Algorithm Agility for Bitcoin to maintain security in the face of quantum and classic breaks in the signature algorithms

In the evolving landscape of Bitcoin development, a recent discussion highlighted the contrasting challenges and perspectives surrounding potential soft-forks aimed at enhancing security against quantum threats. The conversation began with an acknowledgment that while a soft-fork designed to simply burn outputs to reduce supply might face activation resistance, a more universally appealing proposal, referred to as "soft-fork1," presents a different case. This proposed soft-fork aims to temporarily freeze coins at risk of being stolen due to quantum vulnerabilities, with a promise to later unfreeze these assets through a planned Post-Quantum (PQ) Zero-Knowledge Proof (ZKP) of seed phrase. Given the direct benefit to coin holders by protecting their assets, there's a strong inclination towards the activation of soft-fork1, assuming it can be implemented promptly before any quantum theft occurs.

However, the initial agreement and alignment on soft-fork1 lead to a complex dilemma when considering the subsequent step, dubbed "soft-fork2." This phase involves unfreezing the previously secured coins, which necessitates the development of a complex PQ ZKP—a task requiring significant expertise and posing a major technical challenge. The contention arises from the fact that activating such a sophisticated soft-fork demands consensus within a community where alignments diverge, especially given the increased risks associated with this change. Arguments against soft-fork2 include concerns over forcing the entire network to assume the consensus risks tied to unfreezing coins, particularly when some users have already transitioned to more secure outputs. Moreover, the reluctance of miners to increase the supply further complicates the activation process, suggesting that achieving consensus for soft-fork2 would be considerably more difficult than for its predecessor.

The debate extends into the strategic considerations for addressing quantum vulnerabilities within Bitcoin. One viewpoint suggests a more radical approach that circumvents the incentive misalignment by freezing all insecure outputs in a single action, thus reducing the supply and potentially increasing Bitcoin's price. This scenario implies a quicker resolution but raises ethical and practical questions about the effort invested in developing more sophisticated solutions like a PQ ZKP proof of seed phrase.

Furthermore, the discussion touches on the broader implications for wallets and user behavior in response to quantum safety concerns. Wallets that do not discourage practices like Schnorr key reuse are criticized, highlighting the need for improved user experience designs that warn users about potential quantum vulnerabilities and encourage the adoption of safer practices. This aspect underscores the ongoing UX challenges in ensuring that users' assets remain secure in an era of advancing quantum computing capabilities.