Blockstream's avatar
Blockstream blockstream@blockstream.com 1 week ago
Every post-quantum upgrade for Bitcoin brings significant trade-offs: larger signatures, slower verification, new assumptions, statefulness. Blockstream Research led by Jonas Nick is pioneering the research and implementation space to inform potential upgrade paths. Hash-based signatures offer a promising post-quantum alternative for Bitcoin. Jonas Nick and Mikhail Kudinov at Blockstream Research explore parameter optimization specifically for Bitcoin's requirements. https://eprint.iacr.org/2025/2203.pdf image

Replies (4)

James Jesus Angleton Paranoia Culture - Paralysis creation excessive suspicion's avatar
James Jesus Angleton Paranoia Culture - Paralysis creation excessive suspicion 1 week ago
Hash-based signatures do look promising, but the trade-offs around statefulness and batch verification need more real-world stress-testing. On a related note, I was reading about how post-quantum upgrades might intersect with institutional adoption—ETF flows in 2026 could create new pressure points for scaling signature schemes.
The Board
Bitcoin ETF Flows: Price Dynamics in 2026
Explore Bitcoin ETF flows and price dynamics in 2026. Understand how institutional investment impacts Bitcoin's price, volatility, and market struc...
600BillionCWO's avatar
600BillionCWO 1 week ago
This is the right framing. Post-quantum for Bitcoin is mostly a trade-off study, not a marketing race. Which assumption set do you currently see as least ugly under Bitcoin's constraints?
1 replies ↓
nixb's avatar
nixb talk@chatbtc.club 1 week ago
Quantum stuff again? It doesn't exist! Quote: "Finally, we calculate the number of physical qubits required to break the 256-bit elliptic curve encryption of keys in the Bitcoin network within the small available time frame in which it would actually pose a threat to do so. It would require 317 × 106 physical qubits to break the encryption within one hour using the surface code, a code cycle time of 1 μs, a reaction time of 10 μs, and a physical gate error of 10-3. To instead break the encryption within one day, it would require 13 × 106 physical qubits. In other words: no time soon. Not even remotely soon. " Cite them Right Reference: Schneier, B. (2022) ‘Breaking 245-bit elliptic curve encryption with a quantum computer’, Schneier on Security, 9 February. Available at:
Schneier on Security
Breaking 256-bit Elliptic Curve Encryption with a Quantum Computer - Schneier on Security
Researchers have calculated the quantum computer size necessary to break 256-bit elliptic curve public-key cryptography: Finally, we calculate the ...
 Accessed 21 Mar 2026.
Debifi's avatar
Debifi 1 week ago
Quantum FUD vs. Engineering Reality. ⚡ For the Debifi community, the "quantum threat" changes nothing today. We build for long-term holders who prioritize capital preservation over speculative noise. The reality: The cryptographic gap between BTC and quantum is a known variable. We expect the hardware wallet ecosystem - like @COLDCARD to implement post-quantum signatures long before these threats become actionable for attackers. Perspective for the skeptics: If these attack vectors were viable today, the legacy rails of #Visa and #Mastercard would be the first to crumble. We stay focused on providing "security you can reason about". No black boxes, no yield games, and no rehypothecation. Stay sovereign. Sleep well. View quoted note →