Replying to Avatar Hanshan

i get it 😀

its just people are *already* trusting cryptography they dont understand on Bitcoin.

the only difference is they've already decided #Bitcoin is trustworthy.

then they hear about #monero and they get really uptight about "why should I trust THESE cryptograhic primitives"

its like nigga did you go into elliptic curves when you learned about Bitcoin?

not you or anyone in specific

just generally

the only difference is just they arbitrarily decided Bitcoin was trustworthy.

mostly because there were enough OTHER PEOPLE telling them it is trustworthy.

which is a reasonable metric, not saying i dont use it too.

but specifically in the supply verification discussion its a weird intellectual idiosyncrasy that is under recognized.

why would someone decide specific cryptographic primitives they dont understand are ok to trust,

but OTHER cryptographic primitives they don't understand are NOT ok to trust?

¯⁠\⁠_⁠(⁠ツ⁠)⁠_⁠/⁠¯
ec
kpr797 10mo ago

I think the important distinction to make about the cryptography differences between Monero vs Bitcoin is that Bitcoin uses pretty old, standard, well established cryptography, whereas zero knowledge proofs are a relatively new field that is only recently seeing real world use cases.

Monero is on the cutting edge of cryptography. People are weary of new things until some time has passed, to be confident that most of the kinks have been worked out.

Reply to this note

Please Login to reply.

Discussion

Avatar
Saberhagen The Nameless 10mo ago

Correct me if I'm wrong but Pedersen Commitments are over 30 years old. Basically the same age as the cryptography used in Bitcoin. It doesn't really seem that cutting edge. Maybe you could say that about the ZKPs used in Zcash or other projects.

ec
kpr797 10mo ago

I'm not sure what Pedersen Commitments are (and my quick search results didn't seem relevant to this conversation). But although the cryptography might be somewhat old already, the cryptography is only recently (in in ZCash and Monero) starting to get used outside of academia.

Avatar
Saberhagen The Nameless 10mo ago

Sorry, I meant to say range proofs, and although they are pretty old, I see now that Moneros specific implementation is actually relatively new

Avatar
YODL 10mo ago

Ah, was wondering as I was reading along what the chronology might be. That seems about right from what I remember

Avatar
Hanshan 10mo ago

I think the specific implementation of Pedersen commitments is live since RingCt was introduced in January 2017

Avatar
YODL 10mo ago

Will take your word for it as that’s deep in the weeds for me. I realize now I don’t know the chronology of a lot of the pieces. CTs were invented in 2014, or was that just the optimization by Blockstream and they date back further? I could look this stuff up, but if you happen to know please share. Ring sigs, range proofs, (anything I’m missing?) created quite a bit earlier?

Avatar
Hanshan 10mo ago

pretty sure the idea of RingCT predates Bitcoin

i think it was Nick Szabo...?

ring signatures too, i think the idea is from before bitcoin.

range proofs,

which are the foundational maths,

are ancient.

mostly developed in the cryptography boom of the 80s and 90s I think.

Avatar
YODL 10mo ago

Sounds right. I might have to dig a little just to satisfy curiosity on all these things

Avatar
Hanshan 10mo ago

nice basic explanation here

https://unblock.net/ringct-vs-zk-snark/

Avatar
YODL 10mo ago

Looks worth reading. 📝

Avatar
Hanshan 10mo ago

worth noting the difference between a theoretical issue and and implementation one.

this is an *implementation concern.

ie, the maths aren't suspect, the concern is around how its applied.

as with Bitcoin, if you cant verify the implementation yourself,

what techniques can a person use to establish trust?