Bitcoin May Need Up to Seven Years to Adopt Post‑Quantum Security, Says BIP‑360 Co‑author
March 1 2026
Summary
Ethan Heilman, a co‑author of Bitcoin Improvement Proposal 360 (BIP‑360), warned this week that a full transition of Bitcoin to quantum‑resistant cryptography could take as long as seven years. The comment comes amid a wave of recent advances in quantum computing that are narrowing the gap between theoretical attacks and practical capability, prompting renewed debate about the urgency of a post‑quantum upgrade for the world’s leading cryptocurrency.
Background
- Quantum risk to Bitcoin – Bitcoin’s security relies on elliptic‑curve cryptography (ECC) for both address generation (secp256k1) and transaction signing. A sufficiently powerful quantum computer running Shor’s algorithm could, in principle, derive private keys from public keys, compromising funds that have ever been spent to an address whose public key is known.
- BIP‑360 – Drafted in 2022, BIP‑360 outlines a roadmap for integrating post‑quantum signature schemes into the Bitcoin protocol while preserving backward compatibility. It proposes a “soft‑fork” path that would introduce new script types and version bits to enable quantum‑secure transactions alongside legacy ones.
- Recent breakthroughs – In the past 12‑18 months, several research groups have reported quantum processors achieving gate fidelities and qubit counts that bring practical cryptanalysis of ECC into the realm of possibility. While still far from the million‑qubit threshold often cited for a full Shor attack, the pace of hardware development has accelerated, shrinking the “margin of safety” traditionally assumed for Bitcoin.
Heilman’s Timeline Estimate
During a recent interview with a leading crypto‑news outlet, Heilman explained that the seven‑year horizon is driven by three main factors:
- Research and standardisation – The cryptographic community must converge on a quantum‑secure algorithm that fits Bitcoin’s performance constraints (small signature size, low verification cost). Candidates such as Falcon, Dilithium, and Picnic are still under evaluation for suitability on the Bitcoin network.
- Protocol development and testing – Implementing a new signature scheme requires extensive code review, formal verification, and test‑net trials. The Bitcoin development process, which favours cautious, incremental changes, adds months to each stage.
- Consensus building – Any soft‑fork affecting transaction validation needs broad miner, node operator, and wallet provider support. Historically, large‑scale upgrades (e.g., Taproot) have taken several years from proposal to activation.
Heilman added that the estimate assumes a “steady‑state” development pace and could be shortened if the community rallies around a single solution quickly, but also warned that unforeseen technical hurdles could extend the timeline.
Analysis
1. Is Seven Years Enough?
The quantum‑computing landscape is notoriously volatile. While current machines remain far from the size needed to break ECC, the field’s exponential improvement curve suggests that a breakthrough could dramatically shorten the lead time. If a practical attack were demonstrated within the next two to three years, the seven‑year upgrade window might be insufficient to protect funds that have already exposed their public keys (e.g., through transactions or reused addresses).
2. Potential Mitigations Before a Full Upgrade
- Address hygiene – Educating users to employ fresh, unused addresses for each incoming payment reduces exposure. Pay‑to‑script‑hash (P2SH) and pay‑to‑witness‑script‑hash (P2WSH) already hide public keys until spent.
- Layer‑2 solutions – Off‑chain protocols like the Lightning Network use different key derivation methods and could incorporate quantum‑secure signatures independently of the base layer.
- Hybrid signatures – Some researchers propose combining classical ECC with a post‑quantum scheme, providing immediate fallback protection while the network transitions.
3. Economic Incentives
A quantum breakthrough that undermines Bitcoin’s security could trigger massive market panic and capital flight. Conversely, a proactive, well‑communicated upgrade path could reinforce confidence, positioning Bitcoin as the first major blockchain to achieve quantum resilience.
4. Community Dynamics
Past upgrades (SegWit, Taproot) illustrate that broad consensus often hinges on clear economic or privacy benefits. Post‑quantum security may be harder to sell to miners focused on short‑term fee revenue, unless the threat is perceived as immediate.
Key Takeaways
- Timeline – Ethan Heilman estimates a seven‑year window for Bitcoin to attain quantum‑resistant security via the BIP‑360 roadmap, assuming normal development cadence.
- Urgency – Recent quantum‑computing advances are compressing the safety margin, making early preparation increasingly important.
- Interim measures – Users can mitigate exposure by avoiding address reuse and employing privacy‑enhancing transaction types.
- Technical hurdles – Selecting a signature algorithm that meets Bitcoin’s low‑latency, low‑size, and verification‑cost constraints remains the greatest technical challenge.
- Consensus is critical – Successful deployment will depend on coordinated effort among developers, miners, wallet providers, and the broader user base.
- Strategic advantage – Achieving post‑quantum security could bolster Bitcoin’s reputation as the most robust and forward‑looking digital asset.
Outlook
If the Bitcoin community can streamline research, agree on a suitable post‑quantum scheme, and orchestrate a smooth soft‑fork rollout, the network could safeguard itself well before quantum computers become a practical threat. Failure to act decisively, however, may expose a substantial portion of the global cryptocurrency market to unprecedented risk. Stakeholders are thus watching both the cryptographic standard‑setting process and quantum‑hardware breakthroughs closely, aware that the next few years may define Bitcoin’s long‑term security posture.
Source: https://magazine.cointelegraph.com/bitcoin-7-years-upgrade-post-quantum-bip-360-co-author/?utm_source=rss_feed&utm_medium=feed&utm_campaign=rss_partner_inbound
