Monero's Triptych Research Could Vastly Improve Its Anonymity

Published at: Jan. 8, 2020

The Monero Research Lab (MRL) has released Triptych in a Jan. 6 paper proposing trustless logarithmic-size ring signatures. As Monero’s core anonymity mechanism, research aimed at decreasing their size could improve the coin’s privacy significantly.

Monero (XMR) is a privacy coin that uses several distinct mechanisms to obfuscate parts of a transaction. The primary line of defense against transaction tracing comes from ring signatures. These work by aggregating a sender’s true coins with a set of decoys, picked semi-randomly from other points in the blockchain. There are currently 10 decoys added by default to any transaction, an amount that has been fixed for all users since late 2018.

Triptych’s primary innovation is making the byte size of ring signatures scale logarithmically with the number of decoys, instead of linearly. This would allow a dramatic  increase in ring size without major performance issues. Despite being a major innovation, verification time for ring signatures remains linear. Increasing size too much could overwhelm nodes that have to verify transactions. 

In a Reddit thread, MRL member Sarang Noether theorized that verification time would amount to about 45 ms for a standard Monero transaction with 511 decoys. According to preliminary tests, this is comparable to verification times currently implemented in Monero — while increasing the number of decoys by an order of magnitude. 

Nevertheless, Triptych is a preprint paper that has yet to undergo peer review. When asked by Cointelegraph about a possible time table of its live implementation, Noether replied:

“I can't reasonably speculate on the likelihood of projects implemented Triptych, since it's still early work that has not undergone any formal review.” 

Noether has also teased an even better version of Triptych that “would allow for signing with multiple keys in the same proof, while also directly including a balance test, leading to even smaller overall transactions.” However, this new approach requires more research due to roadblocks posed by unspecified technical questions.

Ongoing Work to Increase Anonymity

Monero’s small ring sizes have often been a target of criticism by the community, starting with a 2017 paper claiming that some transactions can be fully de-anonymized. The practice of churning — sending transactions to oneself — is recommended within the Monero community to increase privacy. 

Research efforts in this direction have produced solutions such as Lelantus, Omniring and RingCT 3.0. Though Noether highlighted that all of these options feature different tradeoffs and security models, he emphasized the importance of this work:

“Being able to increase the size of the input anonymity set in a big way would be a great step in the right direction.”

Update Jan 8. 18:00 UTC: This article has been revised with correct decoy numbers and verification times.

Tags
Altcoin
Privacy
Monero
Cryptography
Related Posts
Newly found Monero bug may impact transaction privacy, developers warn
Developers of privacy-oriented cryptocurrency Monero (XMR) have identified a bug that could potentially impact users’ transaction privacy. On Monday, the official Monero Twitter account warned users of a “rather significant bug” that has been spotted in Monero’s decoy selection algorithm, a system designed to hide real output transactions among 10 decoys in a ring. First identified by software developer Justin Berman, the bug causes a sufficient probability that users’ output transactions can be identified as the true spend among decoys if users spend funds immediately following lock time in the first two blocks, or 20 minutes after receiving funds. The …
Technology / July 27, 2021
The IRS offers a $625,000 bounty to anyone who can break Monero and Lightning
The United States Internal Revenue Service has offered a bounty of up to $625,000 to anyone who can break purportedly untraceable privacy coins such as Monero (XMR) as well as trace transactions on Bitcoin’s (BTC) Lightning Network. The official proposal, published last week, says the IRS will accept submissions in the form of working prototypes until Sept. 16. If accepted, applicants will receive an initial payment of $500,000. This grant will allow applicants to develop their prototype into a working concept over the next eight months. Once the pilot test is completed and approved by the government, a further $125,000 …
Technology / Sept. 11, 2020
BitBay Crypto Exchange to Delist Monero Due to Money Laundering Concerns
Cryptocurrency exchange BitBay will delist privacy-centric cryptocurrency Monero (XMR) due to money laundering concerns. The exchange announced the decision on Nov. 25, noting that the delisting will take place on Feb. 19, 2020. The exchange explained its decision “Monero (XMR) can selectively utilize anonymity features among projects. This feature of XMR is a subject to end of transaction support. The decision was made to block the possibility of money laundering and inflow from external networks.” On Nov. 29, the exchange will already stop accepting XMR deposits. Due to the upcoming Monero blockchain fork, XMR withdrawals will not be possible from …
Regulation / Nov. 26, 2019
Monero, Kyber Network and Tornado Cash break out as traders pile into privacy protocols
Stocks and cryptocurrencies saw a notable bounce on March 9 even though war, rising inflation and historically high oil prices have investors uncertain about the future. Bitcoin (BTC) price surged to $42,600 in the early trading hours and several altcoins followed suit with double-digit gains. Data from Cointelegraph Markets Pro and TradingView shows that the biggest gainers over the past 24-hours were Monero (XMR), Kyber Network (KNC) and Tornado Cash (TORN), with Zcash (ZEC) earning an honorable mention. Monero Monero is one of the longest-running privacy-focused protocols in the cryptocurrency market and the project is popular among investors looking to …
Decentralization / March 9, 2022
Haven Protocol (XHV) shows strong signs of bottoming out after crashing 90%
Haven Protocol (XHV) showed signs of returning to its bullish form as its price doubled in just five of trading. What's pumping Haven Protocol? XHV's price surged by up to 107% week-to-date to climb above $3.60 this Friday, its highest level in more than three months. Interestingly, the move upside followed a period of aggressive selloffs that saw XHV's value dropping from nearly $20 in November 2021 to as low as $1.60 in early February 2022 — an approximately 90% decline. Interestingly, the move upside followed a period of aggressive selloffs that saw XHV's value dropping from nearly $20 in …
Markets / March 11, 2022