Michael J. Casey is the chairman of CoinDeskâs advisory board and a senior advisor for blockchain research at MITâs Digital Currency Initiative.
The following article originally appeared in CoinDesk Weekly, a custom-curated newsletter delivered every Sunday exclusively to our subscribers.
Among the barrage of commentary accompanying the Libra circus on Capitol Hill last week was a single short tweet from lawyer Marco Santori that summed up the core problem confronting Facebookâs cryptocurrency project â and, for that matter, any corporate-led effort of its kind.
To understand why Facebook and its 27 Libra partners are in this dilemma, letâs go back to bitcoinâs roots â to the core problem Satoshi Nakamoto sought to solve. Itâs right there in the sub-headline of the famous white paper: âelectronic cash.â
Satoshi was following a Cypherpunk dream. He/she or they wanted to bring privacy to digital payments, to translate the offline experience of cash transactions into the online realm. The idea: that a user neednât prove their identity to execute a transaction with anyone else on the Internet â just as thereâs no need for me to show a document proving that Iâm Michael Casey every time I hand over some dollar notes to someone.
This matters not because everyone using cash or bitcoin is a money launderer evading law enforcement, but because identification poses a real barrier to commerce. If society has an interest in identifying people â as financial law enforcement agents would argue â then we must recognize that this comes with an enormous trade-off in terms of foregone economic activity.
Think of the 2 billion âunbankedâ adults from the worldâs developing countries, the people that Libra, ostensibly, wants to serve. A lack of education, poor credit records, and untrustworthy state-issued ID papers means these people canât qualify for accounts at local banks (primarily because those local banks are themselves compelled to comply with strict international âknow your customerâ procedures lest they are cut off by their foreign banking counterparts.) For a very large number of the worldâs adults, identity is a very real barrier to commerce.
But you can also think of the billionaires that run Wall Streetâs hedge funds or the giant banks and brokerages that trade on their behalf. None of those guys want their identities revealed when they place a buy or sell order for a stock, bond or commodity. The market will just trade against them.
Identity also limits fungibility. As Iâve argued before , money is most useful if its past is unknown. Any single dollar, or single bitcoin, must be worth the same as any other single dollar or bitcoin. But if I receive a dollar or bitcoin that might subsequently be subject to a legal or enforcement claim due to its involvement in a previous transaction, the uncertainty attached to it will, by definition, reduce its utility. This leads to a depletion of monetary fungibility. As to why thatâs a problem, just ask anyone with an account at a brokerage or other entity whose assets have been frozen for some criminal or civil action over which they themselves had no involvement.
So, privacy matters. If we are to bring digital, borderless commerce to the widest possible user base and expand the global economy, we must strive for privacy.
Sadly, bitcoin failed to achieve sufficient privacy, at least in its initial form. Why? Because its public ledger is, well, public.
When combined with the âknow your customerâ procedures of legally compliant crypto exchanges, its traceability means a user can relatively easily be connected to past transactions once they have been identified at any one of those on- and off-ramps.
This is the problem that led to the creation of cryptocurrencies with more robust privacy protections such as Zcash and Monero, along with the invention of bitcoin mixers and potential sidechain solutions for obscuring transaction trails such as Mimblewimble.
Indeed, itâs quite noteworthy that at the same time that regulators are expanding their purview over cryptocurrencies â see the Financial Action Task Forceâs new disclosure rules â and demanding increasingly more user-identifying information, cryptocurrency developers are driving in the opposite direction: toward more privacy, more self-custody, more trustless exchange solutions, more user autonomy. Theyâre striving for the goal of electronic cash.
Hereâs the catch: if youâre not building on top of a fully decentralized, permissionless system though, itâs impossible to assure users of privacy. If the nodes maintaining the ledger are identified as belonging to a particular list of authorized validators â e.g. the Libra Associationâs 28 members â authorities can, and will, demand the identity of users when they so desire or theyâll have transactions censored or reversed. Theyâll do so to meet anti-money laundering or counter-terrorism objectives, or, more cynically, theyâll make such demands to simply assert control over the population (e.g. digital surveillance in China.)
Facebookâs David Marcus, as the identifiable representative of a U.S. incorporated company, had no option, of course, but to swear that Facebookâs Libra application, Calibra, would comply with KYC requirements and cooperate with anti-money laundering initiatives. It was a legal no-brainer. It didnât matter much, though, because law enforcement agencies â with just a little bit of cross-border cooperation â will be able to hold him to his word by way of the Libra Association members themselves.
Therein lies the âdonât worry, weâre centralizedâ side of the bifurcated argument Santori alluded to. Itâs the assurance that says âyou know where to find me.â
The problem is that the American people â and, by extension, their lawmakers â are kind of schizophrenic on these matters. Thatâs because, quite rightly, privacy is also becoming an increasing concern with regards to tech companiesâ data collection, and especially with Facebook. It was quite striking â satisfying, in fact â to see how many questions from lawmakers addressed these concerns, where they sought assurances that Calibra would not exploit peopleâs personal data.
In essence, Marcusâs response was:Â âdonât worry, weâre decentralized.â The idea was that the structure simply wonât permit any member to invade a userâs privacy.
So, itâs a contradiction, but one that, by definition, doesnât arise within bitcoin or other decentralized cryptocurrencies, which can much more accurately say, âyou donât know where to find me.â (In fact, there is no âmeâ in such cases.)
In many respects, this contradiction is not a function of Facebookâs involvement in this project or Libraâs structure per se but of competing public interests. We canât have our cake and eat it too. We canât simultaneously insist on absolute privacy and the power to intervene in transactions to catch bad guys laundering money.
I believe the answer lies in a combination of technologies, system designs and a more creative approach to regulation that, unfortunately, doesnât exist yet.
Hope lies in tools such as zero-knowledge proofs and in emerging âself-sovereignâ identity concepts, as well as in a more open-minded regulatory model for curtailing crime â one that doesnât depend on revealing peopleâs personal identifying information.
But these are a ways off; they will require user adoption and;Â to a still large extent, belief in them by policymakers.
For now, then, David Marcus and his cohorts have no choice but to keep speaking out of both sides of their mouths.
David Marcus image via House Financial Services Committee
