Privacy Pools: Towards Practical Privacy & Compliance with Smart Contracts

By Arhat | Decrypting Crypto | 7 Sep 2023

Yesterday, Ameen Soleimani shared a new privacy paper exploring the concept of Privacy Pools, a novel smart contract-based privacy-enhancing protocol.

bf0d29309001c154751cbab07f89c71e2179db1b626bdbc056e4014c89fa21cc.png

Imagine a scenario where you prove that you've paid your taxes w/o revealing your exact income. Instead, you present a range ($130k - $150k).

Just one of the use cases of Privacy Pools.

At its core, Privacy Pools try to solve a big dilemma: How do you keep your transactions private, but still show the world you're following the rules?

The key difference is allowing users to specify a set of deposits they claim their withdrawal could be associated with.

Read the entire deep dive here: https://bit.ly/45I3ZqB

This is how I believe privacy pools work.
67b2cdf6830d6e818208bffae227feaa831f441604f7f159f1ad1d24e6757a83.png

 

zkSNARKs play a crucial role in enabling privacy pools:
7c235f08cdc68c6c713d96c9221a8308fca24567e25922436746a036aca35d8a.png


In Tornado Cash, when making a withdrawal, users submit a zk-proof that shows:

  • They are spending a valid coin that exists in the system
  • The coin has not already been spent
  • This proves the withdrawal is linked to some previous deposit without revealing the specific deposit.

The core idea in Privacy Pools is to make this more selective and flexible. Instead of proving linkage to the set of all possible previous deposits:

  • Users specify a subset of deposits they want to claim the withdrawal is associated with.
  • They then prove membership in this more restrictive set, not the full set of deposits.

For example:

  • The association set could be "all deposits from users located in India"
  • Or "all deposits from trusted exchanges"
  • Or "all deposits except those flagged as risky"

What's the difference between Tornado Cash & Privacy Pools?

  • Tornado Cash uses a universal anonymity set-- all deposits and withdrawals are mixed together in one pool.
  • Privacy Pools uses a customizable anonymity set-- users can choose which deposits and withdrawals they want to mix with based on their preferences and needs.
    a1e8ab8bb9176346f61ab6932486ab537339955300e890ff1173517257d8ddd5.png

Read the detailed deep dive on Privacy Pools here: https://bit.ly/45I3ZqB

So, What exactly are Association Sets?

  • These are a set of deposits that a user claims their withdrawal could be associated with.
  • The user proves their withdrawal is associated with some deposit in the set without revealing which one.


There are two main strategies for constructing Associated Sets
5833f9440fa59c2ffec2b1c489e7c7fdef4dfb9552ae3348f7d0dd4fb3024b60.png

This aspect of Privacy Pools lets users prove their membership in an associated set without revealing their specific deposit information using zk-proofs


Now, Privacy Pool protocols are very flexible and can be customized to suit a large variety of use cases by creating specific association sets, such as:
d96fb3c1ec93446ea95c0dc455c8610fe6a0637dc0cef51d120173848654a6c0.png


But, in practice, users will not be manually picking and choosing deposits to include in their association set.

It would be infeasible for users to examine all deposits manually and selectively pick which ones to include in their association set.


Instead, users will subscribe to ASPs that generate sets programmatically based on specific rules and criteria.

The ASP becomes an intermediary that abstracts away the set building complexity.
297e469d8e41a62b5a3e68c22a8c5486a9e979b05b0c913b60a12af87ba6d1d5.png


Read the detailed deep dive on Privacy Pools here: https://bit.ly/45I3ZqB

Thoughts

So, think of Privacy Pools as the perfect blend of keeping things private while still playing by the rules on public blockchains.

(for noobs) It's like they've taken some really smart crypto tech and combined it with practical design to give users an awesome experience. You get to keep your business to yourself and still show that you're on the right side of the law.

And as more people jump on the blockchain bandwagon, Privacy Pools is set to play a big role in making sure everything's safe, private, and above board for everyone involved. Cool, right?

Share your thoughts on this below.

 

Thank you for reading, and follow me here and on Twitter for more regular post updates. 

You can connect with me directly on friend.tech at 0xArhat.

Please join my telegram channel for frequent daily updates: https://t.me/onchainweb3

If you find my work resourceful, please consider donating to 0x1de17b6c736bcd00895655a177535c2a33c6feba (Ethereum/Optimism/Arbitrum/BSC chain).

Also, buy my keys at friend.tech by searching for 0xArhat

I’d also appreciate it if you shared this with your friends, who would enjoy reading this.

You can find my other research & investment thesis here:https://bit.ly/47MKAGD

Thank you.

Resources

  1. https://papers.ssrn.com/sol3/papers.cfm
  2. https://twitter.com/0xArhat/status/1699812043518279832
Ethereum (ETH) Crypto News DeFi Ethereum DeFi

How do you rate this article?

44
Arhat
Arhat

Founder 3z3 Labs. Ordinary thinker. I write about web3 use cases, hacks and deep dives.

Decrypting Crypto
Decrypting Crypto

Here I decrypt crypto topics, trends and tech.

Send a $0.01 microtip in crypto to the author, and earn yourself as you read!

20% to author / 80% to me.
We pay the tips from our rewards pool.
The world of Rollercoin is getting worse. The world of Rollercoin is getting worse.
steverobert

steverobert

5 hours ago
1 minute read

Theta 3Q23 Release Recap Theta 3Q23 Release Recap
Keith Thuerk

Keith Thuerk

11 hours ago
2 minute read

BTC Price Outlook(9/25/2023) - Can Bitcoin Touch 25k Again? BTC Price Outlook(9/25/2023) - Can Bitcoin Touch 25k Again?
ThisGamerLikesCrypto

ThisGamerLikesCrypto

4 hours ago
1 minute read