Pre-emptive commit/reveal for quantum-safe migration (poison-pill)

Posted by Tim Ruffing

Jun 3, 2025/19:49 UTC

The discussion revolves around a potential attack vector within the Bitcoin network, specifically targeting the unspent transaction outputs (UTXOs). The attacker initiates the process by legitimately acquiring some UTXOs. Following this acquisition, these UTXOs are then committed to a transaction. The strategy involves waiting for a network fork to occur. After the fork has taken place, the original UTXOs are spent, directed towards a specific recipient. The crux of the attack lies in the subsequent action: executing a double-spend using the commitment made prior to the fork. This maneuver exploits the temporal window created by the fork to undermine the integrity of the transaction ledger.

This technique underscores a critical vulnerability associated with network forks, where the immutable nature of blockchain transactions can be challenged. By leveraging the pre-fork commitment, the attacker essentially creates a scenario where the same UTXOs are used in two separate transactions, thus violating the principle of unspent transaction output uniqueness. This attack not only highlights the technical nuances of managing UTXOs within the Bitcoin ecosystem but also raises significant concerns over the security measures in place to prevent such malicious activities following a network fork.

Link to Raw Post
Bitcoin Logo

TLDR

Join Our Newsletter

We’ll email you summaries of the latest discussions from authoritative bitcoin sources, like bitcoin-dev, lightning-dev, and Delving Bitcoin.

Explore all Products

ChatBTC imageBitcoin searchBitcoin TranscriptsSaving SatoshiBitcoin Transcripts Review
Built with 🧡 by the Bitcoin Dev Project
View our public visitor count

We'd love to hear your feedback on this project?

Give Feedback