Siqhubeka nochungechunge lwethu malunga ne-Blockchain ye-Monero, kwaye inqaku lanamhlanje liza kugxininisa kwi-protocol ye-RingCT (i-Ring Confidential Transactions), eyazisa ukuthengiselana okuyimfihlo kunye neesignesha ezintsha zendandatho. Ngelishwa, kukho ulwazi oluncinci kwi-Intanethi malunga nendlela esebenza ngayo, kwaye sizame ukugcwalisa esi sikhewu.
Siza kuthetha malunga nendlela uthungelwano olufihla ngayo imali yokudlulisa usebenzisa le protocol, kutheni beyishiyile i-cryptonote ring signatures yakudala, kwaye le teknoloji iya kuphuhlisa ngakumbi.
Kuba le protocol yenye yezona teknoloji zintsonkothileyo eMonero, umfundi uya kufuna ulwazi olusisiseko loyilo lwe-blockchain kunye nolwazi oludlulayo lwe-elliptic curve cryptography (ukuxubha kolu lwazi, unokufunda izahluko zokuqala zethu. inqaku elidlulileyo malunga ).
RingCT protocol
Olunye uhlaselo olunokwenzeka kwiimali ze-cryptonote luhlalutyo lwe-blockchain olusekelwe kulwazi lwesixa kunye nexesha lentengiselwano ethunyelwe. Oku kuvumela ukunciphisa kakhulu indawo yokukhangela ukuphuma komdla kumhlaseli. Ukukhusela uhlalutyo olunjalo, i-Monero iphumeze i-protocol yentengiselwano engaziwa efihla ngokupheleleyo iimali zokudluliselwa kwinethiwekhi.
Kuyaphawuleka ukuba umbono wokufihla iimali awuyonto intsha. Umphuhlisi weBitcoin Core uGreg Maxwell wayengomnye wabokuqala ukuyichaza kweyakhe . Ukuphunyezwa kwangoku kweRingCT kukuguqulwa kwayo kunye nethuba lokusebenzisa iisignesha zeringi (nokuba ngaphandle kwazo), kwaye yindlela eyafumana ngayo igama layo - Ring Confidential Transactions.
Phakathi kwezinye izinto, iprotocol inceda ukulahla iingxaki ngokuxuba iziphumo zothuli - iziphumo zexabiso elincinci (elihlala lifunyenwe ngendlela yokutshintsha ukusuka kwintengiselwano), eyadala iingxaki ezininzi kunokuba zifanelekile.
NgoJanuwari 2017, i-hard fork yenethiwekhi ye-Monero yenzeke, ivumela ukusetyenziswa kokuzikhethela kweentengiselwano eziyimfihlo. Kwaye sele ngoSeptemba waloo nyaka, kunye ne-6 version ye-hard fork, ukuthengiselana okunjalo kwaba kuphela okuvunyelwe kwinethiwekhi.
I-RingCT isebenzisa iindlela ezininzi ngaxeshanye: utyikityo lweqela oludityanisiweyo oludityanisiweyo oludityanisiweyo oluninzi (iMultilayered Linkable Spontaneous Anonymous Group Signature, ekubhekiselwa kuyo emva koko njenge-MLSAG), isikimu sokuzibophelela (Izibophelelo zikaPedersen) kunye noluhlu lobungqina (eli gama alinayo inguqulelo esekiweyo kwisiRashiya) .
Iprotocol ye-RingCT yazisa iindidi ezimbini zentengiselwano engaziwa: ilula kwaye igcwele. I-wallet ivelisa okokuqala xa ukuthengiselana kusebenzisa igalelo elingaphezulu kwesinye, okwesibini - kwimeko echaseneyo. Ziyahluka ekuqinisekisweni kweemali zentengiselwano kunye nedatha esayinwe ngesignesha ye-MLSAG (siya kuthetha ngakumbi malunga noku ngezantsi). Ngaphezu koko, ukuthengiselana kohlobo olugcweleyo kunokuveliswa ngalo naliphi na inani lamagalelo, akukho mahluko usisiseko. Encwadini Kule nkalo, kuthiwa isigqibo sokukhawulela ukuthengiselana ngokupheleleyo kwigalelo elinye senziwe ngokukhawuleza kwaye sinokutshintsha kwixesha elizayo.
MLSAG utyikityo
Masikhumbule ukuba ngawaphi amagalelo entengiselwano esayiniweyo. Intengiselwano nganye ichitha kwaye yenza imali ethile. Isizukulwana semali senzeka ngokudala iziphumo zentengiselwano (isifaniso esithe ngqo ngamatyala), kunye nesiphumo esichithwa yintengiselwano (emva koko, kubomi bokwenyani sichitha imali engamaphepha) iba ligalelo (lumka, kulula kakhulu ukubhideka. Apha).
Igalelo libhekisa kwiziphumo ezininzi, kodwa lichitha enye kuphela, ngaloo ndlela idala "isikrini somsi" ukwenza kube nzima ukuhlalutya imbali yoguqulo. Ukuba utshintshiselwano lunegalelo elingaphezulu kwesinye, ngoko ke isakhiwo esinjalo sinokubonakaliswa njenge-matrix, apho imiqolo iyigalelo kwaye iikholomu ziziphumo ezixubileyo. Ukuqinisekisa kuthungelwano ukuba intengiselwano ichitha ngokuchanekileyo iziphumo zayo (izazi izitshixo zabo eziyimfihlo), amagalelo asayinwa ngesiginitsha yeringi. Utyikityo olunjalo luqinisekisa ukuba umsayini wayesazi izitshixo ezifihlakeleyo zazo zonke iikholamu zekholamu.
Iintengiselwano eziyimfihlo azisasebenzisi ezo zakudala iisayino zeringi, zatshintshwa yi-MLSAG-uguqulelo lwesayinwe efanayo yeringi enye elungiselelwe amagalelo amaninzi, .
Babizwa ngokuba yi-multilayer kuba basayina amagalelo amaninzi ngexesha elinye, ngalinye lixutywe nabanye abaninzi, oko kukuthi i-matrix isayiniwe, kungekhona umqolo omnye. Njengoko siza kubona kamva, oku kunceda ukugcina ubungakanani botyikityo.
Makhe sijonge indlela isignesha yeringi eyenziwe ngayo, usebenzisa umzekelo wentengiselwano echitha iziphumo ezi-2 zangempela kwaye isebenzisa m - 1 i-random ukusuka kwi-blockchain yokuxuba. Masibonise izitshixo zoluntu zeziphumo esichitha njenge
, kunye nemifanekiso ephambili yazo ngokufanelekileyo: Ngaloo ndlela, sifumana i-matrix yobukhulu 2 x m. Okokuqala, kufuneka sibale into ebizwa ngokuba yimiceli mngeni kwisiphumo ngasinye:
Siqala izibalo kunye neziphumo, esizichitha sisebenzisa izitshixo zabo zoluntu:kunye namanani randomNgenxa yoko, sifumana la maxabiso alandelayo:
, esiyisebenzisayo ukubala umngeni
isibini esilandelayo seziphumo (ukwenza kube lula ukuqonda ukuba sibeka ntoni endaweni, siphawule la maxabiso ngemibala eyahlukeneyo). Onke amaxabiso alandelayo abalwa kwisangqa kusetyenziswa iifomula ezinikwe kumzekeliso wokuqala. Into yokugqibela yokubala ngumceli mngeni wepere yeziphumo zokwenyani.
Njengoko sibona, zonke iikholamu ngaphandle kwaleyo iqulethe iziphumo zokwenyani isebenzisa amanani avele ngokungenamkhethe... Kuba Ο- ikholamu siya kuzifuna nazo. Masiguqulekwi s:
Utyikityo ngokwalo yikopi yazo zonke ezi xabiso:
Le datha ibhalwa kwintengiselwano.
Njengoko sibona, i-MLSAG inomngeni omnye kuphela c0, ekuvumela ukuba ugcine kwisayizi yesignesha (esele ifuna indawo eninzi). Ngapha koko, nawuphi na umhloli, usebenzisa idatha, ibuyisela amaxabiso c1,β¦, cm kwaye ijonga oko. Ke, umsesane wethu uvaliwe kwaye utyikityo luqinisekisiwe.
Ukuthengiselana kwe-RingCT yohlobo olupheleleyo, omnye umgca wongezwa kwi-matrix eneziphumo ezixubileyo, kodwa siya kuthetha ngale nto ingezantsi.
Pedersen Izibophelelo
(igama lesiNgesi elithi izibophelelo lisetyenziswa ngokufuthi) ukuze omnye umntu abe nokungqina ukuba uyayazi imfihlelo ethile (inombolo) ngaphandle kokuyityhila ngokwenene. Umzekelo, uqengqa inombolo ethile kwidayisi, qwalasela ukuzibophelela kwaye uyidlulisele kwiqela eliqinisekisayo. Ngaloo ndlela, ngeli xesha lokutyhila inombolo eyimfihlo, umqinisekisi ubala ngokuzimeleyo ukuzibophelela, ngaloo ndlela uqinisekisa ukuba awuzange umkhohlise.
Izibophelelo ze-Monero zisetyenziselwa ukufihla iimali zokudluliselwa kunye nokusebenzisa eyona ndlela ixhaphakileyo - izibophelelo zePedersen. Ngendlela, inyani enomdla - ekuqaleni abaphuhlisi bacebise ukufihla iimali ngokuxutywa okuqhelekileyo, oko kukuthi, ukongeza iziphumo zexabiso elingenasizathu ukuze bazise ukungaqiniseki, kodwa ke batshintshela kwizibophelelo (asiyonyani ukuba bagcina ubungakanani bentengiselwano, njengoko siza kubona ngezantsi).
Ngokubanzi, ukuzibophelela kubonakala ngolu hlobo:
Kuphi C -intsingiselo yokuzibophelela ngokwayo, a -Imali efihliweyo, H yindawo esisigxina kwi-elliptic curve (i-generator eyongezelelweyo), kunye x - uhlobo oluthile lwemaski engafanelekanga, into yokufihla eyenziwa ngokungaqhelekanga. Imaski iyafuneka apha ukuze umntu wesithathu angakwazi ukuqikelela nje ixabiso lokuzibophelela.
Xa isiphumo esitsha senziwa, i-wallet ibala ukuzibophelela kwayo, kwaye xa ichithwa, ithatha ixabiso elibalwe ngexesha lesizukulwana okanye liphinde liphinde liyibale, kuxhomekeke kuhlobo lokuthengiselana.
RingCT ilula
Kwimeko yeentengiselwano ezilula zeRingCT, ukuze kuqinisekiswe ukuba intengiselwano idale iziphumo kwisixa esilingana nesixa samagalelo (ayizange ivelise imali ngaphandle emoyeni obhityileyo), kuyimfuneko ukuba isimbuku sezibophelelo zokuqala neyesibini. enye ibe yinto enye, oko kukuthi:
Iikomishini zokuzibophelela ziyijonga ngokwahlukileyo kancinci - ngaphandle kwemaski:
phi a - inani lekhomishini, ifumaneka esidlangalaleni.
Le ndlela yokwenza isivumela ukuba singqine kwiqela elithembekileyo ukuba sisebenzisa izixa ezifanayo ngaphandle kokuzixela.
Ukwenza izinto zicace ngakumbi, makhe sijonge umzekelo. Masithi intengiselwano ichitha iziphumo ezimbini (ithetha ukuba ziba ngamagalelo) ze-10 kunye ne-5 XMR kwaye ivelise iziphumo ezithathu ezixabisa i-12 XMR: 3, 4 kunye ne-5 XMR. Ngelo xesha, uhlawula ikhomishini ye-3 XMR. Ngaloo ndlela, imali esetyenzisiweyo kunye nemali eyenziwe kunye nekhomishini ilingana ne-15 XMR. Makhe sizame ukubala izibophelelo kwaye sijonge umahluko kwiimali zabo (khumbula izibalo):
Apha sibona ukuba ukuze i-equation ihlangane, sifuna ukubalwa kweemaski zegalelo kunye nemveliso zifane. Ukwenza oku, i-wallet ivelisa ngokungaqhelekanga x1, y1, y2 kunye no-y3, kunye nentsalela x2 Ibala ngolu hlobo:
Ngokusebenzisa ezi maski, sinokungqina nakweyiphi na into eqinisekisayo ukuba asenzi imali engaphezulu kunesiyichithayo, ngaphandle kokuchaza isixa-mali. Eyoqobo, akunjalo?
I-RingCT igcwele
Kwiintengiselwano ezipheleleyo ze-RingCT, ukujonga iimali zokudluliselwa kuyinkimbinkimbi ngakumbi. Kule ntengiselwano, i-wallet ayiphindi ukubala izibophelelo zamagalelo, kodwa isebenzisa ezo zibalwe xa zenziwe. Kule meko, kufuneka sicinge ukuba asisayi kuphinda sifumane umahluko kwizibalo ezilingana no-zero, kodwa endaweni yoko:
kuyinto z β Umahluko phakathi kweemaski zegalelo kunye nemveliso. Ukuba siqwalasela zG njengesitshixo sikawonke-wonke (esiyiyo), ngoko z sisitshixo sabucala. Ke, siyabazi abantu kunye nezitshixo zabucala ezihambelanayo. Ngale datha esandleni, singayisebenzisa kumsayino weringi we-MLSAG kunye nezitshixo zikawonke-wonke zeziphumo ezixutywayo:
Ngaloo ndlela, isignesha yendandatho esebenzayo iya kuqinisekisa ukuba siyazazi zonke izitshixo zangasese zomnye weentsika, kwaye singakwazi kuphela isitshixo sangasese kumqolo wokugqibela ukuba ukuthengiselana akuvelisi imali eninzi kunokuba ichitha. Hi ndlela leyi, nantsi impendulo yombuzo othi "kutheni umahluko kwixabiso lezibophelelo ungakhokelela ku-zero" - ukuba zG = 0, emva koko siya kwandisa ikholamu kunye neziphumo zangempela.
Umamkeli wemali uyazi njani ukuba yimalini ethunyelwe kuye? Yonke into ilula apha - umthumeli wentengiselwano kunye nezitshixo zotshintshiselwano zomamkeli usebenzisa iprotocol yeDiffie-Hellman, usebenzisa isitshixo sokuthengiselana kunye nesitshixo sokujonga ummkeli kwaye ubale imfihlo ekwabelwana ngayo. Umthumeli ubhala idatha malunga nezixa zemveliso, ezifihliweyo ngeli qhosha ekwabelwana ngalo, kwiinkalo ezikhethekileyo zentengiselwano.
Uluhlu lobungqina
Kwenzeka ntoni ukuba usebenzisa inombolo ethabathayo njengesixa kwizibophelelo? Oku kunokukhokelela ekuvelisweni kweengqekembe ezongezelelweyo! Esi siphumo asivumelekanga, ngoko ke kufuneka siqinisekise ukuba iimali esizisebenzisayo azibi (ngaphandle kokuchaza ezi mali, ngokuqinisekileyo, ngaphandle koko kukho umsebenzi omninzi kwaye konke kulilize). Ngamanye amazwi, kufuneka singqine ukuba isixa-mali sikwisithuba sokuphumla [0, 2n - 1].
Ukwenza oku, isixa sesiphumo ngasinye sahlulwe ngamadijithi amabini kwaye ukuzinikela kubalwa kwidijithi nganye ngokwahlukileyo. Kungcono ukubona ukuba kwenzeka njani oku ngomzekelo.
Masicinge ukuba iimali zethu zincinci kwaye zingena kwi-bits ezi-4 (ekwenziweni oku ngamasuntswana angama-64), kwaye senza imveliso enexabiso le-5 XMR. Sibala izibophelelo zodidi ngalunye kunye nokuzibophelela kuyo yonke loo mali:
Emva koko, isibophelelo ngasinye sixutywa kunye nomntu obambeleyo (Ci-2iH) kwaye isayinwe ngababini kunye nesiginitsha yeringi yeBorromeo (omnye umsayino weringi), ecetywa nguGreg Maxwell ngo-2015 (unokufunda ngakumbi ngayo ):
Xa zidibene, oku kubizwa ngokuba bubungqina boluhlu kwaye ikuvumela ukuba uqinisekise ukuba izibophelelo zisebenzisa izixa kuluhlu [0, 2n - 1].
Yintoni elandelayo?
Ekuphunyezweni kwangoku, ubungqina boluhlu buthatha indawo eninzi - i-6176 bytes ngemveliso nganye. Oku kukhokelela kwiintengiselwano ezinkulu kwaye ngoko ke imirhumo ephezulu. Ukunciphisa ubungakanani bentengiselwano ye-Monero, abaphuhlisi bazisa ii-bulletproofs endaweni yotyikityo lwe-Borromeo-uluhlu lwendlela yobungqina ngaphandle kokuzinikela kancinci. , bayakwazi ukunciphisa ubungakanani bobungqina boluhlu ukuya kuthi ga kwi-94%. Ngendlela, phakathi noJulayi iteknoloji yadlula ukusuka kuKhuseleko lwe-Kudelski, olungakhange luveze naziphi na iintsilelo ezibalulekileyo mhlawumbi kwi-teknoloji ngokwayo okanye ekuphunyezweni kwayo. Itekhnoloji sele isetyenziswe kumnatha wovavanyo, kunye nefolokhwe entsha enzima, inokuthi mhlawumbi iqhubele kwinethiwekhi engundoqo.
Buza imibuzo yakho, ucebise izihloko kumanqaku amatsha malunga netekhnoloji kwintsimi ye-cryptocurrency, kwaye ubhalise kwiqela lethu ukuze uhlale usazi ngeziganeko neempapasho zethu.
umthombo: www.habr.com