Who is Adam Back and what is his contribution to the discussion on Bitcoin and quantum computing?

Why Bitcoin Must Prepare for Quantum Threats Now: Insights from Adam Back

Quantum computing is still in its early stages, but its long‑term implications for Bitcoin and other cryptocurrencies are serious enough that core developers are already paying attention. Among the most vocal is Adam Back, cypherpunk, cryptographer, and CEO of Blockstream, who has repeatedly warned that Bitcoin must prepare early for quantum threats rather than wait for a crisis.

This article explores why quantum computing matters for Bitcoin security, what Adam Back and other experts are saying, and how the network can evolve to stay secure in a post‑quantum world.

Understanding the Quantum Threat to Bitcoin

How Quantum Computing Breaks Today’s Cryptography

Bitcoin relies on standard cryptographic primitives:

• ECDSA (Elliptic Curve Digital Signature Algorithm) for transaction signatures
• SHA-256 and RIPEMD-160 for hashing and address generation
• Proof-of-Work (PoW) also built around hash functions (SHA-256 in Bitcoin)

Quantum computers could attack these pieces in different ways:

1. Shor’s Algorithm (Public-Key Cryptography)
• Efficient at solving discrete logarithm problems underpinning ECDSA.
• A large enough, fault-tolerant quantum computer could derive private keys from public keys, enabling:
• Theft of coins from exposed addresses
• Impersonation of wallets and nodes

2. Grover’s Algorithm (Hash Functions)
• Quadratically speeds up brute-force search.
• Reduces the effective security of SHA-256 from ~128 bits (for preimage search) to ~64 bits.
• Less catastrophic than Shor’s attack on ECDSA, but still pressures protocol parameters long‑term.

At present (as of 2025), no quantum computer can break Bitcoin in practice. State‑of‑the‑art machines have noisy qubits and are far below the scale required to run full Shor’s attacks on 256‑bit elliptic curves. But security engineering is about time horizons, and that’s where Adam Back’s perspective is crucial.

Adam Back’s Perspective: Prepare Long Before It’s Urgent

Adam Back, inventor of Hashcash (a precursor to Bitcoin’s proof-of-work) and long‑time cryptographer, has emphasized several core points about quantum risk:

1. Long Lead Times for Protocol Changes

Back argues that Bitcoin governance and deployment cycles are slow by design:

• Consensus changes (like adopting post‑quantum signatures) require:
• Research and auditing
• Standardization
• Soft fork or hard fork coordination
• Wallet and infrastructure upgrades
• Full adoption can realistically take many years even after a consensus improvement is available.

Therefore, waiting until quantum computers are nearly capable of breaking ECDSA would be dangerously late. Back frames this as a strategic, multi-decade planning problem.

2. Hidden & Asymmetric Quantum Capability

Another concern: the first actors to achieve strong quantum capabilities may be nation-states or well‑funded labs that keep their abilities secret. If Bitcoin only reacts to publicly disclosed breakthroughs, it risks:

• Silent draining of vulnerable UTXOs (e.g., old reused addresses)
• Undetected key compromise across exchanges and custodians
• Confidence shocks that damage Bitcoin’s perceived immutability and security

Back’s view: assume quantum advantage may arrive quietly and bake defenses in early.

3. Bitcoin as Long-Term Store of Value

Bitcoin is increasingly treated as digital gold and long‑term savings:

• Treasury assets on multi-decade horizons
• Nation‑state level reserves and ETFs
• Inheritance and long-term cold storage

Back and other Bitcoin maximalists argue that for an asset aiming at a 100+ year monetary role, planning for quantum is not optional-it’s part of Bitcoin’s immutability promise.

What Exactly is at Risk? Public Keys, Addresses, and UTXOs

Bitcoin’s design already incorporates some quantum‑resilience patterns, but not enough to be fully safe in a strong quantum scenario.

Exposed vs. Hidden Public Keys

Bitcoin addresses are hashes of public keys. That means:

• Before a UTXO is spent:
• Only the hash (e.g., RIPEMD-160(SHA-256(pubkey))) is visible on-chain.
• The public key itself is hidden, providing extra protection.
• When a transaction spends a UTXO:
• The public key is revealed in the scriptSig/witness.
• That output becomes quantum-vulnerable once its pubkey is on-chain.

This leads to a critical distinction:

Adam Back and others stress: address reuse and keeping large balances in addresses whose public keys are already exposed is a strategic risk in a future quantum world.

How Bitcoin Can Transition to Post‑Quantum Security

1. Soft Fork to Add Post-Quantum Signature Schemes

The most discussed path is introducing post‑quantum (PQ) signature schemes via soft fork, alongside or replacing ECDSA/secp256k1 over time. Candidate families include:

• Hash-based signatures (e.g., XMSS, SPHINCS+)
• Lattice-based signatures (e.g., Dilithium, Falcon)
• Multivariate or code-based schemes

Design goals:

• Conservative cryptography with strong security proofs
• Reasonable signature sizes and verification costs
• Compatibility with existing script and wallet UX

Roadmap tasks for the Bitcoin ecosystem:

1. Benchmark and evaluate PQ schemes for size, speed, and security.
2. Propose BIPs (Bitcoin Improvement Proposals) for new script opcodes and key types.
3. Gradually encourage users to migrate funds to PQ-capable outputs.

2. UTXO Migration and Incentives

Once PQ outputs exist, the network can slowly incentivize migration:

• Wallets default to PQ addresses for new receiving addresses.
• Exchanges and custodians phase in PQ support and warn users.
• Over time, protocols or fee mechanisms may subtly nudge old ECDSA-only coins to move.

Priority UTXOs to migrate:

• Large, long‑term cold storage balances
• Exchange hot and cold wallets
• High-value multisig and institutional holdings

3. Education: Quantum-Aware User Practices

For individual users and institutions, Adam Back’s emphasis translates into practical best practices:

• Avoid address reuse; always generate fresh addresses.
• Regularly consolidate funds into latest-recommended script types (e.g., segwit v1, future PQ outputs).
• Use hardware wallets and software that stay updated with new cryptographic standards.

Why “Now” Matters: Timeline vs. Threat Model

The common pushback is: “Quantum is decades away, why worry now?” Back and other experts counter with a time-horizon argument:

• Research, standardization, and deployment of new cryptographic standards: 5-10+ years
• Full global migration of Bitcoin UTXOs and infrastructure: another 5-10+ years
• Unknown timeline for a state-level actor to secretly reach a functional, scalable quantum machine

Even if you believe reliable, large-scale quantum computers are 30+ years away, Bitcoin’s upgrade and adoption cycles justify getting serious well ahead of time.

Conclusion: Quantum Readiness as Part of Bitcoin’s Credibility

From Adam Back’s vantage point as a cryptographer and early proof‑of‑work pioneer, the quantum discussion is not panic-it’s engineering discipline.

Key takeaways for the crypto and blockchain community:

• Bitcoin is not currently broken by quantum, but its main signature scheme (ECDSA) is a known long-term vulnerability.
• Governance and consensus changes take years, so early preparation is rational, not alarmist.
• Moving toward post‑quantum signatures, PQ‑aware wallet behavior, and proactive UTXO migration will likely define one of Bitcoin’s major technical evolutions over the coming decades.

For builders, investors, and policymakers in crypto, following voices like Adam Back on quantum readiness is less about hype and more about ensuring that Bitcoin remains a credible, durable base layer for the web3 economy-no matter what era of computing we enter next.