Cointime

Download App
iOS & Android

BitVM – The first real path to Bitcoin Layer-2s

From GLOBAL COIN RESEARCH TEAM by Lukasinho

The recent approval of Bitcoin spot ETFs and bullish BTC price action have become a catalyst for heightened interest in the Bitcoin ecosystem. A myriad of projects aiming to improve Bitcoin’s scalability have been introduced in recent times, the most exciting of them being BitVM.

BitVM is the first solution to build real Bitcoin layer-2 networks. In this article we want to look at how BitVM is achieving this, the opportunities and limitations as well as what we can expect from the future.

What is BitVM?

“BitVM is a computing paradigm to express Turing-complete Bitcoin contracts. This requires no changes to the network’s consensus rules. Rather than executing computations on Bitcoin, they are merely verified, similar to optimistic rollups. A prover makes a claim that a given function evaluates for some particular inputs to some specific output. If that claim is false, then the verifier can perform a succinct fraud proof and punish the prover. Using this mechanism, any computable function can be verified on Bitcoin.

Committing to a large program in a Taproot address requires significant amounts of off-chain computation and communication, however the resulting on-chain footprint is minimal. As long as both parties collaborate, they can perform arbitrarily complex, stateful off-chain computation, without leaving any trace in the chain. On-chain execution is required only in case of a dispute.”

Source: BitVM Whitepaper – Abstract

Source: atlas21.com

Why is building a Layer 2 on Bitcoin so hard?

Bitcoin cannot at a base layer verify zero-knowledge or validity proofs. This is due to its underlying language: Script. Unlike the smart contract languages of other blockchains, Script isn’t Turing complete.

A system or programming language is considered Turing complete if it is capable of solving any computational problem. As a Turing complete system, Solidity can execute more or less any program imaginable – DeFi protocols, zero-knowledge proof verifiers and much more. This allows these applications to be directly implemented on Ethereum. Since Script is not Turing complete, Bitcoin does not have this capacity.

Satoshi deliberately restricted Bitcoin’s capabilities to ensure decentralization. To ensure that anyone can run a node that can quickly verify transactions so that the miners can build the block, Satoshi kept transaction information simple to prevent computational requirements for verifying blocks from spiraling out of control.

As a result, complex computations like fraud proofs or zero-knowledge verifiers so far couldn’t exist natively on Bitcoin. Without those capabilities, Bitcoin cannot interpret what is happening outside of its own chain. Bundling transactions and posting them on the mainnet, as Ethereum layer-2s do, is consequently not possible.

BitVM promises to have figured out a way to run any computation on Bitcoin without making full nodes execute every line of code. This would be a massive paradigm shift as it would allow Bitcoin to run trust-minimized systems and so enable the development of real Layer-2 networks.

How does BitVM resolve Bitcoin’s limitations?

In a nutshell, BitVM’s trick is lifting all of the logic off-chain and being able to challenge a few steps of the computation on-chain if verifiers assert a dishonest outcome.

A prover commits to do a set of computation off-chain together with an economic stake to guarantee that they will correctly complete the computation. After completion, the prover submits the results back embedded in a Bitcoin transaction. Verifiers can then verify if the computation was completed honestly and submit fraud proofs if they notice any irregularities to render the transaction invalid and slash the prover’s economic stake.

However, as previously mentioned, Bitcoin has no smart contract compatibility. To verify all of this, BitVM relies on breaking down code into binary gates – also called Boolean logic gates.

Under the hood of any computer, all any computer is doing to complete processes is passing around zeroes and ones. These zeroes and ones are processed by tiny devices called logic gates. Each logic gate takes one or two inputs (either zeros or ones) and produces a single output (again, either a zero or a one). By combining these logic gates in various ways, any kind of computation can be performed.

After breaking down the code into such binary gates, BitVM organizes them into a structure called a Taptree (also known as a Tapleaf tree). A Taptree is a type of Merkle tree, which is a data structure used to efficiently verify the contents of large sets of data.

In the case of BitVM, each leaf of the Taptree represents a different step in the computation process. By chaining together multiple logic gates within the Taptree, BitVM can perform any desired computation. The entire Taptree, containing all the necessary logic gates can then be embedded into a Bitcoin transaction. 

To ensure everything is done correctly, two parties can engage in a process where one tries to prove they’re doing the computation correctly while the other verifies their work. If there’s a disagreement, they can resolve it by revealing certain secret values within the Taptree that prove who’s right and who’s wrong.

In the end, this process ensures that the computation is carried out accurately, and the appropriate party receives the funds based on the result. 

Source: BitVM whitepaper

Potential Challenges

While BitVM seems to solve Bitcoins biggest limitations, it doesn’t come without its own challenges.

Firstly, BitVM only allows the creation of trust-minimized systems, not trustless systems. A 1-of-N trust assumption will remain, as at least one honest verifier is needed to step in and challenge attempted frauds. If someone were to undermine every single verifier, they could post fraudulent transactions on the Bitcoin chain. Luckily there is no upper bound on how many verifiers engage in the network. Anyone will be able to act as a verifier. The more verifiers participate in the network, the more robust the 1-of-N trust assumption becomes and the more secure the system will be.

A second issue that arises lies in the potential complexity of this system. Taptrees could potentially have billions of leaves and pre-signed transactions to go with them all at least a few hops long to ensure accurate settlement. In order to develop something using BitVM, one has to build it at the very lowest level of programming. This means there are countless different components that need to be built and put together in order to get a higher level programming language or even just a ZK verifier.

In its current state, BitVM would only support a two-party model. This means it cannot support smart contracts with multiple parties involved and many moving parts. For that reason, most if not all applications would need to be developed on L2s with proof verification occuring on Bitcoin L1.

BitVM Early Adoption

BitVM is not a layer-2 blockchain. Instead of building the L2 blockchain themselves, the Zero Sync team focuses on providing the infrastructure necessary for other teams building such networks. 

Citrea, Bitlayer and zkBase are two such projects that are looking to build layer-2 blockchains powered by BitVM. Citrea will be a zkEVM using STARKs – like zkSync and Starknet. Bitlayer is building an L2 framework that will support EVM, SVM, MoveVM and Cairo. zkBase is building zkByte as a zkVM, based on the Halo 2 proving system – an evolution of the Halo system developed to solve zcash’s scalability issues.

The BitVM whitepaper was just published in December and the product itself is still in the early development stage with no launch date announced yet. We can assume that it will take quite a while until BitVM is launched and that until then likely more teams will jump on the opportunity to leverage it. 

Proof generation on Citrea. Source: docs.citrea.xyz/

Future Outlook

BitVM is one of the most exciting technical undertakings on Bitcoin over the last years. The two most exciting prospects it could enable are trust-minimized bridges, and the verification of zero-knowledge proofs. These are two key components of zk-rollups. If BitVM can fulfill that potential, zk-rollups could usher in a new era of Bitcoin applications. Defi, DAOs, gaming and more could all be coming to Bitcoin. 

Bitcoin’s long-term sustainability has come into question as block rewards decrease which  could negatively impact mining profitability in the future. To sustain network security Bitcoin will need to generate more fee revenue in the future than Bitcoin’s traditional use-cases can provide. BitVM has the potential to resolve this issue. With layer-2 scaling, the Bitcoin network becomes more accessible as a payment system and the activity of L2 networks could generate the fees necessary to secure the network long-term.

While this sounds promising, BitVM is still in its early phases of development. The general consensus within the BitVM community is that the majority of the challenges described earlier are solvable.

Bitcoin’s status as the first decentralized blockchain, long standing ecosystem of stakeholders, and now institutional acceptance points to strong motivating factors to continue to develop BitVM. BitVM has the potential to be an important breakthrough that expands the possibilities of what Bitcoin can be.

Comments

All Comments

Recommended for you

  • A Total of 37,212.18 DMD Permanently Burned Over the Past 7 Days

    July 9, 2026 — According to the latest on-chain data released by DMDAO, a total of 37,212.18 DMD has been permanently burned over the past seven calendar days through the protocol's predefined trading and wealth management burn mechanisms.

  • Whale Transfers 1,133 BTC to Coinbase Prime, Valued at $71.48 Million

    According to Onchain Lens monitoring, a whale transferred 1,133 BTC from Coinbase to Coinbase Prime through an intermediary wallet, valued at $71.48 million.

  • U.S. AI Chip Stocks Decline Before Market Open, Intel Falls Over 3%

    On July 7, U.S. AI chip stocks experienced widespread declines before the market opened. Intel dropped over 3%, while AMD, Qualcomm, and NXP fell more than 2%. TSMC, Broadcom, and Tesla decreased by over 1%, and NVIDIA declined by 0.7%.

  • China's Central Bank Increases Gold Reserves for the 20th Consecutive Month

    As of the end of June, China's gold reserves stood at 75.44 million ounces (approximately 2,346.446 tons), an increase of 480,000 ounces (about 14.93 tons) from the end of May, which reported 74.96 million ounces (approximately 2,331.52 tons). This marks the 20th consecutive month of gold accumulation.

  • China's Foreign Exchange Reserves in June at $341.6262 Billion

    On July 7, China's foreign exchange reserves for June stood at $341.6262 billion, a decrease of $26 billion from the end of May, representing a decline of 0.75%, with expectations set at $343.2 billion.

  • U.S. Storage Stocks Drop Pre-Market, SanDisk and Micron Down Over 4%

    On July 7, U.S. storage concept stocks collectively fell in pre-market trading. Western Digital dropped over 5%, SanDisk and Micron Technology fell over 4%, Seagate Technology declined over 3%, Rambus fell over 2%, and SMI fell over 1%.

  • U.S. Stocks in Optical Communication Sector Drop Pre-Market

    On July 7, stocks in the optical communication sector of the U.S. market collectively fell pre-market. Astera Labs dropped over 4%, while Marvell Technology, Credo Technology, and AXT Inc. fell more than 3%. Tower Semiconductor, MaxLinear, Corning, Applied Optoelectronics, GlobalFoundries, Lumentum, and Qorvo all declined by more than 2%. Coherent, Nokia, Amphenol, and Broadcom dropped over 1%.

  • Pre-market Decline in U.S. Storage Stocks

    In pre-market trading, U.S. storage concept stocks experienced a widespread decline, with Micron Technology falling by 4.8%, SanDisk dropping over 4%, Corning down more than 2%, and Intel decreasing by over 3%.

  • Two Departments: Support for Reinsurance Institutions to Increase Capital and Issue Supplementary Capital Tools

    On July 7, the National Financial Supervision and Administration Bureau and the Shanghai Municipal Government released several measures to accelerate the construction of the Shanghai International Reinsurance Center. Among these measures, they proposed to enhance the quality and efficiency of the reinsurance industry, support reinsurance institutions in increasing capital and expanding shares, and issuing supplementary capital tools to improve the capacity for internal capital accumulation and external capital supplementation, thereby strengthening the reinsurance industry's capabilities. The initiative aims to guide the insurance industry to focus on major national projects, strategic emerging industries, and livelihood security, consolidating insurance and reinsurance underwriting capabilities to enhance risk protection levels. It also supports reinsurance institutions in leveraging their professional technical advantages to assist the insurance industry in reducing risk.

  • Sources: Saudi Arabia Plans to Expand Oil Pipeline to Red Sea, Increasing Capacity by 2 Million Barrels Daily to Bypass Strait of Hormuz

    On July 7, five informed sources revealed that Saudi Arabia is considering expanding the crude oil pipeline capacity to its western coast on the Red Sea, allowing Saudi Arabia and its neighbors to transport more oil without passing through the Strait of Hormuz. This east-west pipeline, built in the early 1980s, has gained strategic importance since the outbreak of the Iran war in February and the disruption of shipping in the Strait of Hormuz. The pipeline can deliver up to 7 million barrels of crude oil per day to the Red Sea port. The CEO of Saudi Aramco stated in May that approximately 2 million barrels are supplied to west coast refineries, while about 5 million barrels are for export. Sources indicate that Saudi Arabia is in preliminary discussions with some neighboring countries regarding the pipeline expansion, aiming to add about 2 million barrels of pipeline capacity per day. It remains unclear whether Aramco's planned expansion involves upgrading existing infrastructure or constructing new pipelines. One source mentioned that the expansion plan also includes a smaller refined oil pipeline. Two sources indicated that the expansion scale could range from 1 million to 2 million barrels per day, with refined oil also being considered. Another source stated that the project would take several years and cost billions of dollars, requiring adjustments to Saudi crude pricing mechanisms.