u/Successful_Ad8583

▲ 9 r/QRL

CZ Floats Freezing Satoshi’s Bitcoin Over Quantum Risk

Binance founder Changpeng Zhao (CZ) floated freezing Satoshi's Bitcoin and other dormant, quantum-vulnerable coins if they stay unmoved after a future network upgrade. He raised it as a question for the community, not a personal plan.

The Binance executive shared the idea on the Galaxy Brains podcast with Galaxy Research head Alex Thorn. He has since pushed back on reports that he would personally freeze Satoshi Nakamoto's address for a year.

Is Freezing Satoshi's Bitcoin a Good Idea?

The debate grew louder in March, when Google Quantum AI published research on breaking the cryptography that secures digital signatures.

Its team estimated an attack could need fewer than 500,000 qubits and run in minutes, well below earlier projections.

The risk sits in exposed keys. A quantum computer could derive private keys from public keys, then drain the wallets they protect.

The fix is to adopt quantum-resistant cryptography, yet coordinating that across the network takes years.

More than a third of all Bitcoin had revealed a public key on-chain by March. That leaves them in addresses vulnerable to quantum theft.

Satoshi Nakamoto mined an estimated 1.1 million BTC in 2009 and 2010. That estimate rests on the Patoshi pattern traced by researcher Sergio Demian Lerner.

What CZ Actually Said

Zhao did not call for a seizure, nor did he say Binance would act. He put the decision to the community, asking why it should not set a roughly 1-year timeline.

Coins left in vulnerable addresses after that point would be locked in by a fork.

CZ said the popular take that he would personally freeze Satoshi's address was not quite right. He also flagged a snag, that telling Satoshi's wallets apart from other early miners is hard.

His thinking aligns with BIP-361, a draft by Jameson Lopp and five other researchers. It would block sends to vulnerable addresses about three years after activation, then void legacy signatures two years later.

The authors frame a blunt choice. A quantum thief could grab the exposed coins, or miners could slowly recover them. The network could instead lock them so no one wins.

That proposal even cites Bitcoin's creator on the issue of lost coins.

>

The dormant coins are contested on another front. An anonymous plaintiff and two Wyoming LLCs are fighting a New York abandoned-property lawsuit.

They want 39,069 idle addresses, including the Satoshi coins, declared theirs. A Galaxy report by Thorn doubts it will prevail.

Any forced lock still violates a core Bitcoin rule: no one can take another person's coins. Many would read it as confiscation.

CZ said there is no perfect answer. He warned that doing nothing could prove the worst outcome of all.

reddit.com
u/Successful_Ad8583 — 14 days ago
▲ 15 r/QRL

France Says It Will Won’t Certify Security Products That Aren’t Quantum-Resistent Starting in 2027

France’s national cybersecurity agency, ANSSI, will stop certifying security products that do not include quantum-resistant encryption beginning in 2027, a policy that will effectively require government agencies and operators of critical infrastructure to move away from traditional cryptographic systems, according to comments made at the France Quantum conference and reported by Reuters.

The move places France among the most aggressive governments in Europe on quantum security and reflects growing concern that sensitive information encrypted today could be vulnerable in the future as quantum computing advances.

Under the timeline outlined by ANSSI Chief of Staff Samih Souissi, products seeking ANSSI certification after 2027 will need to incorporate quantum-safe cryptography. Souissi also said businesses should be purchasing only quantum-resistant products by 2030, Reuters reported.

Because ANSSI certification is required for deployment in French government organizations and critical infrastructure sectors, the policy amounts to a gradual phase-out of security products that rely solely on conventional encryption methods.

“It’s not only a technical issue,” Souissi said, according to Reuters. “It’s a matter of ​governance, industrial planning, regulation, and sovereignty.”

Industry participants at the conference also offered differing views on when the threat from cryptographically relevant quantum computers could emerge, Reuters reported.

However, the decision is also driven in part by concerns over so-called “harvest now, decrypt later” attacks. In that scenario, adversaries collect and store encrypted data today with the expectation that future quantum computers may eventually be capable of breaking the cryptographic algorithms protecting it.

Quantum computers capable of defeating widely used public-key encryption systems do not yet exist. However, governments and cybersecurity agencies increasingly argue that organizations with long-lived sensitive data must begin migrating now because cryptographic transitions can take years to complete.

The policy is expected to create new demand for post-quantum security technologies across Europe.

Pascal Brier, chief innovation officer at consulting and technology services firm Capgemini, told Reuters that interest is increasing as banks, public-sector organizations and other institutions evaluate their exposure to future quantum threats.

“That market is becoming big. It’s going to be very substantial,” Brier said, according to Reuters.

The announcement comes as France continues to invest heavily in quantum technologies through a national plan valued at approximately 3 billion euros (about $3.5 billion USD). The country is seeking to strengthen its position in a global quantum race that includes significant investments from China, the United States and other nations.

reddit.com
u/Successful_Ad8583 — 18 days ago
▲ 15 r/QRL

If BTC decides to go Quantum-Proof: A breakdown of phases, timelines, and the "Lost Coins" problem - Aka "they need 6 or 8 years to resolve the problem"

If Bitcoin ever decides to make the definitive move toward quantum resistance, it will face the most complex, delicate, and massive upgrade in its history. This isn't just about changing lines of code; it’s a socio-economic and technical puzzle.

While proposals like BIP-360 (mitigating public key exposure via P2MR) and BIP-361 hint at early framework discussions, a full migration would require a highly structured, multi-phase approach. Here is a breakdown of how the steps, timelines, consensus, and audits would likely play out.

1. Technical Phases & Migration Strategy

Because PQC signatures (whether lattice-based like Dilithium/Falcon or hash-based like SPHINCS+) have significantly larger byte sizes and higher computational overhead than ECDSA/Schnorr, a sudden switch is impossible. The transition would require a phased rollout:

  • Phase 1: Public Key Obscurity (Mitigation): A quantum attacker using Shor’s algorithm requires an exposed public key. Legacy addresses (reused addresses, p2pkh, etc.) are highly vulnerable. The first line of defense is introducing output types like P2MR (Pay-to-Merkle-Root) via BIP-360 to hide the public key until the exact moment of spending.
  • Phase 2: Introducing the PQC Algorithm (Soft Fork): A new quantum-resistant address type (e.g., P2QRH) would be introduced. Users would then need to voluntarily move their funds from legacy addresses to these new "shielded" addresses.
  • Phase 3: The Sunset Period: After a strict grace period, legacy ECDSA transactions would face severe restrictions, penalization, or ultimately, be frozen to protect the network's integrity.

2. The Consensus Bottleneck (The Political & Economic Debate)

The real bottleneck for Bitcoin isn’t the mathematics—it’s the social consensus. Achieving agreement on this change introduces massive economic dilemmas:

  • Soft Fork vs. Hard Fork: Developers will fight to implement this as a Soft Fork to maintain backward compatibility. However, given the drastic structural changes to spending rules and the massive signature sizes, some analysts argue a Hard Fork might be unavoidable, risking a permanent chain split.
  • The "Lost Coins" and Satoshi’s Millions Dilemma: Millions of BTC sit in legacy addresses with exposed public keys (including Satoshi’s estimated 1M coins). If a sunset clause is enforced:
    • The Pragmatic View: Freeze or burn unmigrated coins to prevent a quantum attacker from stealing them and crashing the market.
    • The Purist View: Altering or freezing coins violates Bitcoin’s immutability ("not your keys, not your coins"). The framework in BIP-361 has already sparked intense debate because it would permanently freeze older funds that lack modern recovery methods.

3. Estimated Timelines (The Runway)

If we assume a Cryptographically Relevant Quantum Computer (CRQC) might emerge in the 2030–2035 window, Bitcoin's timeline would have to look something like this:

  • Research, Optimization & Auditing (2–3 Years): Selecting the right NIST-approved algorithm is only half the battle. Bitcoin devs would need to heavily optimize the code to minimize block space saturation and fee spikes.
  • Network Activation (1–2 Years): From merging the code into Bitcoin Core to waiting for miners and nodes to signal readiness (via BIP9 or Speedy Trial).
  • Active User Migration Window (3–5 Years): Because of Bitcoin's limited throughput (~7 TPS), millions of users cannot migrate all at once without sending transaction fees to astronomical levels and clogging the mempool. The migration must be gradual.

4. Audits & Validation

Given that Bitcoin is a trillion-dollar financial infrastructure, the auditing process would be unprecedented:

  • Cryptographic & Math Audits: Top-tier firms (like Trail of Bits or OpenZeppelin) alongside academic cypherpunks would intensely audit the chosen primitive against both quantum and advanced classical attacks.
  • Consensus & Scalability Simulations: Using testnets and sidechain frameworks (like Anduro) to simulate how Bitcoin Core handles the heavy throughput and validation stress of massive PQC signatures.
  • Hardware & Client Audits: Hardware wallet manufacturers (Ledger, Trezor, Coldcard) and third-party node implementations would undergo independent reviews to ensure the new quantum key generation is flawlessly random and secure.

What are your thoughts? Given the sheer size of PQC signatures and the governance gridlock in Bitcoin, do you think BTC can successfully pull this off in time, or does the architectural advantage remain strictly with native-PQC chains like QRL?

reddit.com
u/Successful_Ad8583 — 24 days ago
▲ 14 r/QRL

Ionq roadmap. 1600 logical qubits by 2028?

https://preview.redd.it/0zo3cm3yzn6h1.png?width=1246&format=png&auto=webp&s=027d3f4148fa49663ce2a73233f2757f18768334

IonQ's latest roadmap is one of the clearest signs that the quantum race is moving from theory to engineering at scale.

According to their roadmap, IonQ aims to reach:

  • 800 logical qubits by 2027
  • 1,600 logical qubits by 2028
  • 8,000 logical qubits by 2029
  • 80,000 logical qubits by 2030

supported by roughly 2 million physical qubits and logical error rates below 10⁻¹².

For the QRL community, the interesting part is not whether these exact numbers are achieved on schedule. The important point is that major quantum companies are now openly planning around fault-tolerant logical qubits, not just noisy physical qubits.

Historically, discussions about quantum threats focused on machines with dozens or hundreds of physical qubits. This roadmap is talking about thousands to tens of thousands of logical qubits, which is an entirely different category of capability.

If even a fraction of these targets are met, it would strengthen the argument that migration toward post-quantum cryptography should happen long before large-scale cryptanalytic quantum computers actually arrive.

QRL was built around that assumption from the beginning: don't wait until quantum computers break current cryptography—prepare before they do.

Whether IonQ ultimately reaches 80,000 logical qubits in 2030 is less important than the fact that one of the industry's leading companies is publicly charting a path toward that scale. The conversation is gradually shifting from "Will fault-tolerant quantum computers exist?" to "How quickly can they be built?"

That's exactly the kind of trend QRL has been preparing for since day one.

reddit.com
u/Successful_Ad8583 — 25 days ago
▲ 16 r/QRL

Digital reset of the global economy

I just asked an AI which financial ecosystems could be affected by a quantum computer. Because we are always talking about BTC or crypto. And this is what it answered. It's worth clarifying that the quantum race is not only about hacking crypto, but about achieving governmental and strategic superiority.

If a quantum computer with 1,000 logical qubits (which would require hundreds of thousands of physical qubits with error correction) fell into malicious hands, the global financial ecosystem would face far more than a simple "hack"—it would trigger a systemic crisis of trust.

At that scale, traditional public-key cryptography algorithms such as RSA and ECC (Elliptic Curve Cryptography) become completely vulnerable through Shor's Algorithm.

Here is a breakdown of the financial structures that would be impacted first and most critically:

1. The Crypto Ecosystem: Legacy Accounts and Exchanges

Unlike QRL (Quantum Resistant Ledger), which was designed from the beginning to be resistant to this threat, the vast majority of current blockchains would be exposed.

Bitcoin P2PKH (Pay-to-Public-Key-Hash) Addresses: Older Bitcoin addresses (such as those associated with Satoshi Nakamoto) or addresses where an output has already been spent (thereby revealing the public key) rely on traditional ECDSA signatures. A machine with 1,000 logical qubits could derive the private key from the public key within minutes, allowing historical wallets to be drained and triggering massive panic across the market.

Centralized Exchanges (CEXs): Even if exchanges upgrade their hot-wallet signing systems, the internal communication infrastructure and APIs connecting institutional trading bots often rely on TLS/SSL implementations built on vulnerable cryptography. An attacker could intercept credentials and redirect funds on a massive scale.

2. The Interbanking System and Payment Networks (SWIFT, Visa, Mastercard)

Fiat money does not move in armored trucks—it moves as bits protected by digital certificates.

The SWIFT Network: The global financial messaging system used by banks to transfer trillions of dollars every day depends on traditional Public Key Infrastructure (PKI). If an attacker could forge digital signatures within SWIFT, they could issue apparently legitimate international transfer instructions to fraudulent accounts on an unprecedented scale.

Credit Card Processors: The tokens and communications between point-of-sale terminals (POS), payment gateways, and issuing banks rely heavily on RSA/ECC. The collapse of this security layer could disrupt global retail commerce within hours.

3. The Bond Market and Centralized Custodians (Sovereign Debt)

This is the true engine of the financial system, far larger than the stock market.

Clearing Houses: Institutions such as DTCC in the United States or Euroclear in Europe record ownership of trillions of dollars in bonds and equities. Their databases and authentication systems used to validate derivative contracts and debt instruments could become vulnerable to record manipulation or institutional identity spoofing.

4. Central Banking Infrastructure and CBDCs

RTGS (Real-Time Gross Settlement) Systems: The internal systems used by central banks (such as Fedwire in the United States or Target2 in Europe) to settle balances between commercial banks could become vulnerable.

First-Generation CBDCs: Central Bank Digital Currencies designed using traditional cryptography rather than post-quantum cryptography could face compromised issuance mechanisms, potentially enabling the digital counterfeiting of sovereign money.

The "Store Now, Decrypt Later" (SNDL) Threat

By the time a 1,000-logical-qubit quantum computer becomes operational, some attacks will already have effectively occurred in the past. State actors and advanced cybercriminal groups are already intercepting and storing encrypted financial traffic and confidential banking communications. Once sufficient logical qubits become available, they could simply run quantum algorithms to decrypt historical data, revealing trade secrets, past financial positions, and access credentials that may still remain valid.

This is why the development of hybrid networks and hash-based one-time signature schemes (such as the XMSS scheme used by QRL) is not merely a theoretical experiment—it represents one of the most practical defenses against a potential digital reset of the global economy.

reddit.com
u/Successful_Ad8583 — 29 days ago