Skip to content

jancarlsson/kapital

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits

AddressKey.hpp

AddressKey.hpp

 
 

Coin.hpp

Coin.hpp

 
 

EncryptedCoin.hpp

EncryptedCoin.hpp

 
 

HashFunctions.hpp

HashFunctions.hpp

 
 

LICENSE

LICENSE

 
 

Makefile

Makefile

 
 

PourBody.hpp

PourBody.hpp

 
 

PourInput.hpp

PourInput.hpp

 
 

PourTX.hpp

PourTX.hpp

 
 

PourZKP.hpp

PourZKP.hpp

 
 

ProvePour.hpp

ProvePour.hpp

 
 

README.md

README.md

 
 

SignatureKey.hpp

SignatureKey.hpp

 
 

Variable.hpp

Variable.hpp

 
 

VerifyPour.hpp

VerifyPour.hpp

 
 

smoketest.cpp

smoketest.cpp

 
 

Repository files navigation

kapital: zero knowledge exchange of value

Introduction

This project started with the Zerocash decentralized anonymous payments scheme, i.e. a zero knowledge pour transaction which spends two old coins and creates two new coins.

At present, this project contains:

  • a C++ template library
  • a generalized implementation of the Zerocash pour transaction
  • pour one or two old coins to any number of new coins
  • refundable contingent payments locked by SHA-256

At present, this project is not a crypto-currency and lacks:

  • a minting solution for economic scarcity
  • a ledger solution for market history
  • a solution for decentralized ("trustless") key generation

Some observations:

  1. Zero knowledge is expensive. The practical challenges are not to be underestimated. Privacy is a significant cost for all participants.

  2. Zero knowledge is a sunk cost. Complexity overheads of space, time, and trust are so large that smart contracts and payments have comparable cost.

My speculation:

The economics of financial privacy may imply a qualitative difference from conventional crypto-currencies based on public ledgers which are, in some sense, perfect information. Zero knowledge is the absence of information.

Most capital is not money. Contracts are the dominant value form of capital. As in the real world, that may be true for zero knowledge financial systems.

[TOC]

Comparison with Zerocash

Good:

  • zero knowledge coin value arithmetic does not overflow
  • coin commitment may be smart contract
  • encapsulated pour transaction

Bad:

  • bigger and slower than official Zerocash implementation
  • elliptic curve point compression not implemented
  • uses malleable standard ECDSA signature

Build instructions

The following libraries are required.

To build the test application:

$ make smoketest PREFIX=/usr/local

When building, the $(PREFIX)/include and $(PREFIX)/lib directories are added to the compiler header file and library paths.

Running is simple:

$ ./smoketest 
Usage: ./smoketest -p <pairing> -d <number>
Options:
  -p <pairing>  Elliptic curve pairing: BN128, Edwards
  -d <number>   Merkle tree authentication path length: 1, 2,.., 64

To install:

$ make install PREFIX=/usr/local

This copies the library files to $(PREFIX)/include/kapital .

References

About

zero knowledge exchange of value

Resources

Readme

License

MIT license
Activity

Stars

4 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages