Public key recovery for EC leaves in P2MR (BIP-360)

Posted by sipa

Jun 18, 2026/11:13 UTC

The recent discussions highlight a significant issue with the script spend path in blockchain technology, particularly concerning the necessity to reveal P. This revelation becomes problematic in scenarios such as Q-day, where spends in the mempool are susceptible to attacks. During such events, the security of coins is compromised, leading to them being frozen until keypath spends are effectively disabled. This situation renders the output type unusable post Q-day, prior to the disabling of EC, due to the location of Post-Quantum Cryptography (PQC) paths within the scripts. This inherent vulnerability necessitates a reassessment of current practices and the development of more robust solutions to enhance security in post-quantum scenarios.

Link to Raw Post
Bitcoin Logo

TLDR

Join Our Newsletter

We’ll email you summaries of the latest discussions from high signal bitcoin sources, like bitcoin-dev, lightning-dev, and Delving Bitcoin.

Explore all Products

ChatBTC imageBitcoin searchBitcoin TranscriptsSaving SatoshiDecoding BitcoinWarnet
Built with 🧡 by the Bitcoin Dev Project
View our public visitor count

We'd love to hear your feedback on this project.

Give Feedback