Papyrus: Papyrus Technical Roundup #13: Status of privacy research in Papyrus.

martech ethereum digital-marketing digital-advertising adtech

Papyrus’ privacy consists of two main components — state channel privacy and privacy of transactions. State channel privacy involves encryption of state channel parameters and block data. Encryption is implemented as a combination of asymmetric and symmetric algorithms. We use the symmetric AES‌-256 to encrypt channel data. The asymmetric algorithm is used only to encrypt a symmetric key for AES. State channel encryption is currently being tested and will be released soon. It will protect state channel data from being viewed by unauthorized parties.

More information about state channel privacy can be found in our previous blog post:

https://blog.papyrus.global/papyrus-technical-roundup-11-privacy-management-dbd24326553a

Protecting payment transactions generated during channel settlements is a more challenging task and cannot be achieved by applying standard encryption. Private (or shielded) payment transactions require advanced cryptography like ring signatures or zero-knowledge proofs. Our first option was to copy the existing scheme from Monero or ZCash. Effectively, this means that each node would need to run two blockchains in parallel — one for the main chain and one for shielded transactions. On one hand, there are clear benefits to taking existing thoroughly tested code, like avoiding the implementation of complex cryptography by ourselves. But on other hand, the overall architecture would become overly complicated and less maintainable so our second option, which is currently under research is to add shielded transactions directly to the blockchain layer.

Currently, there are several different approaches being researched — RingCT (Monero), zkSNARKS (zCash) and Bulletproofs. We are comparing them using the following parameters: level of privacy, transaction size, transaction generation time, transaction verification time.

Monero RingCT’s privacy and also transaction size depends on the number of inputs (mixins) and outputs. Even for typical 2-input 2-output transactions, the size is quite large — around 13Kb. For mixin transactions with lots of inputs and outputs, the size could become larger than 100Kb. The Monero team is planning to switch to Bulletproofs which will reduce transaction size by ~84% (source: https://monero.org/xmr-community-invites-auditors) so we will not consider using RingCT in Papyrus.

The key benefits of zkSNARKS are: real zero-knowledge privacy and very short proof sizes, the latter of which is critical since blockchain storage is very expensive. The ZK proof occupies 188 bytes in every Zcash transaction. Verification time is around 8–9ms. Proof generation currently takes around 40 sec and 3Gb of RAM which is far from ideal. The ZCash team is planning to improve those numbers to 7 sec and 40Mb with its next major chain upgrade called ‘Sapling’ which will be activated in September 2018 (to read more https://blog.z.cash/cultivating-sapling-faster-zksnarks). A major drawback of zkSNARKS is their dependence on the initialization phase called trusted setup. If the trusted setup phase was compromised, then the security of the entire system becomes compromised and false proofs may be generated.

Bulletproofs are a relatively new approach to generate ZK proofs. They do not require a trusted setup. According to the Bulletproofs paper (https://eprint.iacr.org/2017/1066.pdf), a single 64-bit range proof is 675 bytes and takes 65 ms to generate and 3.9 ms to verify. Bulletproofs also support very efficient batching when several proofs are verified together or combined in one single proof. Batching allows for a 30–80% reduction in proof size and proving/verifying time.

Bulletproofs look very attractive but are a relatively new technology which means that it will require some time to be property audited before being included in real production blockchains. They require no trusted setup and may be considerably more efficient than zkSNARKS but have slightly larger proof sizes. We will continue our research to ensure that the proper choice of technology for shielded transactions is made.

Papyrus Technical Roundup #13: Status of privacy research in Papyrus. was originally published in Papyrus on Medium, where people are continuing the conversation by highlighting and responding to this story.

Original article was created by: Papyrus at blog.papyrus.global

Disclaimer: This article should not be taken as, and is not intended to provide, investment advice. Please conduct your own thorough research before investing in any cryptocurrency or ICO.

Interested in Cryptocurrencies and ICO's?

Follow our telegram channel for daily cryptomarket reports!

Join @cointrends

Stay on top of Altcoins and ICO trends.

Subscribe to our free Weekly Cryptomarket report

Delivered once a week, strongly to your inbox.

Subscribe to our mailing list
September 20, 2018

The Papyrus Team on DMEXCO 2018

September remains and has always been the biggest, the most definitive month for the digital advertising in the world. This is the time when everyone and everything come into one place to share, inspire, breathe the innovation as well as to see and fully grasp it. We have been anticipating this...

From: Papyrus
September 13, 2018

Papyrus Business Development trip to Asia: Singapore meetings and Bloconomic conference (Malaysia…

Papyrus Business Development trip to Asia: Singapore meetings and Bloconomic conference (Malaysia, Kuala Lumpur).Abeed Janmohamed, CEOIts always exciting to make another trip to the East part of the world that is driving the agenda on crypto and blockchain — The place where I have met...

From: Papyrus
September 06, 2018

The Papyrus Team goes to DMEXCO (Germany, Cologne), the Digital Marketing Expo & Conference on…

The Papyrus Team goes to DMEXCO (Germany, Cologne), the Digital Marketing Expo & Conference on September 12–13The Papyrus Roadshow continues! On September 12–13 meet the Papyrus team at DMEXCO — Digital Marketing Expo & Conference held in Cologne.Dmexco is the global business...

From: Papyrus
August 27, 2018

Eliminate current digital advertising inefficiencies with Papyrus’ blockchain

Although the digital advertising market is still growing rapidly and is expected to reach $330B net worth by 2020, it is often referred to as one of the most inefficient industries in the world. But that won’t be for long.The Papyrus team, composed of PhDs and expert engineers committed to...

From: Papyrus
August 13, 2018

Papyrus’ Business White Paper 2.0

It has been more than a year since Papyrus’ main White Paper publication in July 2017, and now the Papyrus team proudly presents a comprehensive Business White Paper 2.0.This new White Paper, aside from being the most up-to-date technology document of the entire development of the project,...

From: Papyrus
August 06, 2018

Why we had to invent our new blockchain

One may ask: Why reinventing blockchain when it is already so simple and genius in its original form? The answer may lie in the variety of fields and applications, which are yet to be fully discovered. Today, we would like to explain how we applied blockchain to the digital advertising...

From: Papyrus
Upcoming ICO's
This week overview
Token Name Starts
Spotcoin (SPOT) logo Spotcoin (SPOT) 1 days
CoTrader (COT) logo CoTrader (COT) 2 days
Bountie (BNTE) logo Bountie (BNTE) 5 days
Cryptocurrency rates
*Last hour average price&change
Coin Name Price Hour
Bitcoin logo BTC $6502.21480443 0.43%
Ethereum logo ETH $205.350773842 0.56%
Ripple logo XRP $0.4563620815 0.5%
Bitcoin Cash logo BCH $449.32623853 0.7%
EOS logo EOS $5.4301806911 0.67%
Stellar logo XLM $0.2427609829 1.51%
Litecoin logo LTC $52.8864557997 0.6%
Tether logo USDT $0.982817263 0.26%
Cardano logo ADA $0.0759604767 0.85%
Monero logo XMR $105.126607859 0.42%
Tronix logo TRX $0.0241271673 0.39%
IOTA logo IOT $0.4942538851 0.79%