What will happen if quantum computer owners start to move the early mined coins? - page 2.

figmentofmyass

legendary

Activity: 1652

Merit: 1483

Quote from: hatshepsut93 on January 11, 2020, 03:35:34 AM

People don't upgrade their nodes because they are compatible with the network, if there was a hardfork, you can expect them to switch rather quickly. Look at ETH or other alts, they have hard forks almost every year and they go pretty smooth.

a hard fork is not required to implement a post-quantum signature scheme. (that's probably a good thing since bitcoin isn't some centralized shitcoin---BCH and BTG are what happens when people try to hard fork it)

what are you saying---that we can literally just wait until ECDSA is broken and then do an emergency hard fork? that won't work. by then it's too late: QC could possibly break transactions in-flight, meaning the entire bitcoin supply is at risk of theft---outputs being moved to quantum safe addresses could be stolen in that scenario. even if QC weren't fast enough to do that, there would be 5+ million coins ready for the taking on day 0. are you considering the potential consequences of that?

Quote from: hatshepsut93 on January 11, 2020, 03:35:34 AM

If quantum computers became real today, the world would be in a lot of trouble - bank account, emails, websites, military communications, classified data and so on - but you don't see them proactively moving to post-quantum crypto right now

centralized organizations can implement new encryption standards at the drop of a dime. bitcoin cannot do that because it's decentralized. and as outlined above, its inability to do so puts the entire monetary base at risk.

Quote from: hatshepsut93 on January 11, 2020, 03:35:34 AM

And cryptographers usually retire algorithms long before they become not even fully broken, but just weakened.

some cryptographers say ECC/ECDSA will be broken in the next several years......

hatshepsut93

legendary

Activity: 3024

Merit: 2148

Quote from: figmentofmyass on January 11, 2020, 02:43:36 AM

quantum resistance =/= cutting edge. lamport signatures are from the 70s. Tongue

centralized entities can quickly implement new encryption and reverse most of the damage done if QC breaks current standards. they can afford to wait. bitcoin is irreversible, and people take years to upgrade. there would be 5 million+ coins up for grabs if QC broke ECDSA today---and that's not even considering p2pkh inputs that might be stolen in-flight.

if we want to reduce that number (ie prevent many millions of coins from being stolen) we need to act sooner than later, because again---people take years to upgrade their bitcoin software. by various estimates, ECDSA could be broken within 3-7 years. that doesn't leave us much time.

People don't upgrade their nodes because they are compatible with the network, if there was a hardfork, you can expect them to switch rather quickly. Look at ETH or other alts, they have hard forks almost every year and they go pretty smooth.

If quantum computers became real today, the world would be in a lot of trouble - bank account, emails, websites, military communications, classified data and so on - but you don't see them proactively moving to post-quantum crypto right now, which means that the cryptographic community doesn't view as an immediate threat. And cryptographers usually retire algorithms long before they become not even fully broken, but just weakened.

figmentofmyass

legendary

Activity: 1652

Merit: 1483

Quote from: hatshepsut93 on January 10, 2020, 04:44:32 PM

Quote from: figmentofmyass on January 10, 2020, 02:46:38 PM

upgrading to a post-quantum protocol in a conscientious way will take several years at least. when are we gonna start discussing the details?

When cryptographic community as a whole will reach both 1) a consensus on what quantum-ready algorithms will become the standard and 2) decide that it's time to start switching to it.

There's no need for Bitcoin to be on the cutting edge cryptography, it would only mean unnecessary risks and forks after forks.

quantum resistance =/= cutting edge. lamport signatures are from the 70s. Tongue

centralized entities can quickly implement new encryption and reverse most of the damage done if QC breaks current standards. they can afford to wait. bitcoin is irreversible, and people take years to upgrade. there would be 5 million+ coins up for grabs if QC broke ECDSA today---and that's not even considering p2pkh inputs that might be stolen in-flight.

if we want to reduce that number (ie prevent many millions of coins from being stolen) we need to act sooner than later, because again---people take years to upgrade their bitcoin software. by various estimates, ECDSA could be broken within 3-7 years. that doesn't leave us much time.

hatshepsut93

legendary

Activity: 3024

Merit: 2148

Quote from: figmentofmyass on January 10, 2020, 02:46:38 PM

upgrading to a post-quantum protocol in a conscientious way will take several years at least. when are we gonna start discussing the details?

When cryptographic community as a whole will reach both 1) a consensus on what quantum-ready algorithms will become the standard and 2) decide that it's time to start switching to it.
There's no need for Bitcoin to be on the cutting edge cryptography, it would only mean unnecessary risks and forks after forks.

figmentofmyass

legendary

Activity: 1652

Merit: 1483

Quote from: DannyHamilton on January 09, 2020, 12:47:45 PM

LONG BEFORE before any actual Quantum Algorithm AND Quantum Computer exists that would allow someone to access the bitcoins secured by P2PKH, Bitcoin will already have moved to a quantum-resistant authorization algorithm. This will prevent Case 3, prevent the need for Case 2, and will allow plenty of time for any users that are still able to access their bitcoins to move those bitcoins with a quantum-resistant transaction.

"long before" implies you know when QC will be capable of breaking ECDSA. when will that be---and accordingly, when will bitcoin developers discuss which quantum resistant scheme to implement, and when to implement it?

what constitutes "plenty of time" for users to upgrade? considering how slowly users adopted P2SH or segwit outputs, bitcoin should probably implement quantum resistant signatures many years before the threat is even remotely real. otherwise many millions of coins could be stolen, just by virtue of today's common practices of address reuse, xpub sharing, etc.

upgrading to a post-quantum protocol in a conscientious way will take several years at least. when are we gonna start discussing the details?

QUANTUMInstruction

newbie

Activity: 5

Merit: 0

Quote from: DannyHamilton on January 10, 2020, 10:43:08 AM

When objects of value are found in a ship wreck at the bottom of the sea, should those that managed to find the wreck be allowed to profit from that find? Or should a government agency take evderything salvaged and destroy it?

Some BTC owners think that if you burn the early mined coins and don't give the QC owners the possibility to get these, then the supply will go down and their coins will be more valuable. But you never know which coins will be burned next.

And some support the "21 million BTC supply" and let the QC owners get these coins. In that case we are responsible for our coins and if coins aren't being moved from old accounts to newer ones, we assume that these coins are "lost" and if QC owners develop a computer to get them, so it's their reward. But these group will always know that their coins won't be burned. Never. And therefore this blockchain will be the strongest.

It is a different thing, if someone hacks your computer and gets your coins or if a QC owner gets the "lost" coins.

DannyHamilton

legendary

Activity: 3472

Merit: 4801

When objects of value are found in a ship wreck at the bottom of the sea, should those that managed to find the wreck be allowed to profit from that find? Or should a government agency take evderything salvaged and destroy it?

QUANTUMInstruction

newbie

Activity: 5

Merit: 0

We will have a quantum resistant Bitcoin network, there is no doubt. But we will have two main Bitcoin forks post quantum.

The question is which of the two main Bitcoin forks will be supported.

1. A Bitcoin blockchain with all existing coins (also Satoshi's early mined coins and other early mined coins with no owner). Here the QC owners will remove those coins and will be the new owners and the community 1 of this fork will accept it as a reward to QC owners. If there were owners of early mined and not moved coins, they could have moved these coins. As they didn't, the community 1 will handle them as "lost" coins.

Quote from: DannyHamilton on January 09, 2020, 12:47:45 PM

..once Quantum Technology becomes a realistic threat will be those coins that are effectively "lost". The QC owners will become the new owners of those coins, and Bitcoin will carry on as it always has.

2. A Bitcoin blockchain without the early mined coins. Community 2 will not accept it that someone (QC owners) gets the early mined coins and will burn them.

Quote from: dothebeats on January 09, 2020, 01:56:06 PM

Should coins that were mined early and are deemed inaccessible were retrieved by QC owners and the community knew about it, perhaps a fork would be proposed and we'd take it from there and accept the fact that these coins are permanently lost in the void without any chance of retrieval.

Blitzboy

hero member

Activity: 1316

Merit: 561

Leading Crypto Sports Betting & Casino Platform

Do you think it's easy to own a quantum computer? I am sure NO, the value of a quantum computer is extremely large, do you think someone uses its power just to mine bitcoin? I'm sure no one does that stupid thing, quantum computers should be used for more complex and important calculations.

According to some previous news, the first quantum computer was created by Google, it is no longer a distant thing.

SapienHumanRating

copper member

Activity: 40

Merit: 1

The description of how quantum computers work didn't capture why they are special; everything we always saying (e.g. superposition, computing everything in parallel) is also true of a "normal" computer equipped with random numbers. The thing that makes quantum computers special is the interference; some of the parallel paths can cancel each other out. Without that, superposition would be useless.

Also, it's not really true that the motivation for quantum computers is the physical limits of transistors. We started studying quantum computing long before those limits were a problem, and there's not much overlap between people working on quantum computing and people working on smaller transistors. They're just separate issues - both interesting and important.

alyssa85

legendary

Activity: 1652

Merit: 1088

CryptoTalk.Org - Get Paid for every Post!

If Quantum Computers did exist (at great expense) - why would they waste that computing power on bitcoin which won't give them enough returns, compared to other uses they could put Quantum Computing to?

I don't understant why people are so convinced that QCs would be deployed in the cryptocurrency space which is only worth a few billion, compared to say stock markets or the trillion dollar forex markets where you could make so much more money?

Nadziratel

sr. member

Activity: 1568

Merit: 321

★777Coin.com★ Fun BTC Casino!

Quote from: eaLiTy on January 09, 2020, 05:58:58 PM

Quote from: Nadziratel on January 09, 2020, 03:00:28 PM

But you shouldn't fear from quantum computer. It is still hard to hack any crypto wallets. And also quantum computers can mine cryptocurrencies faster than ever.

The time interval does not change Tongue

and the price is not affordable to built a Quantum Computer to mine BTCitcoin and even if someone creates i doubt it will be able to overpower all the hashing power around the world and hence it is an impossible task. If someone is creating specifically to mine BTCitcoin then he must be really crazy and have a few millions at his disposal.

Of course, we're talking about a possibility here. But a person's probability of owning a quantum PC for mining is always more likely than trying to hack a Bitcoin wallet. If I had a quantum PC, I'm sure I'd use it for much better things.

shield132

hero member

Activity: 2352

Merit: 905

Metawin.com - Truly the best casino ever

Quote from: cacanin on January 09, 2020, 01:23:59 PM

From what I know, quantum computers will appear only in 10 years. The "companies of evil" (IBM, Google etc) will not allow this happen sooner.

What do you mean in appear? To be quantum computers accessible for everyone? Maybe not in 10 but in 20-30 year that may happen and then quantum will be perceive as normal as current PCs. But on another hand google's quantum computer already exists.
OP every problem is solvable, what is computer? Combination of numbers and numbers are part of math. Math can create and solve problems, so when there will be that problem, it will be solved too and as DannyHamilton correctly mentioned quantum-resistant authorization algorithm.

eaLiTy

hero member

Activity: 2814

Merit: 911

Have Fun )@@( Stay Safe

Quote from: QUANTUMInstruction on January 09, 2020, 12:11:01 PM

We don't know whether quantum computers will exist or not, but assume they will be built and some QC owners will move the early mined coins. What will happen?

The fact is everything evolves, if there is a technology that will attack certain protocols then it will evolve, if someone creates a Quantum Computer then they will plan to something that will benefit them rather than destroying something, that been said you need not worry about one in the next 20 years.

Quote from: Nadziratel on January 09, 2020, 03:00:28 PM

But you shouldn't fear from quantum computer. It is still hard to hack any crypto wallets. And also quantum computers can mine cryptocurrencies faster than ever.

The time interval does not change Tongue

and the price is not affordable to built a Quantum Computer to mine BTCitcoin and even if someone creates i doubt it will be able to overpower all the hashing power around the world and hence it is an impossible task. If someone is creating specifically to mine BTCitcoin then he must be really crazy and have a few millions at his disposal.

Nadziratel

sr. member

Activity: 1568

Merit: 321

★777Coin.com★ Fun BTC Casino!

Quote from: QUANTUMInstruction on January 09, 2020, 12:11:01 PM

We don't know whether quantum computers will exist or not, but assume they will be built and some QC owners will move the early mined coins. What will happen?

Case 1
They (QC owners) could move the early mined coins, which are mined to P2PK addresses and haven't been moved since then.
They could let these coins there for a certain time to give potential owners the possibility to prove (signed message) that they are the owners and transfer these coins to them.
If there is no owner, the QC owners are the new owners.

Case 2
Some BTC owners will not accept case 1. They will create a hard / soft fork and burn these early mined coins.

In both cases we have to implement QC resistant addresses immediately.

Case 3
They (QC owners) will move all possible coins (also from active addresses).
In this case the Bitcoin price would collapse and it would end the Bitcoin project.

Case 1 gives the QC owners the possibility to improve our Bitcoin network and make it quantum resistant and reward them with these early mined coins. If there are still owners of early mined and not moved coins, they have the chance to move the coins and will get them back even after being moved, if they prove it (signed message) within a certain time period. Case 1 would lead to a smooth transition to a quantum resistant Bitcoin network and would be the strongest fork.

Actually yes there is a known Quantum PC now.
Google claim they have an operational quantum pc: https://www.ft.com/content/b9bb4e54-dbc1-11e9-8f9b-77216ebe1f17

But you shouldn't fear from quantum computer. It is still hard to hack any crypto wallets. And also quantum computers can mine cryptocurrencies faster than ever.

dothebeats

legendary

Activity: 3542

Merit: 1352

Cashback 15%

The real question lies on how long quantum computers would be fully-functional and operational in large scale and not just existing in laboratory conditions. Anyway, I'm pretty sure the community and the developers working on bitcoin know the possible threat of quantum computing should it ever go live within the tech space. Before that goes full-blown, we may have moved to a completely quantum-resistant algorithm that deflects any sort of brute-forcing and/or possible exploits affecting P2PKH addresses.

Should coins that were mined early and are deemed inaccessible were retrieved by QC owners and the community knew about it, perhaps a fork would be proposed and we'd take it from there and accept the fact that these coins are permanently lost in the void without any chance of retrieval.

The bitcoin community is comprised of bright minds capable of coming up with solutions even to theoretical problems, so I'm banking on that fact heavily.

cacanin

newbie

Activity: 14

Merit: 0

From what I know, quantum computers will appear only in 10 years. The "companies of evil" (IBM, Google etc) will not allow this happen sooner.

QUANTUMInstruction

newbie

Activity: 5

Merit: 0

Quote from: DannyHamilton on January 09, 2020, 12:47:45 PM

LONG BEFORE before any actual Quantum Algorithm AND Quantum Computer exists that would allow someone to access the bitcoins secured by P2PKH, Bitcoin will already have moved to a quantum-resistant authorization algorithm. This will prevent Case 3, prevent the need for Case 2, and will allow plenty of time for any users that are still able to access their bitcoins to move those bitcoins with a quantum-resistant transaction. The coins that are still remaining in the weak transaction outputs once Quantum Technology becomes a realistic threat will be those coins that are effectively "lost". The QC owners will become the new owners of those coins, and Bitcoin will carry on as it always has.

You got it and support a strong Bitcoin network.

DannyHamilton

legendary

Activity: 3472

Merit: 4801

LONG BEFORE before any actual Quantum Algorithm AND Quantum Computer exists that would allow someone to access the bitcoins secured by P2PKH, Bitcoin will already have moved to a quantum-resistant authorization algorithm. This will prevent Case 3, prevent the need for Case 2, and will allow plenty of time for any users that are still able to access their bitcoins to move those bitcoins with a quantum-resistant transaction. The coins that are still remaining in the weak transaction outputs once Quantum Technology becomes a realistic threat will be those coins that are effectively "lost". The QC owners will become the new owners of those coins, and Bitcoin will carry on as it always has.

QUANTUMInstruction

newbie

Activity: 5

Merit: 0

~~~ reserved ~~~

Topic: What will happen if quantum computer owners start to move the early mined coins? - page 2. (Read 496 times)