Coinbase’s independent advisory board of cryptography experts is sounding the alarm: while quantum computers don’t yet threaten Bitcoin, the ecosystem should start planning a migration to quantum-resistant security now to avoid chaos later.
In a June report—authored by a team that includes Ethereum Foundation researcher Justin Drake—the board says uncertainty about future advances in quantum computing makes early preparation prudent. The immediate risk is low, but the cost of waiting until a crisis arrives could be severe.
At the heart of the report is a contentious debate over legacy Bitcoin holdings tied to older signature schemes (ECDSA and Schnorr). Some community members favor a hard migration deadline that would stop accepting those legacy signatures—effectively freezing coins that haven’t been moved to quantum-safe addresses. Proponents argue that such a deadline would prevent future quantum attackers from seizing large sums of BTC and destabilizing markets.
Critics counter that freezing unspent coins would amount to confiscation and conflict with Bitcoin’s principles of immutability and user sovereignty. Coinbase’s advisory board declined to pick a side: it did not recommend whether vulnerable coins should be frozen, burned, or left alone, and it emphasized that the decision must come through Bitcoin’s consensus process, not be dictated by a small group of researchers.
The stakes are significant. The report cites roughly 1.7 million BTC held in older pay-to-public-key addresses whose public keys are already exposed and therefore could be vulnerable to future quantum attacks. Many of those coins are believed to be in lost wallets—including holdings commonly attributed to Satoshi Nakamoto. Research referenced in the report from Project11 also suggests up to 5 million BTC could be at risk through address reuse, though a large share of that total appears to be controlled by active users and institutions.
To smooth an eventual transition to post-quantum security, the report reviews several proposed mechanisms:
- Hourglass: cap how much BTC from vulnerable addresses can be moved per block to prevent a sudden flood of recovered funds.
- BIP-361: permit users to prove ownership using post-quantum cryptography even after legacy signatures are retired.
- PACTs (Post Quantum Address Commitments): allow users to commit on-chain to a future quantum-safe address before a migration deadline without immediately moving funds.
While the board refrained from endorsing any one solution, it delivered two clear recommendations: begin development of quantum-resistant migration tools immediately, and ensure Bitcoin users are informed well in advance about risks and available migration paths.
The report arrives as Coinbase expands its platform ambitions—integrating trading, lending, payments, derivatives, and AI-powered services—underlining the broader industry need to get ahead of technical threats that could ripple across exchanges and custodial services as well as the wider Bitcoin network.
Read more AI-generated news on: undefined/news
