What if ethereum looked more like monero?
Fusing the privacy features of the latter into ethereum would make many of the platformâs stakeholders, including developers who have been working on privacy-enhancing features for some time, excited. But privacy techniques are rarely utilized because of the serious trade-offs presented â such as larger storage requirements and more expensive transactions.
However, during the Privacy Enhancing Technologies Symposium (PETS) in Barcelona this week, two researchers presented their findings on a technique called Mobius that uses mixing solutions to obscure the payment information of ether transactions.
Detailed by the authors of the white paper, Rebekah Mercer and Sarah Meiklejohn, during the conference, Mobius isnât bogged down by the weight of typical privacy tech â indeed, using cryptographic primitives that were added to ethereum in October, transactions that use Mobius cost only a little more than a standard ethereum transaction (according to a simulation, around $0.06) and takes mere milliseconds to execute.
And by implementing monero-style tooling into an ethereum smart contract, Mobius promises to not only conceal sender and receiver addresses but do so in a way that is cryptographically trustless as well.
While itâs not yet available for ethereum users, an open source implementation has been published by UK-based distributed ledger startup Clearmatics, and according to Mercer, deploying it to the public ethereum chain wouldnât be too labor-intensive.
âClearmatics have all the code so you could literally just push it to the ethereum blockchain. They actually have tutorials as well, so itâs pretty well developed,â she told CoinDesk.
Building the technology into ethereum would have the advantage of functioning not just for ether transactions, also allow projects that built tokens with the ERC-20 standard, or even crypto-collectibles, to take advantage of the tech as well.
âEthereum already has a huge network of people who hold ETH, and the thing is itâs ERC-20 compatible, so if you have tokens you can use them in this way,â she said, adding:
âThe whole idea is reducing friction from what people are already doing into what they ideally would like [to do], which is exactly what theyâre doing, but with privacy.â
According to Mercer, the innovation of Mobius is how it navigates trade-offs between decentralization and efficiency.
While centralized solutions often have the advantage of being more efficient, they come with limitations, such as single points of failure as it relates to hacks and thefts or services going offline. Decentralized mixing services â such as CoinJoin, TumbleBit and XIM â deploy trustless cryptographic solutions, but often require either large amounts of coordination off-chain or many steps taken on the blockchain itself, which can be slow and expensive to orchestrate.
â[Thereâs a] contrast between the more centralized solutions sitting between participants that risk availability and the more decentralized solutions which compromise in communication to make up for these properties,â Mercer summarized.
As such, the goal of Mobius was to question whether such a trade-off is always necessary.
She told the audience:
âSo what we thought: is this a inherent thing, if you do a decentralized procedure do you need to pay for it in terms of communication? And what we found was that using ethereum you donât actually have to make this compromise at all.â
To work around those trade-offs, Mercer and Meiklejohn built a cryptographic device named a ring signature into an ethereum smart contract, that obscures payment information by mixing it up with the other participants in the Mobius contract. Stealth keys, a type of obfuscated but verifiable address, are also deployed to allow Mobius contracts to securely communicate.
Originally built for Clearmatics to disguise payments in blockchain banking solutions, Mercer said that on top of its affordability, itâs easy to send recurring payments between participants who have already sent money across the device.
But for security purposes, the Mobius smart contracts are one-time use and will need to be regenerated when it comes to sending a new payment, Mercer said.
Still, itâs a notably cheap operation, she continued, telling the audience:
âMobius achieves great things in terms of availability and theft prevention but without compromising on communication, which hopefully will encourage people to mix more often.â
Still, while the tech is technically viable, Mercer said she is unaware of any attempts to implement it on public ethereum itself.
According to Mercer, thatâs a surprising metric considering that on bitcoin, the demand for payment mixers is quite high.
âI actually have no idea why [itâs not implemented], because like if you look at CoinJoin and CoinMarketCap the order book always has people broadcasting their intention to mix bitcoin anonymously,â she told CoinDesk.
As detailed by CoinDesk, several ethereum businesses are seeking solutions to conceal sensitive information on decentralized applications, as well as providing tooling to anonymize the data in smart contracts. And while this contrasts with a low interest in Mobius, according to Mercer, itâs perhaps indicative of ethereumâs broader-than-payments scope.
âI think itâs just like how ethereum is used these days. Itâs not what people expect, people donât expect to use ethereum for privacy-sensitive transactions. Itâs just not its selling point, itâs for decentralized apps, companies, traders and CryptoKitties,â she told CoinDesk.
And thereâs other hurdles as well- while pushing Mobius onto public ethereum wouldnât be too complex, thereâs plenty of work to be done to make the technology more accessible to users, as currently, participating in a Mobius contract would be a prohibitively complex task.
âFor mass adoption I guess youâd need some sort of user interface thatâd literally just pick an anonymity set, and the back-end would just check if you were doing anything weird, and then you could just click through and make the transaction,â she told CoinDesk.
According to Mercer, thereâs also work to be done in educating users on the benefits of mixing technologies, as well as continued research into the possible limitations of such techniques as well.
âI think the thing is, people really need to better understand what anonymity guarantees mixing is going to give them, and this is a problem on the research end. We need to make better definitions and have a better understanding, and better inform people,â Mercer said, adding:
âItâs not like people are stupid users who donât know anything.â
Privacy image via CoinDesk
