New Bitcoin Quantum Proposal Offers Satoshi Nakamoto a Way to Prove Control without Moving BTC

The looming threat of quantum computers has reignited debate over Bitcoin’s legacy address formats, which expose roughly 1.1 million BTC—about $84 billion—to potential future attacks. Existing proposals, such as BIP‑361, suggest a five‑year phase‑out and a hard freeze for un‑migrated funds, forcing even dormant holders like Satoshi Nakamoto to reveal themselves or lose access. While technically sound, that approach pits security against the principle of immutable ownership, prompting the search for a less disruptive solution.

Paradigm’s Provable Address‑Control Timestamps (PACTs) aim to bridge that divide. By generating a random salt and signing a message with BIP‑322, a holder creates a cryptographic commitment that is anchored to the blockchain via OpenTimestamps. The commitment remains private until the owner decides to spend, at which point a STARK zero‑knowledge proof—secure against quantum attacks—demonstrates the timestamp predates any quantum capability. This design preserves anonymity, protects the value of dormant coins, and fills a gap in BIP‑361 by covering pre‑BIP‑32 wallets, including those attributed to Satoshi.

However, PACTs are not a silver bullet. Implementing the required STARK verification demands a separate soft fork, extensive multisig and scripting upgrades, and broad hardware‑wallet support—collectively described as “substantial new plumbing.” Moreover, the system only works if the original key holder creates the commitment; if Satoshi’s keys are lost, the coins remain vulnerable. The proposal therefore adds nuance to the quantum‑risk conversation, offering a potential rescue path while highlighting the trade‑offs between technical feasibility, community consensus, and the preservation of dormant property rights.