New Approach to Quantum-Secure Bitcoin Transactions
Researchers at StarkWare have unveiled what they claim is the first method to achieve quantum-secure Bitcoin transactions on active networks without altering the Bitcoin protocol. However, this approach comes with a hefty price tag, costing as much as $200 per transaction, and is intended primarily as a temporary solution.
In recent papers released this week, Avihu Levy from StarkWare introduced a concept called Quantum Secure Bitcoin (QSB). This initiative aims to facilitate quantum-resistant transactions by substituting signature-based security assumptions with hash-based proofs, bypassing the need for any changes to the Bitcoin protocol.
Hash-based systems can withstand quantum attacks that threaten current cryptographic methods, but they shift the computational workload away from consensus to heavy calculations. Each transaction requires a significant amount of off-chain GPU processing.
To visualize this, imagine a traditional digital signature as akin to your handwritten signature on a check, proving that you authorized a transaction via a private key that others can verify against your public key.
In the realm of Bitcoin, these digital signatures are referred to as ECDSA signatures. While today’s computers find these secure, future quantum computers could theoretically extract a private key from its public counterpart, putting your funds at risk.
The QSB framework tackles this vulnerability by restructuring the security model around different encryption methods, including hash-based proofs. These proofs function like tamper-proof fingerprints, creating a distinct mathematical digest of the data that is exceedingly hard to fake or manipulate, even when faced with advanced computational power.
Importantly, QSB fully integrates with Bitcoin’s established consensus rules for existing transactions. There’s no need for soft forks, minor signaling, or long activation timelines. This sharply contrasts with BIP-360, which aims to introduce quantum-resistant proposals into Bitcoin’s official improvement repository but has not been adopted by Bitcoin Core and is stalled in governance processes.
This is a variation of a prior concept known as Binohash. However, it requires adding a layer of computational work to secure transactions. The concern here is that the effectiveness largely depends on the type of encryption that a quantum computer could break. Practically, this could lead to a scenario where an attacker evades the essential security checks, disrupting the system’s core functionality.
Costs Involved
Nonetheless, hash-based solutions come at a steep cost.
To produce a valid transaction, you must sift through billions of candidates, which Levy estimates could cost between $75 and $200 using common cloud GPU services. In comparison, the standard fee for sending a Bitcoin transaction on the blockchain currently sits at about 33 cents.
There are also practical challenges with this system. QSB transactions don’t traverse Bitcoin’s traditional blockchain like standard payments; instead, users need to send them directly to the miners that will process them.
Additionally, it doesn’t function with more efficient layers like the Lightning Network and is considerably more complex to implement. Creating these transactions entails not only signing and dispatching them from your wallet but also delegating substantial computational tasks to external hardware.
Levy referred to this plan as a “last resort” rather than a substitute for updates at the protocol level. Initiatives like BIP-360, which seek to introduce quantum-resistant signature schemes through soft forks, are seen as a more scalable, albeit longer-term, solution and could still take several years to materialize.
The timeline for BIP-360 remains uncertain. Some speculators on Polymarket believe it is unlikely to take place this year, especially considering the historical lack of urgency within Bitcoin governance. The implementation of Taproot, for instance, spanned about seven and a half years from initial concept to deployment. And let’s not forget that a fully functional quantum computer capable of breaching current encryption is not expected to appear overnight.
In light of this, QSB offers a pragmatic alternative. It presents a means of navigating potential quantum threats under the existing framework, provided users are ready to bear the costs involved.
