Monero Time Profile picture
Apr 24 25 tweets 8 min read Twitter logo Read on Twitter
#Monero #XMR is AUDITABLE, in this thread we will see that the audibility of Monero is as secure or more secure than Bitcoin (cryptographically speaking). Image
Two types of audit are necessary to verify the offer as a whole, 1) the number of issued coins in circulation (extracted block), 2) The verifiability of the total supply between each transaction (key_image, ringct, ring signature..).
First of all, I'd like to say one thing: Monero is based on a very well-established and well-understood cryptography, battle-tested for almost a decade and every major change is audited by reputable groups and cryptographers. Image
The inflation bug verification method you'll see here has been tested on an XMR fork, which has a vulnerability that allows the inflation bug to be exploited and verified/comparable that it is not produced in the main Monero blockchain.
The code to check the Monero inflation bug is open source, you can check here.
github.com/DangerousFreed…
The auditability of the Monero offer is mainly based on well understood mathematics, there are different ways to audit Monero, but I'll try to explain it based on the work of a contributor (DangerousFreedom)
Contrary to popular belief, the number of coins extracted from each coinbase transaction is public, a coinbase transaction is the first transaction of a new block extracted. Image
you can also automate the verification with your demeon log, you would need to run a full node:

1 - help print_coinbase_tx_sum
2 - print_coinbase_tx_sum ''start_height'' ''block_count''
For example, I queried the daemon from the genesis block to block 5000, there were 87732.937218129312XMR, as you can see, it is easier to use the daemon than to count each coinbase transaction, one by one to verify this. Image
Now, once each new coin from a mined block is sent to a wallet, you lose track of the coins because Monero is fungible, there is no way to distinguish one Monero from another Monero, 1 XMR = 1 XMR. Image
It is from here that things become more complicated to understand and to be audited by the general public, for example Bitcoin is non-fungible, each transaction has a history (amount, recipient etc) so it is easier to be audited by a random person.
Now, how do we know that between each private transaction, there was no coin creation from scratch? Monero has several privacy technologies built into the base of its protocol, and we'll see how an inflation bug in Monero can be detected.
Double spend: Monero uses unique key_image for each spend, keyframes used more than once are rejected by miners as double spend and cannot be added to a block. Image
The goal here is to analyze the blockchain and confirm that each key_image is unique in the set of key_images to verify that a double-spending transaction has not occurred. (At the end of the thread, I will provide you with a tool to check the blockchain) Image
RingCT Inflation : RingCT uses Pedersen's commitment to create a binding, masking and homomorphism function to not bind the transaction amount by creating a "blinding factor" so that no one can bind the transaction amount. Image
FYI, Pedersen's commitment is a zero-knowledge technology, as old as the world (1992), it is the cryptographic equivalent of secret writing in a sealed, tamper-proof, individually numbered (or/and countersigned) envelope. Image
And the range proofs allow to prove to the network that its commitment is valid thanks to bulletproof, a zero-knowledge proof, which mathematically allows to prove that the exchanged amounts are balanced (inputs = outputs + expenses) Image
Monero funded and received two separate audits the first time this part of the code was hit and it also reduced the average size of a Monero transaction by 80%. ostif.org/the-quarkslab-… Image
Audite Ring Signature : The idea behind ring signatures is simple. We want to mask the identity of the sender by proving that someone in the ring signed the message and transferred the funds without being able to specify who exactly. Image
*FYI, in addition to ring signatures, Monero uses stealth addresses using the elliptical curve Diffie-Hellman protocol, your main address never appears anywhere. We will talk about this in the next thread. Image
The objective here is to check mathematically that each signature in the ring is valid. Image
The more time passes, the less likely it is that Monero will have an inflation bug in the future, just like bitcoin, to be honest I think it's very unlikely even if you can never be 100% sure.
Now, if you don't trust math and cryptography, that's your choice, there's a risk with everything, just as no one can guarantee that your plane trip tomorrow will be uneventful.
So, the auditability of the offering is a false virtue touted by surveillance coin aficionados. In Monero, we audit code and cryptography. There is really much hard work done, barely visible to the broad public. But it has its reasons we still stand solid. moneroinflation.com
In my next thread, I will try to explain to you why and how the number of coins in circulation of #Monero #XMR is rare, and do not hesitate to tell me if my thread has reassured you about the auditability of Monero.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Monero Time

Monero Time Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @MoneroTime

Apr 22
XMR is SWRC

Whoever finds me at definition (SWRC?), I pay him an XMR coffee.

#Monero #XMR
Monero is a decentralized offshore bank, but that's not all.
First pipe
Read 4 tweets
Apr 6
Thread - The history of #Bitcoin and how it was captured and nipped in the bud ? In this thread, you'll find out how bitcoin's capabilities were restricted to limit its technological power, so hang on! Image
In total, Bitcoin has had three lead developers. Wow, tell me you knew that Bitcoin's lead maintainers are no longer anonymous since satoshi left the project ? Image
But what happened ? Why did Satoshi jump ship and hand over the keys to the project to Gavin Andresen and disappear forever, prematurely ?
Read 14 tweets
Apr 4
The article is full of errors. @coinbureau should contact a Monero dev to correct his article. @jtgrassie @hyc_symas
The only thing bitcoin does better is hype ImageImage
And bitcoin transaction fees are much higher than 39cent on average
Read 4 tweets
Jan 31
1/65 Thread comparing #Monero vs #Bitcoin-#Zcash-#Litecoin 🧵
2/65 It is 4 projects with one thing in common: they are intended to be used as an alternative to fiduciary money. They are also the highest ranked in terms of market capitalization for what they are intended for (digital money)
3/65 To begin I would like to clarify that the Monero codebase has nothing to do with the Bitcoin codebase, the anonymity provided by CryptoNote by design is not possible with the Bitcoin codebase. #ZEC #LTC we were launched with the #BTC code base
Read 66 tweets
Jan 23
🧵🔥A major update in the Monero protocol is coming and is called Seraphis & Jamtis and will require a fork and this will roll out in 2024.
1/32 Monero plans to adopt a new privacy-focused 4th generation transaction protocol for p2p electronic payment systems called Seraphis (designed specifically for Monero).
2/32 However, due to a different keyframe construction, Seraphis is not compatible with CryptoNote addresses. Thus the current CryptoNote addresses will be replaced at the same time by a new addressing scheme developed specifically for Seraphis which will be called Jamtis.
Read 34 tweets
Jan 7
1/8 🧵 Apparently of people are studying the possibility of creating a stablecoin collateralized by fiat and which respects the privacy of users (anonymous stable coin)
2/8 For this, they want to use ZK-proofs (Zero-Knowledge proofs): Zcash already uses ZKPs
3/8 The authors imagine several types of limits similar to those existing on cash in order to reassure regulators
Read 8 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(