Meet the Top 101 in Crypto
Blockchain
Complexity Icon Intermediate
9 min read

Bitcoin’s Quantum Dilemma: The Soft Fork Debate That Could Rewrite the Rules

Published 30 July 2025
Andrew Kamsky
Authors

Key Takeaways

  • 1.1 million BTC remain in early-format addresses (e.g. P2PK), potentially vulnerable to future quantum attacks.
  • Roughly 25% of Bitcoin’s supply is in addresses with exposed public keys, raising theoretical risk under a Q-day scenario.
  • A phased soft fork proposal suggests rendering legacy address formats unspendable, with optional recovery via zero-knowledge proofs.
  • $8.5 billion in dormant BTC moved in July 2025, intensifying scrutiny over wallet security and post-quantum readiness.

A new draft proposal from Bitcoin developers has placed the protocol’s early history under renewed examination. The draft suggests invalidating coins stored in quantum-vulnerable addresses, including those assumed to belong to Satoshi Nakamoto, before advancements in cryptography threaten Bitcoin’s security model.

In this article, the motivations behind the proposal, its technical mechanics, recent wallet activity, and broader implications for the network’s future are detailed.

Early Bitcoin Addresses Could Be Exposed to Quantum Threats

The proposal, titled “Post-Quantum Migration and Legacy Signature Sunset,” was published on GitHub on July 14 and highlights the importance of taking proactive security measures. Among those are pay-to-public-key (P2PK) addresses from Bitcoin’s early years. 

These wallet formats reveal public keys directly, making them more susceptible to being compromised if a sufficiently powerful quantum computer emerges. An estimated 1.1 million BTC remain stored in such addresses, many believed to be linked to Satoshi Nakamoto.

That said, approximately 25% of Bitcoin’s supply (nearly 4–5 million BTC) is stored in addresses that have revealed their public keys on-chain, making them theoretically vulnerable to quantum attacks.

Security researchers behind the proposal argue that while current hardware cannot break Bitcoin’s digital signatures, analysts observed movement of several long-dormant wallets, raising concern around whether holders are preemptively migrating funds in response to quantum readiness discussions.

A May 2025 paper indicated that quantum computers may require far fewer resources than previously thought to break RSA encryption. 

Though Bitcoin uses elliptic curve cryptography, researchers warn that advances in quantum computing could pose a similar threat within the next few years. 

Bitcoin Devs Propose a Three-Phase Plan to Freeze Vulnerable Legacy Wallets

To prepare for potential quantum attacks, Bitcoin developers, including Casa CTO Jameson Lopp, have proposed a phased soft fork that gradually transitions the network away from cryptographically outdated address formats. This approach is meant to nudge users toward quantum-resistant formats like P2QRH, part of BIP‑360.

  • Phase A: Block new deposits: Prevent users from sending Bitcoin to vulnerable formats like legacy ECDSA and Schnorr. Begins three years after activation, encouraging migration to post-quantum formats like P2QRH.
  • Phase B: Invalidate old formats: All transactions from vulnerable addresses would be rejected at the consensus level, making untouched coins unspendable. Starts two years after Phase A.
  • Phase C (Optional): Add a recovery mechanism: With network-wide agreement, owners could use zero-knowledge proofs tied to their seed phrases to recover frozen coins. This could be deployed via soft or hard fork.
BTC quantum proposal
Bitcoin pos-migration Proposal. | Source: GitHub

While controversial, the phased rollout gives users time to adapt and raises the question of how far Bitcoin should go to secure its future.

Dormant Bitcoin Wallets Move Billions, Sparking Quantum Security Debate

Concerns around quantum risk intensified following a notable event in July 2025. Eight dormant wallets from the early mining era moved a total of $8.5 billion in Bitcoin. These addresses had not been active for over 15 years, leading to speculation about whether early holders wereare preparing to transfer coins into more secure wallets.

Although no connection has been confirmed between this movement and the draft proposal, the timing has elevated public interest in quantum security

One in Four Bitcoin May Be Exposed to Are Future Quantum Attacks

Approximately 25% of the current Bitcoin supply resides in addresses with exposed public keys, meaning they’re vulnerable to a ‘Q‑day‘ style attack. 

These UTXOs can theoretically be targeted in the event of a successful quantum attack because blockchain data is publicly accessible to an attacker who could use a powerful quantum machine to derive private keys from known public keys without triggering alerts.

This slow-drain scenario has been described in the draft as a “bleed,” a model in which coins are quietly extracted over weeks or months, avoiding immediate detection by chain surveillance systems.

Why the Proposal Is Stirring Debate Over Bitcoin’s Origins

The push to address quantum threats has revived one of Bitcoin’s longest-standing taboos:

  • Satoshi’s untouched coins: Roughly 1.1 million BTC sit in early addresses that have never moved since their creation.
  • Symbolic importance: Their inactivity has served as an unwritten cornerstone of Bitcoin’s decentralization ethos.
  • Breaking precedent: Freezing these coins, even for security reasons, challenges the protocol’s historical commitment to immutability.
  • Draft admits exceptionality: The authors concede this would be a first-of-its-kind intervention.
  • Threat seen as unique: No previous situation has posed a credible risk to Bitcoin’s signature scheme, prompting calls for unprecedented measures.

Such a step, if implemented, would represent a shift in how the network views its own founding principles, placing security ahead of untouchability.

Implementation Depends on Network-Wide Consensus

For this proposal to become active, a sufficient portion of the network must voluntarily adopt the upgraded software. 

Bitcoin operates through decentralized consensus, meaning miners, node operators and users must align in running the new code. Without broad agreement, any such fork would likely be ignored by the dominant chain.

As of July 30, 2025, the proposal has no formal Bitcoin Improvement Proposal (BIP) number. It remains in draft form and is under review by core developers and other contributors. 

No timeline for activation has been established.

Security or Censorship? The Philosophical Rift Widens

The proposal has reignited deeper questions about where Bitcoin draws the line between protection and principle:

  • No way to verify Satoshi’s coins: Identifying early UTXOs as belonging to Satoshi remains speculative, raising the risk of wrongful freezes.
  • Precedent concerns: Normalizing freezes could invite future restrictions based on politics, geography or ideology.
  • Departure from voluntary ethos: The untouched state of these coins reflects restraint or absence, meaning freezing said coins may appear reactionary or ungrateful.

Freezing Satoshi’s untouched coins, long seen as a symbol of selfless intent and decentralization, risks appearing ungrateful to the founder’s legacy and may be perceived as a rejection of the voluntary ethos on which Bitcoin was built.

Critics warn that bending protocol neutrality, even for security, risks turning Bitcoin into what it was built to resist.

Potential Impact of the Proposed Soft Fork on Bitcoin

The proposed soft fork to phase out quantum-vulnerable addresses has sparked debate. It promises stronger long-term security but also raises concerns about precedent and network principles.

For

  • Strengthens Bitcoin’s security against future quantum threats.
  • Proactively protects dormant coins before attacks are possible.
  • Encourages adoption of modern, more secure wallet formats.
  • Shows Bitcoin’s ability to evolve with emerging technology risks.

Against

  • Freezing coins, even for security, breaks with Bitcoin’s tradition of immutability.
  • Sets a precedent for future protocol changes targeting specific address types.
  • Could accidentally lock out legitimate users who lose keys or fail to migrate.
  • May trigger market uncertainty around Bitcoin’s “rules never change” narrative.
Aspect Positive impact Potential concern
Security Stronger defense against future quantum attacks Risk of premature action before quantum threat is proven
User funds Encourages migration to secure addresses Dormant coins may be permanently locked
Governance Shows adaptability of Bitcoin protocol Challenges immutability and decentralization norms
Market perception Seen as proactive and future-proofing Could create fear or uncertainty among investors

In Bitcoin, Power Comes From Work — Not Wealth

As learned, the above technical debate has reaffirmed that Bitcoin governance does not bend to wealth.

  • Consensus isn’t for sale: Rule changes are enforced by proof-of-work, not by those with the most coins.
  • No special status: Holding early or large amounts of Bitcoin confers no influence over how the network arguably grows.
  • Cultural integrity: If the identity behind dormant coins emerged, it could shift Bitcoin’s social tone but not its mechanics.

While fears focus on coins being stolen via quantum breakthroughs, others point out a paradox:

  • Effort confirms value: Building a quantum computer capable of breaking Bitcoin would require immense time, cost and expertise, validating Bitcoin as something worth stealing.
  • Scarcity remains intact: Even in the unlikely event of such a theft, Bitcoin’s fixed supply would remain unchanged. In fact, some argue that a successful attack could reinforce Bitcoin’s economic importance and might even drive further price speculation.

In this light, the threat itself becomes part of Bitcoin’s ongoing story, not its undoing, but its next challenge to be addressed.

Conclusion

Whether the proposal gains traction or not, the discussion reflects growing concern over quantum readiness. 

Some view this draft as an initial framework for dealing with what may eventually become an unavoidable transition. Others argue that no change should be made until quantum attacks have been observed or proven functional in the wild.

As of now, the draft proposal has not been adopted and remains under consideration. Its impact may not be measured solely by implementation, but by how it shifts the broader conversation around security, decentralization, and the management of legacy risks in Bitcoin.

FAQs

What is P2PK and how is it different from modern Bitcoin address formats?

P2PK (Pay-to-Public-Key) exposes public keys on-chain, unlike modern formats like P2PKH and P2WPKH, which reveal them only upon spending, offering better quantum resistance.

Is Bitcoin currently working on post-quantum cryptography integration?

While not implemented yet, proposals like P2QRH are under discussion to future-proof Bitcoin’s signature schemes against quantum threats.

Has any cryptocurrency fully implemented quantum-resistant signatures?

Yes. Projects like QANplatform and Mina Protocol have explored or implemented quantum-resistant components, though no solution is battle-tested yet.

Could a quantum attack target centralized exchanges before it affects the Bitcoin network?

Yes. Centralized entities holding large sums are soft targets; quantum attackers may first aim at exchanges or custodians before attempting on-chain exploits.

Andrew Kamsky

Andrew Kamsky is a chart analyst and writer with a background in economics and ACCA certification. He has held roles at a Big Four firm, a fintech bank, and a listed bank specializing in currency hedging. His work explores Bitcoin, macro trends, and market structure. Outside finance, he's passionate about music, travel, and neon design.

Survey Icon
Help us improve
1 of 4
Is this your first time here?
What brought you here today?
What are you most interested in?
Would you be interested in:
Thank you icon
Thank you for your feedback!
DMCA.com Protection Status