Bitcoin Improvement Proposal 360 (BIP 360) has been merged into the official Bitcoin Improvement Proposals repository on GitHub, making the latest draft an official, numbered BIP that the ecosystem can reference and iterate on.
That “merged into the BIPs repo” milestone is not the same thing as a Bitcoin network upgrade going live. The BIPs repository is primarily a publication and archival venue, and publication does not imply consensus or imminent activation.
BIP 360, titled “Pay-to-Merkle-Root (P2MR),” proposes a new output type that is intended to preserve most of the practical benefits of Taproot script trees while removing Taproot’s quantum-vulnerable key-path spend.
In plain terms, Taproot today gives spenders two primary ways to spend:
BIP 360’s core move is simple: keep the script-tree approach, but remove the key-path option entirely for this new output type. That means P2MR outputs commit only to the Merkle root of a script tree, rather than also committing to an internal key that could become a quantum target after being exposed.
The draft frames this as an “opt-in” hardening path against long-exposure quantum attacks, where an attacker has a long time window to target public keys exposed on-chain. The text also explicitly notes that this does not solve short-exposure attacks, such as a future quantum attacker targeting a public key visible in the mempool while a transaction is waiting to confirm.
The headline risk being discussed is that a sufficiently capable quantum computer could use Shor’s algorithm to recover a private key from an exposed elliptic-curve public key. The BIP text argues that the earliest realistic risk window is “long exposure,” meaning keys that are visible on-chain for long periods, because an attacker would have far more time to run key recovery against historical data.
Taproot key-path spends are part of that narrative because Taproot outputs commit to a public key. Even if users spend quickly, the key material can become visible and persist in the blockchain record once spent, which is exactly the kind of long-lived target the draft is trying to minimize.
BIP 360’s positioning is, effectively: remove the key-path spend in a Taproot-like structure and make the default spend path be a script-path, which can be designed to reveal less quantum-vulnerable key material over time.
Nothing changes on the Bitcoin network just because BIP 360 is published. For anything like P2MR to be usable on mainnet, the proposal would need a separate implementation track, broad review, and an activation process consistent with consensus changes. BIP 360 is explicitly scoped as a soft fork proposal in the “Consensus (soft fork)” layer.
If the idea progresses, the practical implications would be felt mostly by wallet developers, hardware wallet vendors, exchanges, and libraries:
The draft also proposes that P2MR uses SegWit version 2 and indicates mainnet addresses starting with “bc1z” in its example format. That detail matters because it signals potential downstream work: bech32m tooling, address UX, and conservative rollout strategies similar to how Taproot adoption evolved over time.
For readers tracking whether this becomes more than an archival milestone, the next signals are procedural and technical, not price-driven:
In short, BIP 360’s addition to the official repository is a meaningful documentation milestone, and it clarifies a specific design direction: an opt-in, Taproot-like output that reduces long-exposure quantum risk by removing key-path spends. The market impact, if any, is likely downstream and gradual, because the real gating factor is adoption and activation, not the BIP number itself.
The post BIP 360 Lands in the Official Bitcoin BIPs Repository, Framing a Path Toward Quantum-Resistant Outputs appeared first on Crypto Adventure.
Also read: Cardano (ADA) Price Jumps Following LayerZero Integration Announcement
