Difference between revisions of "CryptoNote"

From Bitcoin Wiki
Jump to: navigation, search
(Improve accuracy, don't just remove information)
(restore schism note (dead links don't mean content should be removed))
Line 40: Line 40:
 
The first version of CN – CryptoNote v.1 (December 12 2012) was published in Tor http://ol346fucnsjru223.onion/whitepaper.pdf  
 
The first version of CN – CryptoNote v.1 (December 12 2012) was published in Tor http://ol346fucnsjru223.onion/whitepaper.pdf  
  
Little is known about CryptoNote's origins. The official website uses supposedly fake names for the team members, while the white paper's author is Nicolas van Saberhagen, which is also likely to be a pseudonym. The white paper "CryptoNote v 2.0" is dated back to October 2013<ref>https://cryptonote.org/whitepaper.pdf</ref>, [https://bitcointalk.org/index.php?topic=740112.0 but some believe this date to have been faked]..
+
Little is known about CryptoNote's origins. The official website uses supposedly fake names for the team members, while the white paper's author is Nicolas van Saberhagen, which is also likely to be a pseudonym. The white paper "CryptoNote v 2.0" is dated back to October 2013<ref>https://cryptonote.org/whitepaper.pdf</ref>, [https://bitcointalk.org/index.php?topic=740112.0 but this date appears to have been faked].
 +
It was also mentioned that the team developing CryptoNote had experienced a schism and went separate ways.
  
 
== Philosophy ==
 
== Philosophy ==

Revision as of 02:30, 25 September 2014

CryptoNote is an open-sourced protocol that allows for increased privacy in cryptocurrency transactions.

Features

Difficult to trace and link payments

Unlike traditional cryptocurrencies that mostly use unambiguous signatures to verify the transfer, CryptoNote utilizes ring signature. Ring signature is a more sophisticated scheme that demand several different public keys for verification. In this case the transaction is signed by a group of users. Thus, the verifier may only identify that one of them was a signer, but not who exactly that was. Though this does not offer provable anonymity (like Zerocoin), the increase in privacy in comparison to Bitcoin is considerable.

CryptoNote automatically creates multiple unique one-time addresses for each of the payments, which are created from the single public key. Even though the payment is sent to a public address, in the block chain it appears as if it is sent to a one-time address. The sender uses random data and the public address of the receiver to calculate this one-time key of the payment. The redemption of the funds requires the receiver's private key, so only the latter may receive the money sent to the one-time address. Moreover, no third party can discover the link between the one-time key and the receiver's public address.

Double-spending proof

CryptoNote's ring signatures restrict the double-spending attempt by linking the transactions with the same private key. The protocol uses the key image, derived from a private key through a one-way function. All the users keep the list of all the used key images, which are checked against a new transaction. In case there is a duplicate key image, the transaction is rejected as a double-spending attempt. However, the identity of the sender would still be unknown, since it is impossible to get the private key from its image.

Block chain analysis resistance

CryptoNote creates an obstacle for an analyst by using ring signatures and one-time addresses covered above. Every address of the payment is a unique one-time key, which is created from both the sender's and the receiver's data, and the usage of ring signature hides the exact outputs that have been spent for the input. Therefore, each next transaction increases the number of possible senders and hides the actual connection even more.

Adaptive limits

There are no hard constants and magic numbers in CryptoNote. Each limit (e.g., max block size, or min fee amount) is re-calculated based on the historical data of the system. Moreover, the difficulty and the max block size are automatically adjusted with each new block. The main idea of the algorithm is to sum all the work that nodes have performed during the last 720 blocks and divide it by the time they have spent to accomplish it. The measure of the work is the corresponding difficulty value for each of the blocks.

Smooth emission

The coins are emitted smoothly, as the reward changes with each new block. This allows a predictable steady growth of money supply determined by the formula[1]:

BaseReward = (MSupply - A) >> 18
MSupply = 2^64 - 1 (atomic units)

Egalitarian proof of work

CryptoNote uses CryptoNight hashing algorithm as its proof-of-work. The proof of work mechanism is actually a voting system. Users vote for the right order of the transactions, for enabling new features in the protocol and for the honest money supply distribution.

Origins

The first version of CN – CryptoNote v.1 (December 12 2012) was published in Tor http://ol346fucnsjru223.onion/whitepaper.pdf

Little is known about CryptoNote's origins. The official website uses supposedly fake names for the team members, while the white paper's author is Nicolas van Saberhagen, which is also likely to be a pseudonym. The white paper "CryptoNote v 2.0" is dated back to October 2013[2], but this date appears to have been faked. It was also mentioned that the team developing CryptoNote had experienced a schism and went separate ways.

Philosophy

CryptoNote philosophy has several key points: privacy as a fundamental human right; government's influence and control remission as an aim. The economy should be separated from politics, communities should set new transparent principles, and impartial cryptographic algorithms should control its implementation.

See also

External links

References