What Happened
On Tuesday, April 28, 2026, Postquant Labs announced Quip Network, a post-quantum Bitcoin wallet built on Arch Network's Bitcoin-native smart contract layer. The wallet adds WOTS+ hash-based signatures on top of Bitcoin's existing transactions, providing quantum-attack protection without requiring any change to Bitcoin's base protocol. The technical approach: a Layer 2 architecture where the smart contract layer commits post-quantum signatures directly to Bitcoin transactions, so the user's quantum-safe ownership proof anchors back to the main chain without depending on external custody or wrapped tokens.
Postquant Labs CEO Colton Dillion stated the product publicly at the Bitcoin 2026 conference in Las Vegas: 'The Bitcoin community has delayed a fix for years, despite Satoshi himself discussing the quantum problem. Developers say any protocol upgrade could take 5 to 10 years, but with Quip's approach, we provide similar protection immediately. It's simple and works on top of Bitcoin today, using existing rules, with no community vote required.' The PR Newswire release was issued the same day. CoinDesk, The Block, and Quantum Zeitgeist covered the announcement within hours. Arch Network CEO Matt Mudano framed the urgency directly: 34% of Bitcoin is sitting in quantum-vulnerable addresses; that is not a theoretical risk, it is a real infrastructure gap.
The Third Path
The Bitcoin community now has three publicly proposed approaches to the quantum migration problem, and they sort by how much network-level coordination they require. BIP-361, the proposal we covered on April 15, would phase out quantum-vulnerable address formats over five years and freeze unmigrated coins, including the approximately 1 million BTC widely believed to belong to Satoshi Nakamoto. It requires a soft fork and explicit consensus, and critics including Lopp himself have called the freeze provision authoritarian. Paul Sztorc's eCash proposal, discussed at Bitcoin 2026 on April 27, would reassign Satoshi-linked coins on a forked chain, requiring an even larger consensus break.
Quip is the third path. It does not require any network change. An individual Bitcoin holder can adopt the protection unilaterally, on their own schedule, without waiting for the community to vote, without depending on a custodian to migrate them, and without participating in a fork. The trade-off is that Quip protection only applies to coins held inside the Quip wallet on Arch Network. Coins sitting in standard Bitcoin addresses remain in the 6.9 million BTC quantum-vulnerable pool the Coinbase Advisory Board paper identified six days ago. The user has to actively choose to migrate. But the migration is now possible without asking permission, which is the structural property that matters. The strategic value is not only the technical protection. It is forcing the ecosystem to think in timelines rather than hypotheticals. Before April 28, the operational answer to quantum risk was 'wait for the network to decide.' After April 28, the answer is 'decide for yourself, on your own schedule, with a tool that ships next week.'
What WOTS+ Actually Does
WOTS+ stands for Winternitz One-Time Signature, an extended variant of the original Winternitz scheme proposed in the 1970s. The signature is hash-based rather than elliptic-curve based, and Quip layers it on top of Bitcoin's existing ECDSA signatures rather than replacing them. The result is additive protection: a transaction signed in Quip is valid under Bitcoin's existing rules and additionally carries a post-quantum signature that anchors to the same chain. A quantum computer running Shor's algorithm cannot derive a private key from a WOTS+ public key the way it could from an ECDSA public key, because the hardness assumption underneath WOTS+ is the difficulty of finding hash collisions, which quantum computers do not meaningfully accelerate. The scheme is one of the primitives NIST has reviewed under its post-quantum cryptography standardization process and has been peer-reviewed for over a decade.
The 'one-time' qualifier matters. Each WOTS+ key pair can sign exactly one message securely. After that, partial information about the private key is revealed and reusing the key is unsafe. This is why Quip combines WOTS+ with a key-rotation mechanism implemented in the Arch smart contract layer: each transaction uses a fresh key, the next key is committed in advance, and the rotation happens on-chain. Postquant CTO Dr. Richard Carback explained the security guarantee: the approach narrows the window in which a quantum attacker could derive the private key from a publicly visible signature to roughly two blocks, about 20 minutes. That is too short a window for the early generations of fault-tolerant quantum hardware that researchers expect over the next decade.
What This Means for You
If you self-custody Bitcoin and are watching the quantum debate from the outside, this announcement is the first option that does not require you to wait for the rest of the network to agree. BIP-361 will move at consensus speed, which historically has meant years and may not pass at all given the freeze controversy. Sztorc's hard fork would require the kind of social break Bitcoin has avoided since 2017. Custodian migrations (Coinbase, BlackRock, Strategy) will move on the custodian's timeline, not yours. Quip is the first answer that lets an individual holder take action this quarter rather than waiting on coordinated action from institutions.
The honest caveats matter. The wallet ships next week, not today. The audit is incomplete. Arch Network is early infrastructure, which means smaller security review surface, fewer eyes on the implementation, and meaningful operational risk from depending on a smart contract layer that has not been battle-tested at scale. Anyone considering migrating a meaningful position into Quip in the first weeks should treat this the way you would treat any new self-custody software: small test allocation first, audit reports read carefully when published, threat model of the Layer 2 itself separately understood. Permissionless quantum migration is the structural advance. The implementation is still young.
The sovereignty argument lands hardest here. The Coinbase Advisory Board paper from April 22 named the central risk: a badly handled quantum migration becomes a centralization argument because custodians will move faster than self-custody users. Quip is the answer to that risk. It gives self-custody users the ability to move at the same speed as institutions, on their own initiative, without depending on community consensus or custodian roadmaps. The honest framing is not 'Bitcoin has become quantum-resistant.' It is 'individual Bitcoin holders now have an immediate optional defense against quantum risk while the protocol-level debate continues.' The migration window is the asset. Quip is the first tool that makes the window usable for individuals.
What to Watch
Watch the Quip wallet launch the week of May 4 for whether the actual product matches the announcement. Watch the third-party audit when it publishes. Watch how Arch Network's broader infrastructure performs as adoption increases, since Quip's security model depends on Arch operating reliably. Watch whether other Bitcoin Layer 2 projects (BitVM, Stacks, Liquid, the BIP-300 covenants ecosystem) publish their own quantum-protection paths in response. And watch the BIP-361 community discussion, because if Quip and similar permissionless approaches gain real adoption, the case for a forced freeze becomes weaker. The structural debate is no longer whether quantum migration must happen at the protocol layer or not at all. It is now whether the protocol layer should coordinate the migration, or whether individuals can opt into protection unilaterally and the protocol layer can take longer to decide.