Saberhagen The Nameless's avatar
Saberhagen The Nameless 8 months ago
If a node guessed it was the full amount passing thru it would be right most of the time. If many transactions are passing through large hubs (because they are well connected and require less hops to the destination = more likely to succeed and cheaper) an adversary could collect quite a lot of info on the network. But sure it existing gives some plausible deniability. If it was made default that would be even better. >"Monero also requires trusting that the other 14 keys are not held by the same entity or cooperate to deanon you." You mean 15 decoys? That only applies to senders and every spend exponentially decreases the likelihood of being denon'd. Also, you don't have to trust others not being the same entity/colluding for reciever or amount privacy on Monero (both technically possible with LN if the nodes on your routes are colluding, but very unlikely) >"This is true for any privacy system and impossible to avoid." It's not true. Cryptographic accumulators are not really affected by the problem you describe because you're proving you're one of the global set of all transactions instead of a tiny subset - which is what will FCMP be. I've been around many different Monero communities/forums/groups for years and I've never heard Coinomi before. Not sure who recommended it to you but that is not the norm at all. It's usually Cake, Monerujo, Feather, or the GUI/CLI. Yes, scanning can be annoying, but that is what guarantees no one but you can see your transactions (any proper LN privacy wallet, like Zeus, also requires scanning). If you use it somewhat often it's not really a big deal. Wallets with periodic background scanning make this a non-problem. You are always caught up (or very close). You should check it out on Cakes new update. It's very new so I'm sure in time more wallets will adopt it. The only Monero wallet left that holds users viewkeys to eliminate sync time, at the cost of some privacy, is Exodus I believe. There used to be another one MyMonero but it's been defunct for quite a long time. Block filters only help privacy when querying, not when broadcasting a transaction. Not sure what you meant by the last part. Generally more people using something means a larger anonymity set. I've grown to appreciate Lightning more, but there are a lot of nuances to both. We could talk about them forever.
↑ Parent

Replies (2)

Super Testnet's avatar
Super Testnet 8 months ago
> Multi path payments is optional for every wallet I've tried that even has it available Which wallets have you tried? It's built into LND and turned on by default. So any wallets based on LND should just do it. E.g. most custodial wallets as well as most nodes-in-a-box (Umbrel, Start9, etc.), plus many mobile phones like Breez, Zeus, Blixt, Bitkit, and ShockWallet. Multipath payments are also turned on in electrum by default and I suspect they are turned on in the other implementations by default too image
1 replies ↓
Elephant in the root's avatar
Elephant in the root 8 months ago
IIRC MPPs are quite frequent for a while. But TBH I never looked into it closely. Yes, I mean decoys. You do have to trust them. The only difference is what number of interactions you need to have sufficient confidence that there is a sufficient number of honest participants. Even with accumulators you're still trusting. The only difference is that the parameter becomes all users which is really good and efficient but effectively homomorphic with just using everything as decoy or using every single LN node in path. As long as you believe that for some number of participants it's safe enough it's OK. I heard Coinomi suggested to newbies because it had a bunch of other shitcoins as well as btc. LN doesn't require scanning comparable with Monero. It only requires block filters which are comparatively smaller and only for channel states, not for every transaction. That's orders of magnitude difference. In LN broadcast privacy is only an issue for initiators and only if they don't use Tor, which is trivial to enable these days. More people increase anonset but make scanning more expensive pushing people towards revealing their view keys to third parties. There are also obscure probabilistic attacks that are only possible because anonset is high. But once FCMP is no longer vaporware they indeed cease to exist.
1 replies ↓