hash-based post-quantum signature scheme)and SHRINCS have already been introduced to reduce signature sizes without sacrificing post-quantum security. Both build on SHPINCS+ while aiming to retain its security guarantees in a more practical, space-efficient form suitable for blockchain use.
Tadge Dryja’s Commit/Reveal Scheme: An Emergency Brake for the Mempool
This proposal, a soft fork suggested by Lightning Network co-creator Tadge Dryja, aims to protect transactions in the mempool from a future quantum attacker. It does so by separating transaction execution into two phases: Commit and Reveal.
Imagine informing a counterparty that you will email them, then actually sending an email. The former is the commit phase, and the latter is the reveal.
On the blockchain, this means you first publish a sealed fingerprint of your intention — just a hash, which reveals nothing about the transaction. The blockchain timestamps that fingerprint permanently. Later, when you broadcast the actual transaction, your public key becomes visible — and yes, a quantum computer watching the network could derive your private key from it and forge a competing transaction to steal your funds.
But that forged transaction is immediately rejected. The network checks: does this spend have a prior commitment registered on-chain? Yours does. The attacker’s does not — they created it moments ago. Your pre-registered fingerprint is your alibi.
The issue, however, is the increased cost due to the transaction being broken into two phases. So, it’s described as an interim bridge, practical to deploy while the community works on building quantum defences.
Hourglass V2: Slowing the spending of old coins
Proposed by developer Hunter Beast, Hourglass V2 targets the quantum vulnerability tied to roughly 1.7 million BTC held in older, already-exposed addresses.
The proposal accepts that these coins could be stolen in a future quantum attack and seeks to slow the bleeding by limiting sales to one bitcoin per block, to avoid a catastrophic overnight mass liquidation that could crater the market.
The analogy is a bank run: you cannot stop people from withdrawing, but you can limit the pace of withdrawals to prevent the system from collapsing overnight. The proposal is controversial because even this limited restriction is seen by some in the Bitcoin community as a violation of the principle that no external party can ever interfere with your right to spend your coins.
Conclusion
These proposals are not yet activated, and Bitcoin’s decentralized governance, spanning developers, miners and node operators, means any upgrade is likely to take time to materialize.
Still, the steady flow of proposals predating this week’s Google report suggests the issue has long been on developers’ radar, which may help temper market concerns.
Related Articles
Cardano Founder Hoskinson Warns BIP-361 Could Freeze 1.7M Bitcoin
Charles Hoskinson warned that Bitcoin's BIP-361 upgrade, meant to address quantum threats, is wrongly classified as a soft fork. It could freeze 1.7 million BTC, including 1 million from Satoshi Nakamoto, as early coin owners can't prove ownership.
GateNews38m ago
BTC drops 0.45% in 15 minutes: Whale concentrated transfers into exchanges stack up sell pressure while leverage withdrawals amplify the pullback
From 17:00 to 17:15 (UTC) on 2026-04-17, BTC saw a brief drop. The return rate recorded was -0.45%, with the price ranging from 77354.3 to 77916.9 USDT and a swing of 0.72%. During the event, market attention warmed up, volatility intensified, and spot market liquidity changed significantly.
The main driver of this price anomaly was that whale wallets concentrated transfers to exchanges. In a single 15-minute period, the exchange inflow surged to 11,000 BTC, reaching a new high since December 2025. The average amount deposited per transaction was as high as 2.25 BTC, indicating that large holders chose key price levels to concentrate and release their positions, clearly lifting sell pressure. At the same time, BTC futures open interest fell to a 14-month low of $841 million, as leverage funds exited sharply. The spot market’s pull on price fluctuations became the main factor, further magnifying the impact of whale trading.
In addition, although ETF funds had a net inflow with a hedging effect—bringing the April cumulative inflow to $5.651 billion—within this anomaly window they were not able to fully absorb large sell orders. The spot market mainly relied on institutional buying to digest the selling pressure, and overall risk appetite contracted. On-chain data shows that 41% of the BTC supply is in a loss-making range, and some holders who bought at lower prices face take-profit and stop-loss pressure. With multiple factors converging, short-term tension formed among exchange inflows, leverage withdrawal, profit realization, and institutions’ ability to absorb, increasing the magnitude of spot volatility.
Short-term risks are worth watching closely. Users should closely monitor core indicators such as the subsequent exchange inflow volume, the pace of ETF net inflows, and futures open interest. If whale sell orders still have not eased and ETF inflows cannot accelerate in step, the BTC price may remain under sustained pressure. Users should focus on on-chain transfers and changes in major holders’ positions, watch the spot market’s key support ranges and trading structure, obtain more market information in a timely manner, and stay alert to risks brought by sharp volatility.
GateNews43m ago
Alcoa in Advanced Talks to Sell Massena Smelter Site to Bitcoin Miner NYDIG
Alcoa Corp. is negotiating to sell its Massena East smelter site in New York to Bitcoin mining firm NYDIG, with a deal anticipated to close mid-year as part of Alcoa's asset divestiture strategy.
GateNews1h ago
Bitcoin ETFs See Daily Outflow While Ethereum and Solana ETFs Post Gains on April 17
Gate News message, according to the April 17 update, Bitcoin ETFs recorded a 1-day net outflow of 142 BTC ($10.98M) and a 7-day net inflow of 7,093 BTC ($550.09M). Ethereum ETFs showed a 1-day net inflow of 22,357 ETH ($54.55M) and a 7-day net inflow of 89,684 ETH ($218.83M). Solana ETFs posted a 1-
GateNews2h ago
BTC rises 0.69% over 15 minutes: spot buy-side strength and sustained whale accumulation on-chain reinforce the move
From 14:30 to 14:45 (UTC) on 2026-04-17, the Bitcoin (BTC) market saw clear signs of abnormal movement. The 15-minute candlestick return reached +0.69%, with the price ranging from 77455.4 to 78044.4 USDT and an amplitude of 0.76%. Short-term fluctuations increased market attention, trading volume expanded in parallel, and liquidity improved further.
The main driver behind this abnormal move was a clear strengthening of spot-market buy-side demand. According to on-chain and statistical data, from 14:00 to 15:00, BTC spot buys had the upper hand. Massive buy orders continued to push the price higher, while whale addresses (≥10,000 BTC holdings) were actively net-buying during this period. The inflow of large on-chain funds directly drove spot prices higher. In addition, CME Bitcoin futures open interest increased by 70%, yet there was no large-scale liquidation or forced selling, indicating that institutional capital was returning in an orderly manner and that futures leverage did not become the dominant source of pressure. The leading force behind this upswing came from the spot market, and any wait-and-see sentiment caused by shrinking ETF flows did not suppress short-term prices.
Meanwhile, on-chain data shows that network activity has continued to rise, and the distribution of holdings is becoming more concentrated. In the short term, the coordinated effect of whales and newly onboarded users amplified price elasticity. Benefiting from an increase in macro risk appetite in mid-April—along with dovish signals from the Bank of Japan coinciding with easing geopolitical tensions—BTC’s attractiveness as a risk asset improved, and investors’ risk appetite strengthened. In addition, although ETF net inflows fell to $4.2 million, there were no large outflows, providing bottom support for spot. Multiple factors converged to drive BTC’s short-term rebound within the 15-minute window.
It is worth noting that the SOPR data for short-term holders shows that some short-term capital is currently trading at a loss; if the price pulls back, there may be a risk of additional downside. Changes in institutional capital driven by shrinking ETF flows are also a potential trigger for volatility. The return of leveraged funds to the futures market is also worth watching. Investors should closely monitor key support levels, the movements of actively circulating on-chain funds, and changes in macro news, so they can grasp the market’s timing and stay up to date with more real-time market information.
GateNews3h ago
