nostr:nprofile1qqsxwkuyle67y94tj378gw8w2xw2wa6nwmwlqhddlwnz0z7sztsaw2qn2rdgc
You say that you tend to agree with the last paragraph of my reply. Should I then also infer that you don't agree with the second one where I compared favorably our different choices on bitcoin versus monero in terms of privacy?
I'm really asking, not trolling. I'm very much interested in privacy and I very much respect your opinions about privacy software.
2nd paragraph: I think it's just debatable. The basic mechanism you point to is clearly something that has to be taken into account (anon set size).
The ecash one is particularly interesting because, many years ago I used to be fond of pointing out: if you want information-theoretically perfect privacy, you need to use Chaum's ecash type scheme (digicash), except, it absolutely didn't work because it was centralized and so it just stopped existing. Clearly systems like zcash and monero made different, more nuanced tradeoffs. I continue to be doubtful about Chaumian mints. The new extra ingredient is Lightning, but debating the merits of that hybrid is more about LN than Chaumian cash imo.
Imo the value of Chaumian mints is in more in scenarios where anonymity is valuable for an ephemeral client server relationship. Examples: Tor, Lightning routing nodes, coinjoin servers or generally buying digital services from a persistent online entity.
> I continue to be doubtful about Chaumian mints.
Are those doubts related to the privacy that can be obtained through cashu or rather related to the custodial risks?
In passing, I'd like to thank you for all your work on Joinmarket. It's the coinjoin implementation that I always recommend.
Have you heard of any project working to use something akin to coinjoin but on lightning, cashu, liquid, etc? It seems like it would be a match made in heaven.
Thanks! I am mostly talking about custodialness, and central control. And it is also true that claims of really strong privacy are really hard in any system; in this case, since there is a central coordination point, that can be a reason those claims fail.
I think coinjoin is a natural fit with Lightning (dual funding, but not only that, e.g. batched opens).
