The quantum threat to bitcoin is smaller than people think: CoinShares

## Demystifying the Quantum Apocalypse: Why Bitcoin Isn't Doomed Just Yet For years, the looming specter of quantum computing has haunted the dreams of crypto enthusiasts and security experts alike. The fear? That these ultra-powerful machines, still in their nascent stages, could one day break the cryptographic algorithms that underpin Bitcoin and other blockchain networks, rendering them vulnerable to attack. But is this existential threat as imminent as some would have you believe? A recent analysis suggests that the quantum threat to Bitcoin, while real, is likely smaller and further off than many perceive. This doesn't mean complacency is warranted, but it does offer a more nuanced perspective on a complex issue. At the heart of the concern lies the potential for quantum computers to efficiently solve problems that are currently intractable for classical computers. Specifically, Shor's algorithm, a quantum algorithm, poses a theoretical risk to the Elliptic Curve Digital Signature Algorithm (ECDSA) used by Bitcoin to secure transactions. If a quantum computer were powerful enough to run Shor's algorithm against Bitcoin's ECDSA, it could potentially derive private keys from public keys, allowing malicious actors to spend coins from compromised wallets. However, several factors mitigate this risk. First, building a quantum computer capable of breaking Bitcoin's cryptography is an immensely challenging technical feat. The number of qubits (quantum bits) required, and the stability and coherence needed to perform the necessary calculations, are far beyond current capabilities. While quantum computing is advancing rapidly, significant hurdles remain. Second, Bitcoin is not a static system. The protocol can be upgraded to incorporate quantum-resistant cryptographic algorithms. Several post-quantum cryptography schemes are already being developed and tested, and Bitcoin developers are actively exploring options for integrating them into the network when the threat becomes more pressing. This could involve a soft fork or a hard fork, depending on the chosen solution and the level of consensus within the community. Third, even if a quantum computer were to successfully break the ECDSA of a Bitcoin address, only the coins associated with that specific address would be at risk. Bitcoin users can mitigate this risk by regularly transferring their funds to new addresses, a practice that is already recommended for privacy purposes. Furthermore, the longer a Bitcoin address remains unused, the lower the risk of it being targeted by a quantum attack, as attackers would likely prioritize addresses with significant holdings. Finally, the economic incentives at play also influence the threat landscape. Building and operating a quantum computer capable of breaking Bitcoin's cryptography would be an incredibly expensive undertaking. A rational actor would likely target more lucrative targets, such as government communications or financial systems, rather than focusing solely on Bitcoin. While the quantum threat to Bitcoin should not be dismissed, it's crucial to approach it with a balanced perspective. The technology is still years away from posing a significant risk, and Bitcoin has the potential to adapt and evolve to counter this threat. Continuous monitoring of quantum computing advancements, coupled with proactive research and development of post-quantum cryptographic solutions, will be essential to ensuring the long-term security and resilience of the Bitcoin network. The narrative of a looming quantum apocalypse for Bitcoin is, at this stage, premature. A more accurate portrayal is one of a potential future challenge that the Bitcoin community is actively preparing to address. While vigilance is key, panic is not.