Most people in crypto are watching price charts and ETF flows. A small group of Bitcoin developers is working on something that will matter far more in the long run: making sure Bitcoin still exists and still works when quantum computers become powerful enough to break the encryption that currently protects every wallet on the network.
That work has now moved from theory to testnet.
The Threat Is Real, Even If the Timeline Is Uncertain
Bitcoin's current security relies on two signature schemes: ECDSA and Schnorr. Both are vulnerable to Shor's algorithm, a mathematical method that a sufficiently powerful quantum computer could use to reverse-engineer a private key from a public key. Once a public key is exposed on-chain, which happens every time you spend from an address, the clock starts ticking.
Most researchers believe a quantum computer capable of breaking Bitcoin's encryption is still years to decades away. But the US government is not waiting. Federal agencies faced an April 2026 deadline to submit post-quantum cryptography transition plans under National Security Memorandum 10. The European Union has set a 2030 target for quantum resistance across critical infrastructure. Canada implemented new procurement requirements aligned with post-quantum cryptography in April 2026.
Governments are treating this as an operational deadline. Bitcoin developers are responding.
The Number That Frames the Urgency
Approximately 6.51 million BTC, roughly 32.7% of all circulating supply, currently sit in addresses with exposed public keys. These are addresses that have already been spent from at least once, meaning the public key is visible on-chain. That is the population of coins that would be vulnerable first if a quantum computer capable of running Shor's algorithm emerged tomorrow.
BlackRock flagged quantum computing as a material threat to Bitcoin in its ETF filings. Coinbase analyst David Duong identified the same 6.51 million BTC figure as the core vulnerability. This is not fringe concern. It is showing up in institutional risk assessments.
What BIP-360 Actually Proposes
BIP-360 was formally proposed in September 2024, merged into Bitcoin's official BIP repository on February 11, 2026, and entered live testnet implementation in March 2026. The proposal introduces a new output type called Pay-to-Merkle-Root, or P2MR.
The design mirrors Bitcoin's existing Taproot upgrade (P2TR) with one critical difference: it eliminates the key-path spend mechanism. In current Taproot transactions, a single public key sits directly on the blockchain during the key-path spend. That exposed public key is the attack surface. P2MR removes it entirely, hiding all spending conditions inside a Merkle tree of scripts and only revealing the branch being used at spend time.
In practice, P2MR transactions would use Dilithium signatures instead of ECDSA or Schnorr. Dilithium, now standardized by the US National Institute of Standards and Technology as ML-DSA, is a lattice-based signature scheme that quantum computers cannot break using known algorithms. New addresses using bc1z encoding would be quantum-resistant from the moment of creation.
The Testnet Is Already Running
BTQ Technologies deployed Bitcoin Quantum testnet v0.3.0 on March 19, 2026. As of that date, the network had run more than 50 miners and processed over 100,000 blocks. People are creating and spending P2MR transactions on a live network right now. This is not a whitepaper anymore.
The testnet implementation includes five Dilithium post-quantum signature opcodes enabled in P2MR tapscript context. Compatibility with existing Bitcoin infrastructure, including the Lightning Network, was preserved in the design, which suggests the developers are prioritizing practical adoption over theoretical purity.
The Migration Problem Is the Hard Part
BIP-360 solves the forward-looking problem. New addresses created with the upgrade would be quantum-resistant from day one. The harder problem is the existing 6.51 million BTC sitting in vulnerable addresses right now.
BIP-361, co-authored by Casa CTO Jameson Lopp, addresses this directly. The proposal would give Bitcoin holders approximately five years to migrate their coins to quantum-resistant addresses after activation. Coins that fail to migrate within that window would become permanently unspendable on the network.
That is a significant proposal. Permanently freezing coins that belong to people who simply lost their keys, died, or failed to act in time is not something the Bitcoin community will adopt without extensive debate. BIP-361 is currently in informational status and requires no immediate action. But it frames the stakes clearly: the migration problem will eventually need a solution, and every year without one is another year of accumulated risk.
What Comes Next
BIP-360 is still a draft proposal. It has not been reviewed or endorsed by Bitcoin Core developers as a whole. The Bitcoin upgrade process is deliberately slow, requiring extensive peer review, security audits, and community consensus before anything touches mainnet. The testnet deployment is a proof of concept, not a deployment timeline.
But the direction of travel is clear. Governments are on post-quantum timelines. Institutions are flagging quantum risk in formal filings. Developers have moved BIP-360 from concept to live testnet in under six months. The upgrade cycle on Bitcoin mainnet could take several years from here. That means the work needs to start now.
The people who understand Bitcoin's long-term security posture are already treating this as an active engineering problem, not a distant theoretical one. The rest of the market will catch up eventually.
Disclosure: This post contains affiliate links to Trezor and Kraken. BitBrainers may earn a commission at no extra cost to you. This is not financial advice.
Sources
Nasdaq / BTQ Technologies. BTQ Technologies Announces First Deployment of BIP 360 on Bitcoin Quantum Testnet v0.3.0
CryptoTimes. Bitcoin's Quantum-Resistant Future Gets Real as BIP-360 Goes Live on Testnet
Bitcoin.com. Bitcoin Developers Propose Freezing Coins That Skip Quantum-Safe Migration Under BIP-361
CoinGenius. Bitcoin BIP-360 Quantum-Resistant Upgrade Goes Live On Testnet
BitBrainers. We check the facts so you don't have to.
