What if BitShares could have perfect privacy?

[karnal]

Bump... and excited

https://github.com/cryptonomex/graphene/commit/be65c277c96b96cfa6e31773cce9805d3d51be87

[clayop]

Bump... and excited

https://github.com/cryptonomex/graphene/commit/be65c277c96b96cfa6e31773cce9805d3d51be87

[mirrax]

I posed this same question to Feathercoin/Pete in 2013. Back me up @mirrax

As you said Sir.

[Yao]

Nice !
 

[ElMato]

I just wanted to point out that perfect privacy is not this. Perfect privacy would be a transaction which never hit the blockchain, but this is an unsolved problem (due to double spend), as far as I know.

Razvan Dragomirescu from Othercoin has a nice solution to this problem.
http://www.othercoin.com/OtherCoin.pdf

Basically you exchange privates key (that you dont know) in a secure way using Smartarcds and remote attestation.

[Permie]

I've been reading around on privacy and I found some useful info on /r/cryptoanarchy and
I didn't realise HOW hard privacy really is.
IMO truly private/anon bitshares accounts cannot be associated with a forum user or other communication tool

http://www.reddit.com/r/CryptoAnarchy/comments/3biac4/requirements_for_a_communication_platform_for/

From user /u/DataPhreak:

    No logging of private information.
    Be able to go back in 'chat-history'.

These two things are mutually exclusive. For example, I know you frequent /r/communism /r/socialism /r/occupywallstreet and more. If i wanted to read through all of your posts, I could determine other details about you. Did you know it only takes 7 timestamped references to the weather to geolocate you to a specific city? One of the members of Lulzsec was busted based on the fact that he mentioned he was a freegan in IRC.

"Ops, espionage*. The Danish term is spionage.." Is Danish.

" My speedometer won't go +15mph, but it moves. How can that be? " has a dual sport. Honda XL600R

You see now why this is a bad idea? I'm just going to stop there.

Also, they would look at the date that the old one stopped posting and the new one started posting. Also, even though you may not keep logs, and even if the traffic is encrypted, if they can MITM like the government, they can watch for your upstream traffic and use it's time stamp to determine what you've posted. So, let's say the Danish government decides they don't like what this new wave extremist honda xl600r rider is posting. All they have to do is run the internet backbone through wireshark, filter out all IPs of people who don't have dual sports, watch for the one who connects to the website, and poof, he disappears.

[arhag]

I am familiar with his digital cash and it is the foundation of our voting architecture.

Has the cryptography behind the voting architecture changed? If I remember correctly I think you were at some point planning on using linkable ring signatures to protect voter privacy, were you not? I assume the change is due to the fact that using ring signatures would require very large signatures if we wanted to provide sufficient privacy (hiding in a large enough group) for voters.

If you are using blinded signatures, what steps are being taken to prevent the signer from creating fake votes to take over the votes of people who sign up for an election but don't bother to vote? Are the blinded signatures using multisig or better yet threshold sigs (is a blinded threshold sig doable?) to reduce the chance of collusion to create fake votes? Are there economic incentives designed in the voting system to encourage everyone who signed up for the election to cast a vote (even if the vote is to say they refuse to vote)? For example, the voter could put up some fixed amount of money that goes into a common pool when registering for the election (and getting their blinded token signed), and then after the period to sign up for the election ended an new period would open up to allow users to anonymously associate their signed unblinded tokens to a new pseudonymous public key (with which they sign the ballots they will later cast) and provide a new blinded token to be signed with another set of keys by the token signers. After this second period ended, the election could finally open up to accept ballots and the voters would also be able to reveal the second signed blinded token to withdraw the fixed fund from the common pool. The economic motivation to get their money back would mean that nearly all of the people who signed up would broadcast their unblinded tokens. If the number of valid signed unblinded tokens ever exceeded the number of blinded tokens that were signed, everyone would know the signers were manipulating the results and the results of the election could not be trusted. In fact, the signers could put up some amount of funds into an escrow which they would lose if this manipulation were to ever happen. That way even if they didn't care about their reputation, they wouldn't even have an economic motivation to create fake signed tokens in order to steal the voters' temporary deposits.

[jakub]

The only case I am aware of where perfect privacy & anonymity existed was the implementation of digital cash in Open Transactions by Chris Odom.

Since it looks like in 2.0 we are drifting towards a federation-of-servers architecture (full nodes being maintained on server side and most users limited to light wallets) I am beginning to think that the whole beauty & power of Open Transactions can be gradually implemented in BTS, including digital cash. This would be absolutely amazing if we could pull this trick.

I wonder if BM is familiar with the Open Transactions concept and what he thinks of going in this direction in the future.

I posed this same question to Feathercoin/Pete in 2013. Back me up @mirrax

I am familiar with his digital cash and it is the foundation of our voting architecture.

Happy to hear it.
Do you envision having something similar to digital cash issued by BTS blockchain in the long run?
I mean: is it technically feasible for BTS full nodes to take on the role of OT federated servers?

[bytemaster]

The only case I am aware of where perfect privacy & anonymity existed was the implementation of digital cash in Open Transactions by Chris Odom.

Since it looks like in 2.0 we are drifting towards a federation-of-servers architecture (full nodes being maintained on server side and most users limited to light wallets) I am beginning to think that the whole beauty & power of Open Transactions can be gradually implemented in BTS, including digital cash. This would be absolutely amazing if we could pull this trick.

I wonder if BM is familiar with the Open Transactions concept and what he thinks of going in this direction in the future.

I posed this same question to Feathercoin/Pete in 2013. Back me up @mirrax

I am familiar with his digital cash and it is the foundation of our voting architecture.   

[Tuck Fheman]

The only case I am aware of where perfect privacy & anonymity existed was the implementation of digital cash in Open Transactions by Chris Odom.

Since it looks like in 2.0 we are drifting towards a federation-of-servers architecture (full nodes being maintained on server side and most users limited to light wallets) I am beginning to think that the whole beauty & power of Open Transactions can be gradually implemented in BTS, including digital cash. This would be absolutely amazing if we could pull this trick.

I wonder if BM is familiar with the Open Transactions concept and what he thinks of going in this direction in the future.

I posed this same question to Feathercoin/Pete in 2013. Back me up @Mirrax

[jakub]

The only case I am aware of where perfect privacy & anonymity existed was the implementation of digital cash in Open Transactions by Chris Odom.

Since it looks like in 2.0 we are drifting towards a federation-of-servers architecture (full nodes being maintained on server side and most users limited to light wallets) I am beginning to think that the whole beauty & power of Open Transactions can be gradually implemented in BTS, including digital cash. This would be absolutely amazing if we could pull this trick.

I wonder if BM is familiar with the Open Transactions concept and what he thinks of going in this direction in the future.

[karnal]

Bottom line: We need privacy + anonymity in BTS 2.0!

[Akado]

I just wanted to point out that perfect privacy is not this. Perfect privacy would be a transaction which never hit the blockchain, but this is an unsolved problem (due to double spend), as far as I know.

Indeed, it kinda of contradicts itself. For perfect anonymity you can't have info on transactions, however, if you don't, how can you avoid double spend? Unless you can do this with the less amount of info possible on the transaction, but enough to avoid it (the double spend)

[monsterer]

I just wanted to point out that perfect privacy is not this. Perfect privacy would be a transaction which never hit the blockchain, but this is an unsolved problem (due to double spend), as far as I know.

[karnal]

bump