- SegWit wallets delay public key exposure until the moment a transaction is broadcast.
- Holding Bitcoin in SegWit addresses can provide temporary protection if the funds remain unmoved.
- Some experts believe practical, large-scale quantum computing is still decades away.
Concerns about quantum computing’s potential to undermine Bitcoin’s cryptography have resurfaced in the crypto community. The idea that a sufficiently powerful quantum computer could derive private keys from public keys has moved from academic speculation to a more urgent, practical discussion.
Bitcoin analyst Willy Woo recently proposed a short-term mitigation: keep Bitcoin in SegWit addresses for roughly the next seven years. The suggestion has sparked debate, with the community divided over whether quantum computers present a near-term threat or represent a distant technical challenge.
SegWit delays public key exposure
Segregated Witness (SegWit), activated for Bitcoin on August 23, 2017, altered how transaction data is recorded and verified. One practical effect is that SegWit addresses do not reveal the public key until a spend occurs. Woo argues this delay reduces the window during which a quantum adversary could attempt to derive the corresponding private key.
By contrast, Taproot addresses often expose the public key as part of their on-chain representation, which creates an immediate public-key footprint. If quantum computing advances to the point where it can reverse classical cryptographic functions in real time, that exposure could become a vulnerability.
SegWit’s construction places an additional hashing layer between the address and the underlying public key, meaning the public key is kept hidden until a transaction is signed and broadcast. This behavior could provide temporary risk reduction while the community develops and deploys quantum-resistant solutions.
Hodling in SegWit has important limitations
Though SegWit may offer interim protection, it carries a critical restriction: coins must remain unmoved. Any outgoing transaction from a SegWit address reveals the public key during signing and broadcasting, reopening the attack surface for attackers who might be able to exploit quantum capabilities at that moment.
That requirement makes SegWit-based protection unsuitable for active traders or users who need short-term liquidity. It functions like a vault: safe while untouched, but inaccessible for spending. Its effectiveness therefore depends entirely on quantum capability remaining insufficient to break signatures during the brief exposure window created by a spend.
If a quantum breakthrough occurs earlier than expected, even SegWit-held funds could be at risk during withdrawal. Woo frames his recommendation as an interim measure intended to buy time until a robust, quantum-resistant Bitcoin upgrade can be designed and adopted.
Experts disagree about SegWit’s value as protection
Not all industry voices accept that SegWit meaningfully improves security against quantum threats. Charles Edwards, founder of the digital asset fund Capriole, has criticized the idea as misleading, arguing that SegWit is not inherently quantum-safe and that promoting it as such could slow urgently needed upgrades to Bitcoin’s cryptographic primitives.
Critics warn that suggesting a multi-year buffer could foster complacency, reducing pressure on developers and stakeholders to prioritize and accelerate the development of quantum-resistant algorithms and protocol changes.
The debate highlights a broader lack of consensus in the crypto ecosystem about how imminent and serious quantum risk is, and about the right balance between short-term mitigations and long-term protocol work.
Sceptics say quantum fears are premature
Other observers dismiss the alarm as overblown, pointing to persistent engineering hurdles that make large-scale quantum computers impractical today. Challenges such as error correction, qubit coherence, scaling, and thermodynamic constraints mean many believe practical quantum attacks remain a long-term possibility rather than an immediate threat.
Some commentators also note that well-resourced targets like banks and large financial institutions would likely be higher-priority targets for any early, functional quantum adversary than a decentralised network like Bitcoin, which complicates assumptions about where the first impacts might appear.
Woo also notes that institutions holding Bitcoin on behalf of others—custodians, treasury departments, or ETFs—may be able to implement interim protections, provided they take proactive measures to rotate keys or adopt improved security practices.
Until a consensus emerges and quantum-resistant cryptography is integrated into Bitcoin, this debate will continue to influence how users, custodians, and developers think about long-term digital-asset security.