bitcoin-dev

Trivial QC signatures with clean upgrade path

Trivial QC signatures with clean upgrade path

Original Postby Matt Corallo

Posted on: December 16, 2024 15:57 UTC

The dialogue between Tadge Dryja and Anthony Towns touches on the proposal of integrating post-quantum cryptography (PQC) into wallets as a preemptive measure to secure funds against potential quantum computer threats.

The scheme suggests an early adoption of PQC options in wallet designs to mitigate risks associated with the eventual development of quantum computing capabilities that could compromise current cryptographic standards. This approach is designed to avoid the vulnerabilities that could arise from leaving a significant portion of funds without PQC protection until it becomes an immediate necessity.

A key point of discussion revolves around the assumption that there is ample time, possibly over a decade, before the threat from quantum computing becomes imminent. This timeframe is seen as an opportunity to gradually introduce and refine PQC solutions, rather than waiting until the threat is upon us, which would leave many funds at risk of theft. The conversation acknowledges the speculative nature of some aspects of this strategy, particularly concerning the technical specifics of future quantum computers and the crypto assumptions required for a hard-fork spend-via-future-PQC-proof-of-knowledge approach. There's an agreement on the need for flexibility in the parameters of such PQC implementations, acknowledging that these might have to be adjusted as our understanding of quantum computing advances.

Another aspect discussed is the potential downsides and limitations of the proposed PQC integration, including the inability to support multisig functionalities until certain conditions are met, and the reliance on widespread adoption of specific opcode formats for effectiveness. The debate highlights the uncertainties and complexities involved in planning for quantum-resistant cryptographic measures, emphasizing the speculative nature of certain approaches and the importance of optionality in choosing cryptographic paths forward.

In essence, the exchange underscores the importance of proactive measures in cryptocurrency security, advocating for the early incorporation of PQC options to safeguard against future quantum computing threats. The dialogue also reflects broader concerns within the cryptocurrency development community regarding the balance between immediate practicality and long-term security preparedness, highlighting the need for ongoing discussion and adaptation as the technological landscape evolves.