-
luigi1111w
<sech1> forcing all transactions to 16 outputs will slow down wallet scanning, what... 5-8 times? <= it will slow down daemon syncing by a lot as well
-
nikg83[m]
4/8/16 fake outputs when real outs are > 0/4/8 or something similar
-
nikg83[m]
s/fake/forced/
-
atomfried[m]
regarding the timelocks, wasnt there a paper (PayMo) proposing payment channels?
eprint.iacr.org/2020/1441.pdf wouldnt this require the timelock feature?
-
atomfried[m]
or was there something wrong with what they proposed?
-
Rucknium[m]
I have now made my submission to the Monero Vulnerability Response Process via HackerOne. The text itself is 11 pages (1.5 line spacing). With images, tables, and code appendices, it is 28 pages.
-
wfaressuissia
""[12]
eprint.iacr.org/2019/595.pdf", "
eprint.iacr.org/2020/1441.pdf#page=5", "Comparison with [12]. ... An additional limitation of their proposal in terms of transaction privacy is that, since the timelock ... On the contrary, PayMo does not require any changes to the transaction scheme of Monero, nor it requires to add any functionality to the scripting language"
-
wfaressuissia
"... wouldnt this require the timelock feature?" no , it wouldn't
-
wfaressuissia
Treat that PayMo as interesting academic research that will not be deployed as is, since any changes in cryptography will make it likely incompatible. And there is demand for cryptography changes due to problems outside of payment channels which aren't priority now.
-
atomfried[m]
ah ok i see
-
wfaressuissia
Only people that develops fundamental cryptography scheme can decided what can be added on top. Everyone else has almost 0 influence on it since there are a lot of important dependencies that should be handled carefully in order to break security.
-
wfaressuissia
* ... to not break security
-
atomfried[m]
do we know if things like payment channels/networks could be possible with seraphis?
-
sethsimmons
atomfried[m]: Their creation/development would be simplified IIUC, but I could be wrong. UkoeHB would be a better person to answer that :)
-
sethsimmons
I believe output chaining and multi-sig are both easier, and both could be used to create payment channels depending on approach.
-
UkoeHB
atomfried[m]: not that I know of (not that I have pondered it either), you could try asking the Firo guys if they have ideas
-
atomfried[m]
maybe with scriptless scripts or something like that, but i need to understand the crypto which is used in monero a bit better first ...
-
atomfried[m]
i just finished my masters degree, so i have some free time in the next month/months :D
-
carrington[m]
Other than the Paymo paper (which seemed to come out of nowhere), I haven't seen any analysis of how payment channels could work on Monero or its future transaction models
-
carrington[m]
Although according to this comment it was at least discussed in this channel to some degree
-
carrington[m]
-
Lyza
if payment channels are networked a la lightning network, might that not decrease privacy?
-
Lyza
my understanding with lightning is that a well connected adversary can get a fair amount of metadata from LN itself, not just because of the L1 transparency
-
Lyza
thinking about this blog post in particular:
abytesjourney.com/lightning-privacy
-
carrington[m]
<Lyza> "thinking about this blog post in..." <- That was a great read. It has convinced me that Monero should do absolutely nothing about lightning until Bitcoin has spent a few more years fixing it
-
Rucknium[m]
carrington: Probably cannot be fixed. And I am working on a research project in my head that shows that fees on Lightning Network will actually rise substantially, in long-term equilibrium, due to the opportunity cost of locking all that BTC liquidity in channels. The opportunity cost is not getting that sweet "DeFi" interest money from loaning out BTC.
-
Rucknium[m]
Although someone here I think helpfully suggested that fees wouldn't risk to compensate for the opportunity cost, but, rather, Lightning Network user data would be sold 😳
-
Rucknium[m]
* fees wouldn't rise to..
-
carrington[m]
I've heard similar arguments that DeFi opportunity costs make Proof of Stake unsustainable
-
Rucknium[m]
Interesting argument. I will add it to my research TODO list 🧐
-
Rucknium[m]
I think that DeFi interest rates will fall, though, as the real risk of DeFi starts to become more apparent -- and as maybe the speculation that drives the borrower side becomes less profitable.
-
Rucknium[m]
Wait, maybe I got my arguments mixed up. People pulling out of lending will make interest rates rise. But if DeFi actually does get safer, then interest rates should fall. 🤔
-
Rucknium[m]
To me, DeFi in its current form seems kind of useless, in terms of actual social utility. I have not looked deeply into it though.
-
UkoeHB
I am confused how you can have DeFi lending without all borrowers being overcollateralized, which seems like a big impediment to real volume.
-
Rucknium[m]
UkoeHB: I mean, traditional group microcredit in developing countries requires no collateral, but I'm not sure how you would implement something like that in pseudonymous, permissionless DeFi. I'd bet someone is working on it as we speak.
-
Rucknium[m]
Repeated games, maybe? There are a lot of ways to ensure cooperation. Economists have been writing papers on this for decades.
-
atomfried[m]
<carrington[m]> "That was a great read. It has..." <- a lot of those things can be fixed i guess, the only (and to be honest huge) privacy concern is about the routing and the graph built by payment channels and the information which can be deducted by it.
-
atomfried[m]
Maybe some ZK stuff can help here, such that no graph at all is known to the single nodes and only information like "yeah i can route to this node" instead of the whole graph can be used to route payment
-
atomfried[m]
i am just writing this idea right out mind, and pply the property of being able to ask each node for the set of nodes it can route payments to without the number of hop information is enough to deduce the whole payment channel graph
-
luigi1112
UkoeHB depends what "real volume" means :)
-
luigi1112
there is certainly some level of demand for "portfolio loans" which is basically what defi lending is
-
atomfried[m]
* right out from my mind, and