2

In ZeroCash they perform transactions like this. I want to unravel and understand how z-addresses work in ZCash. It shall be described simply in here and in-depth, revised here and here (older, a bit simpler). Simply put it shall be described here:

Zerocash: Decentralized Anonymous Payments from Bitcoin, page 11/469

or even simpler here:

Blue is what gets into the ledger including stuff like cm, a_{pk}, hash(sn).

In simple terms here is how I understand the algorithm and please correct me if I am wrong: A payer (slide #5) passes a value onto the chain as if it is passed by the payee. And this where I stop getting it:

  1. How payer proves that he indeed can spend that value if he makes it look like operation is done from payee's perspective?
  2. If value, rho, r' and r'' are passed in the form of payee's public key how does it not make such transaction capable to happen only once\or how is it checked and proved?
  3. If a transaction can happen only one and payer needs to prove that he has funds for it how he can not be linked to that transaction?
Blender
  • 141
  • 7
  • Dear moderators, please do care to explains why the hall on bloody earth question on the fundamentals of one of the top five blockchain systems (zcash) is offtopic on a website about blockchain?!? – Blender Mar 24 '20 at 07:29
  • See: https://bitcoin.stackexchange.com/help/on-topic – chytrik Mar 24 '20 at 08:45

0 Answers0