Content
@
https://ethereum.org
0 reply
0 recast
0 reaction
Paul Miller
@paulm
There are challenges in upgrading blockchains to be post-quantum safe, however, some of them seem easy. Most keys these days are generated from BIP39 mnemonics. Bip39 is pq-safe. We freeze all balances. To unfreeze, we ask users to generate a STARK proof which shows seedphrase is related to their address. After that funds are moved to a new system. Done. (https://ethresear.ch/t/how-to-hard-fork-to-save-most-users-funds-in-a-quantum-emergency/18901)
6 replies
39 recasts
206 reactions
Royal
@royalaid.eth
Curious on the Bitcoin ecosystem would answer this
1 reply
3 recasts
14 reactions
Cassie Heart
@cassie
Similar thing, but also Bitcoin is advantaged in that if used correctly, the public key is only revealed once on time of use to move funds from the given address. So for non mnemonic derived keys, as long as the key hasn't been used to sign a transaction once already, there's still room for a proof
1 reply
0 recast
4 reactions
Paul Miller
@paulm
This is not true anymore since p2tr was added. P2tr has unhashed addreses which are raw public keys.
2 replies
0 recast
4 reactions
Cassie Heart
@cassie
TIL and am disappointed
0 reply
0 recast
0 reaction
Harris
@harris-
Don't you also have tapleaves and spending paths? there could be some hidden, unrevealed merkle tree that points to a new p2tr address used as on the upgraded protocol, which somehow provably links it back to the legacy btc address maybe? idk just ideating rn. Could you maybe also do something related to the derivations and the original public key in some zk provable way like proving you know the public key of the HD root for that particular p2wpkh address, evm address etc? that's private information from what I recall though dunno the security implications of using those values for such a task without re-reading into the topic
0 reply
0 recast
0 reaction
