As far as I know, we don't even know for sure if "Satoshi's coins" are Satoshi's coins.

So I'm not sure we should treat them any differently from other P2PK coins.

Something Else:

SOFT FORK - P2PK TXNS MUST PAY 50% MINING FEE.

This sort of splits the difference between "let them have them" and "air drop to miners"

Regardless of whats done, we would need to give holders at least 4 years advance notice before enacting anything.

Czar of the universe answer is to fix this in an elegant way early with a decade or so to move the coins before anything consequential happened. In the real world, you would never build consensus for such a thing. Even if you did, the process would be so contentious that a vocal contingent could cause a substantial loss of faith in the immutability of bitcoin. It might even be preferable to let the chaos play out. Unless there's overwhelming consensus, any solution becomes a poisoned chalice - even if it's technically elegant.

@anon really a believer in the "pay-to-post" meme here.

No post rewards coz anon, boosting 60k sats and forwarding all rewards to SN devs.

What the NSA does what their coins is none of your business

The coins will probably be moved before the cryptography vulnerability is announced. They would secretly get the coins before anything else. To prevent this, I think there was and idea about a hard fork requiring coin holders to renew them periodically (could be years) to avoid losing the coins. This would burn Satoshi's coins and lost coins, giving a better representation of the total available supply.

I’m surprised that the majority is voting for letting the attacker have the coins. What’s the benefit of letting some QC pioneer have several million bitcoin?

If the choice were between the coins being misappropriated or burned, wouldn’t you rather have your coins be lost than a thief benefiting?

Hell of a question…. The hard fork sending them to mining pool would be very very interesting… anyone have a rough idea how much longer mining BTC rewards would go for then?

1st of all we can't really tell which coins belong to Satoshi precisely. The best heuristic is the Patoshi pattern, but even that has certain caveats.

And even more I just don't understand where this attitude is coming from that a lot of people get to have a say in how someone moves their money? It does not matter if it is Satoshi, or anyone else, it's not your money!

Let's say that Satoshi emerges and provides some kind of 0-doubt cryptographic proofs that he owns a BIG amount of coins and he says he is ok with confiscating these coins, it's still not a good idea. (i know that in this hypothetical, the better thing would be to move the coins to some quantum proof addresses, but im trying to make a point here :p)

Why? Well because this creates a bad precedent where you practically confiscated someones BTC and they you censored them for life.

Also just because coins don't move "before that time", don't really mean anything, except that the coins did not move. Maybe I am missing something but I don't see how any educated conclusion can be drawn from that.

Let's say we find(and i am sure there are such cases) some coins that are all up for grabs but can only be grabbed after block XXX,XXX, do we fork these coins off also? Ofc, no.

But Satoshi's coins are a big quantity, you don't want them in the wrong hands.

Is it even correct to call this an attack? I mean from the POV of the network things are just functioning as usual. How could you tell the Bitcoin Network that this is something incorrect?

This is not a problem of the Bitcoin Network not being good at dealing with Quantum Computers, but a problem of Meat Space Intentions vs Blockchain Intentions.

we will be discussing this at TABConf this year in Oct for those who seriously want to debate and discuss this in person. tabconf.com

This can't happen except with the creation of a quantum computer... and that's a long way off. The solution (I think) will be to switch from sha256 to sha512 (or maybe sha1024)

All you people care about is money, its not about the money its about sending a message, everything burns

Timelock it to be distributed as mining rewards after 2140 ? does that work ?

Let Satoshi decide. They're his coins.

SELL ALL YOUR BITCOIN NOW ! WE ARE ALL GONNA DIE!

I feel some people hve a lot of time to daydream. The system wont be broken anytime soon.

The only answer that respects the foundational principles of Bitcoin is to do nothing. The owner of the coins in all P2PK addresses need to make their own decisions.

That being said, if (that is a big IF) there was a way that makes sense that would sort of recycle these coins into a perpetual block subsidy of some sort, it might be interesting. But then again, I see no way of doing that without violating someone else’s property right.

Interesting debate though. At the end, Bitcoin should be something where you could go to sleep for 25 years and when you wake up, nothing fundamental has changed except that your coins are worth more.

Is this really a problem? I thought there was already talks about a quantum-resistant fork to upgrade the signature scheme?

Nothing, it will not break

I thinkredistributing it into random wallets would make sense instead of a cold wallet.

All of the above. The market will decide which fork is Bitcoin

spend it all on hookers and blow

The hacker have it

Nobody knows which coins exactly are owned by Satoshi and which are owned by somebody else. So what soft/hard fork could we talk about...

When quantum computer will be ready, All out found could be stolen.

Satoshi wallet will be more interesting then mine wallet, so, probably, it will be broke for first. When this will happen, I'll will ready to move all my asset to a quantum resistant wallet.

I've heard Abam Back talk about this few days ago.

Soft fork, disallow P2PK txns in mempool

Hard Fork, send them to mining pool.

call 1-800-FED and ask ...lol

Send them to minimg pool

But guys what's up with ECC?

It’s not like the quantum miner gets 1M coins all at once. This attack would be 50 utxos at a time. It’s like a new mining award for the network

I kinda like the soft fork idea. It's a reversible countermeasure to protecting Satoshi's coins. But not the end of the world if we do nothing. Odds are that the attacker will be some entity that's already really wealthy, if they're one of the first to get their hands on a powerful enough quantum computer. Perhaps some billionaire will steal them and then burn them. One can dream.

Oh, what happens next? Do exchanges allow these coins to be sold for fiat? Do reputable institutions do business with this entity and keep it the DL?

Depends