Topic: [SDC] ShadowCash | Welcome to the UMBRA - page 432. (Read 1289636 times)

Youtube links added.

Raw demo footage captured in real time and edited to avoid waiting during confirmations.

Two separate wallets (sender and receiver) were used, one situated on a VM.

Demo 1:

SDC to Shadow

http://youtu.be/L-wzkIQKueY

TX : http://shadow.blockexplorer.cc/tx/df3e58111719430e2864d4e3e10600610a8e9c17ffe7fc14da038db0a044436e

Demo 2:

Shadow to Shadow

http://youtu.be/J6j9WvX-O24

TX: http://shadow.blockexplorer.cc/tx/f486a768b2082c5c6d733c8203ef037532c1c94994f2af46db4911d6b8d4e3c2

Demo 3:

Shadow to SDC

http://youtu.be/HnAFQVMREps

TX: http://shadow.blockexplorer.cc/tx/fa64b0f13a594b56e9ab0a606f2142aa79689f045b646f9448424d8e02fe17bf

Here is a great presentation, thanks to CoolStoryTeller: https://docs.google.com/presentation/d/1yX2jN618Rnzs4g2ri_utdKdHbny6-xnRcPhOuhLNGB0/edit?pli=1#slide=id.g577a31a2a_086


Hopefully it makes it easier to understand.

Supposedly there is one coming soon according to a few posts back.

Yeah thats an option also. But this system allows the best of both worlds. I think one of the aspects which makes ShadowSendv2 zero knowledge is that SDC is destroyed and new SDC is minted after being signed by ring sigs, so these tokens are like intermediaries for the creation of new SDC on the blockchain.

please make presentation or youtube vid..lm lost

Seems pretty good as long as you don't do anything foolish to expose your amounts.  Or alternatively, I think you can just send some of your shadow tokens back to SDC and then use the SDC to pay the merchant and it seems just as anonymous.

But timing also plays a role as well.  Its probably best to have a pool of shadow long before you have to spend or transfer any back to SDC.  The longer you wait before changing back to SDC, the more anonymous it seems to be. But as the network grows the anonymity will improve as its easier to blend in with the rest of the network.  Also if you have super large amounts of SDC, then this is going to stick out on the network, so better to keep transactions smaller.

Also, alternatively you could wash the funds by going into Shadow, then back to SDC at some future time.  You could prepare pockets of SDC ready to spend.  I find myself doing this with Bitcoin.  Cleaning the coins, then setting up a few pocket addresses that can be used for spending at different merchants without linking them together.  Then if there is any change in the pocket, you could send it back to Shadow stealth address.  Would there be any problems arising from this behavior?  Is it safe to send the change back to a stealth address that already contains shadow?  

But also it seems the more shadow that exists in the network the better the anonymity.  So it may be healthy for the network if we all keep a good percentage of our coins in Shadow all the time.

Cool. That is an option. But why not accept shadow and keep tx's as Shadow>Shadow?

Correct me if i'm wrong guys, this is my understanding of the zk system.

3. Franklin sends 6,666SDC to his stealth addy with the 'SDC - Shadow' option. Now they are Shadow and have disappeared been destroyed from the blockchain.
4. All Franklin has to do is select 'Shadow - SDC' as the send option and send to the merchants regular SDC address. The ring signatures remove the link between the tokens and the network mints new SDC for the merchant, which are fresh coins with no blockchain history. So no stealth addresses needed for the merchant.

So here's a way of keeping things anon in the Shadowverse. Correct me on any points.

1. Franklin has 8,000 SDC
2. Franklin creates a stealth address in his wallet and backs up his wallet again because he created a new addy.
3. Franklin sends 6,666SDC to his stealth addy. Now they are Shadow and have disappeared from the blockchain.
4. When Franklin goes shopping he simply spends some of his stash of 6,666 Shadow to pay for things from merchants who offer stealth addys too.

Done. Perfect anon?

If I have figured things correctly then the ONLY thing an exchnage will need to do to deal in Shadow is generate a stealth address using the new wallet. Thats it. No new DB's. No new protocols. We just hook in. The decision to keep Shadow or convert to SDC is up to the merchant/exchange/gambling site etc. I'm sure we'd prefer them to be kept as Shadow. I don't see a need to convert back into SDC.

The acceptance of stealth addys int the BTC merchant world already exists meaning that unlike XMR, Shadow is ready for use NOW with almost zero changes required by exchanges/merchants. It is ready for prime time.

Correct me if I'm wrong on any points here. Thanks.

Hopefully trade volume will increase on SDC at Cryptsy now.  I noticed Monero is not on Cryptsy yet, and it was the most requested alt-coin on the coin votes.  Probably because its much harder to implement XMR.  I wonder if Cryptsy implements XMR, then they will maybe have the API's for cryptonote coins meaning they could accept Shadow deposits along side of SDC deposits.  I was thinking of the possibility of Shadow trading on its own currency pair, but I guess that may be confusing to newbs, and may fracture the market and reduce liquidity on the coin as well.

But how about it Mullick? Any chance to accept Shadow deposits alongside SDC deposits in the future, or offer Shadow withdrawals as well?  I guess not any time soon because its low priority.

You might have a point.

As smooth made clear one of the great strengths of the ShadowCash anon solution as it stands now is its ability to use the existing BTC merchant infrastructure whilst adding the ability to send anon ZK transactions.

If one considers the Yin-Yang Chinese symbol we can consider its metaphor to ShadowCash. On the one hand we have the transparent BTC tx's (light) and on the other the anonymous tx's (dark). The ZK anon layer is atop the proven well-tested and solid btc underbelly. This adds confidence in the integrity of the network.



The Shadow tokens that exist in ShadowCash flout the surveillance of the BTC blockchain and exist only as shadowy ghosts within the Shadowverse. They may rest as shadows indefinitely or magically reappear at the behest of the user back into the light. The more one considers this the more magical it becomes.

But just as each half of the Yin-Yang has a spot of its opposite colour we must be wary that the SDC side does not compromise the anon of the ZK side. As such we must be sensitive and mitigate any data seepage. It seems feasible that obfuscating links between SDC and Shadow is do-able as we encourage more merchants to accept Shadow so our coins need never see the light of day.

Presumably as more coins become Shadow they will literally disappear from the blockchain, some will never return to its purview.

Wouldn't that effectively make us a cryptonote coin?

I think having the best of both worlds (which we have right now) is ideal.

Thanks for commenting:

"And then it is my understanding that you would face the same issue as Monero: no (scalable) B2B infrastructure for CryptoNote exists yet."

Would you please mind elaborating or explaining in simpler terms what a B2B infrastructure is?
Thanks

Thanks again!

1. The Louisd’or project sounds it might be really amazing if it provides cryptonote PoS
2. Regarding Shadow being invisible on the blockchain I was curious about the XMR explorer. What does it explore?

So one might say that SDC is like XMR(Cryptonote) on top of a BTC style blockchain . It takes strengths, and in some cases inherits problems, from both systems.

I would like to know in greater detail and diffs between SDC and XMR?
Idea:
Having an exchange accepting and sending Shadow would be a big deal.

This is a consequence of the unfinished Bytecoin code that we inherited, not a design decision. We are actively working on a DB (LMDB, to be accurate) test-drive instructions.

And then it is my understanding that you would face the same issue as Monero: no (scalable) B2B infrastructure for CryptoNote exists yet (the official GUI wallet will take care of this, FAQ entry).

They are not linkable and spending isn't provable, so there is generally no way to create a meaningful richest.

The concept of an address "balance" isn't meaningful the way it is with a bitcoin-style coin.

Given that shadow uses the well-regarded cryptonote techniques and SDC uses bitcoin-style coins which are well known to be vulnerable to a lot of analysis/tracing, it is pretty obvious that more you use the former and the less you use the latter, the more actual anonymity will be achieved.

You can't stake shadow though. I'm not sure if that's something that matters a lot to folks here. The Louisd’or project has recently developed a PoS method that works with cryptonote and could probably be adapted here, so longer term that might be possible.

Are shadow tokens invisible on the blockchain/richlist? Getting everybody to accept shadow seems possible, partuclarly since that would actually take advantage of this coins features.

The notion of pooling Shadow and spending only small amounts of the pooled shadow tokens in ur wallet seems it would obfuscate blockchain analysis.

But I wondering again, are the Shadow tokens visible on the blcochain? If everybody held Shadow tokens and not SDC the richlist would show only newly minted SDC? How much does the SDC minting compromise anon if at all. If so is there a solution?

An obvious solution that exists right now to this "statistical analysis" theory of matching inputs to outputs would be to simply hold a certain amount of Shadow Token in advance and moreover a different amount than that being sent for the anon transaction (that somebody may wish to track). By waiting before sending after conversion you are therefore increasing the time and activity between the conversions which would be fooling enough by most standards.

"Competely anonymous" is not really a well defined term, especially when considering indirect inferences from timing factors and such.

Clearly the more you (and everyone else) use shadow (and using higher mix factors when you do) the less information you are leaking to potential blockchain analysis.

The scenario you describe is clearly better than frequent conversions back and forth, but not as good as everything being done with shadow exclusively. In order for that to happen every merchant, exchange, etc. needs to support it directly, and you also need to be willing to except the higher inherent costs of transactions.