-
@ mleku
2025-02-25 08:13:22
"orders of magnitude" more qbits is required, which is the cube of the cost of energy to run them, btw (i'm talking about sucking the heat out of the chips it doesn't matter whether you parallel or not because the cost of removing 10x as much heat is more than 10x as much energy on any practical scale
we are far from them being able to do a pubkey reverse derivation by at least 10 years, assuming they are able to scale up their power plants for their data centers to use nuclear power, and that assumes that it's cost effective for the average yield of an attack
simply adding a new address type that uses 256 bit hash instead of 160 would be enough to push it 10 years into the future, IMO
solving the problem of coinjoin and payjoin coordination would mean you could use musig2 composite schnorr (taproot) signatures a lot more and it would also have the side effect of cutting the size of transactions
coordination of coinjoin, in particular, is a trivial problem if the parties involved have a high degree of trust with each other