
Quantum-Resistant Bitcoin Cash: A Challenge-Based Transition Protocol
This outlines contract design, and it is possible to implement them now. Having header introspection opcode would help make it more robust and simpler. Consensus upgrade would only have to overload P2PK and P2PKH spends and force them to migrate to the challenge contract. Open question: how to deal with multisig. It would require a more complex challenge contract and interactive spend.
Quantum-Resistant Bitcoin Cash: A Challenge-Based Transition Protocol
Abstract
We propose a protocol enabling secure transition of Bitcoin Cash funds from quantum-vulnerable addresses to quantum-resistant ones, functional even after ECDSA is compromised. The protocol uses aged commitments as proof of ownership, with a challenge mechanism allowing older commitments to displace newer ones. Unlike previous proposals, this design creates uncertainty for attackers: they cannot know whether a prior commitment exists, providing deterrence even for already-exposed public keys.
Rest of the text is here: https://bitcoincashresearch.org/t/quantum-resistant-bitcoin-cash-a-challenge-based-transition-protocol/1804