Add EIP: Zero-Knowledge Wormholes #7522
Conversation
github-actions
bot
added
c-new
|
✅ All reviewers have approved. |
eth-bot
changed the title
eth-bot
added
e-consensus
eth-bot
changed the title
|
The commit bec2c66 (as a parent of 9fc5ab2) contains errors. |
github-actions
bot
added
s-review
|
|
||
| ## Rationale | ||
|
|
||
| Cryptocurrency mixers like TornadoCash can successfully obfuscate Ethereum transactions, but it's |
There was a problem hiding this comment.
TC to this EIP comparison looks apples to oranges as this EIP doesn't preserve assets/tokens , unless natively supported by the protocol (for eth) or by smart contracts (for tokens).
There was a problem hiding this comment.
Correct, but if we limit ourselves to ETH transfers, this EIP and TC are comparable imo.
| The spendable/unspendable addresses are not distinguishable, so we can exploit this fact and define | ||
| an spendability rule for the money sent to addresses that can't be spent using regular elliptic-curve | ||
| signatures. Using the help of Zero-Knowledge proofs, we can hide the transaction trace and design | ||
| a new privacy protocol, which is what this EIP is proposing. |
There was a problem hiding this comment.
how do you stop double claims of the spend since original burn is not identifiable
There was a problem hiding this comment.
By using a nullifer value (Just like TC), the nullifier can simply be the hash of the secret value.
The whole point is, a transfer to a wormhole address is completely indistinguishable from a transfer to a normal EOA address! Such a flag is not needed. When minting, a proof is submitted, showing that one of the txs is sending to a wormhole address. |
github-actions
bot
added
s-draft
Discussions on: https://ethereum-magicians.org/t/eip-7503-zero-knowledge-wormholes-private-proof-of-burn-ppob/15456