rutherford, [09.12.19 12:41]<Xades> Commercial users will be anon only, there

1. rutherford, [09.12.19 12:41]
2. <Xades> Commercial users will be anon only, there is no way you want your competitors to be able to see all your payments and receivables. Your suppliers would be able to figure out other suppliers and what you were paying them, etc. Anyone you pay will be able to browse the size of your wallet. Public transactions are unsafe for anything other than a hobby business.
3.  
4. rutherford, [09.12.19 12:45]
5. <boestie:matrix.org> blind transactions and features or any reference to them need to be hidden from the marketplace dapp, for common users at least, so as a default
6.  
7. rutherford, [09.12.19 12:45]
8. <Xades> Public is unsafe period - pay your bar bill with a public wallet, the bartender knows how many coins you have and her boyfriend mugs you after you leave the bar.
9.  
10. rutherford, [09.12.19 12:45]
11. <boestie:matrix.org> i would like to see the dapp grow and mature into a marketplace for the common man
12.  
13. rutherford, [09.12.19 12:54]
14. <yasabi> I think a compromise would be for RingCT to become the default tx method, and you must opt-out to use blinded or public.
15.  
16. rutherford, [09.12.19 12:55]
17. <yasabi> It's a bit incongruous to present as a privacy coin but have the default method be totally public imo
18.  
19. Cryptoguard, [09.12.19 13:08]
20. [In reply to rutherford]
21. Blind coins make the marketplace possible. They are required as CT has programmable output and RingCT doesn't. In other words, RingCT cannot be used in smart-contract in the traditional way. To remedy that situation, the outputs of a RingCT transaction are combined to the input of a CT transaction and then released once again as RingCT once the escrow completes.
22.  
23. Cryptoguard, [09.12.19 13:11]
24. The main issue with RingCT on by default is you need to have public coins coming out of the Proof-of-Stake algorithm. Otherwise, there is not the same degree of auditability. But while it is actually possible to audit the supply by checking the number of coins created at the inflation level, having RingCT by default transactions does not protect against other types of fraudulent coin creation abuses (i.e. creating coins out of thin air outside the inflationary model). That's the main reason why RingCT is not by default, as far as I know.
25.  
26. rutherford, [09.12.19 13:43]
27. <Xades> Blind coins could be limited to smart contracts only and not show up in the user interface directly. I don't see how anon by default makes coin inflation bugs more likely. The UI would look a lot better with only anon sending/receiving, and public limited to staking/staking rewards.
28.  
29. Cryptoguard, [09.12.19 13:48]
30. As I understand it (Kewde and Dasource most definitely have the right answer here), with RingCT by default you can only audit coins that have been created at the inflation level (as in...coins created when new blocks are staked). Because RingCT makes everything so private, you can't audit the supply otherwise. So if there was some unknown to this day exploit that would allow someone to create coins without having them generated at the inflation level, then there would be no tool to audit the supply properly, meaning we'd never really know coins are being created. With public coins, it's very easy to audit the chain in its entirety and not just at the inflation level.
31.  
32. It's a "theoretical" issue that Monero is also potentially subject to. Doesn't mean it would ever happen, but if it did it would most definitely lead to an infinite dumping of coins on the market...in other words, it would kill the coin (imo)
33.  
34. rutherford, [09.12.19 13:59]
35. <Xades> RingCT by default is just a gui change, there is no way that a gui change will affect your ability to audit the supply. Users can already decide to just use ringCT on every transaction.
36.  
37. Cryptoguard, [09.12.19 13:59]
38. Oh, you meant RingCT by default in Particl Desktop. Thought you meant at the protocol level.
39.  
40. Cryptoguard, [09.12.19 14:00]
41. Could be interesting indeed and a good compromise 🤔
42.  
43. rutherford, [09.12.19 14:01]
44. <Xades> I'm suggesting that the gui only offer the ability to stake public coins, and receive public stake rewards. When the users want to send/receive they only get the option of anon.
45.  
46. rutherford, [09.12.19 14:02]
47. <Xades> There could also be seperate locks for unlocking public staking and unlocking the anon wallet for sending.
48.  
49. rutherford, [09.12.19 14:03]
50. <yasabi> isn't the supply inflation risk already present with ringct tho? making it default won't change that risk
51.  
52. rutherford, [09.12.19 14:03]
53. <yasabi> and code bugs can be found in any cryptocurrency, that seems a bad reason not to make a privacy coin as private as possible
54.  
55. rutherford, [09.12.19 14:03]
56. <yasabi> when exploits are discovered there's generally a way to verify whether or not they've been leveraged, as monero was able to do a couple years back
57.  
58. rutherford, [09.12.19 13:43]
59. <Xades> Blind coins could be limited to smart contracts only and not show up in the user interface directly. I don't see how anon by default makes coin inflation bugs more likely. The UI would look a lot better with only anon sending/receiving, and public limited to staking/staking rewards.
60.  
61. Cryptoguard, [09.12.19 13:48]
62. As I understand it (Kewde and Dasource most definitely have the right answer here), with RingCT by default you can only audit coins that have been created at the inflation level (as in...coins created when new blocks are staked). Because RingCT makes everything so private, you can't audit the supply otherwise. So if there was some unknown to this day exploit that would allow someone to create coins without having them generated at the inflation level, then there would be no tool to audit the supply properly, meaning we'd never really know coins are being created. With public coins, it's very easy to audit the chain in its entirety and not just at the inflation level.
63.  
64. It's a "theoretical" issue that Monero is also potentially subject to. Doesn't mean it would ever happen, but if it did it would most definitely lead to an infinite dumping of coins on the market...in other words, it would kill the coin (imo)
65.  
66. rutherford, [09.12.19 13:59]
67. <Xades> RingCT by default is just a gui change, there is no way that a gui change will affect your ability to audit the supply. Users can already decide to just use ringCT on every transaction.
68.  
69. Cryptoguard, [09.12.19 13:59]
70. Oh, you meant RingCT by default in Particl Desktop. Thought you meant at the protocol level.
71.  
72. Cryptoguard, [09.12.19 14:00]
73. Could be interesting indeed and a good compromise 🤔
74.  
75. rutherford, [09.12.19 14:01]
76. <Xades> I'm suggesting that the gui only offer the ability to stake public coins, and receive public stake rewards. When the users want to send/receive they only get the option of anon.
77.  
78. rutherford, [09.12.19 14:02]
79. <Xades> There could also be seperate locks for unlocking public staking and unlocking the anon wallet for sending.
80.  
81. rutherford, [09.12.19 14:03]
82. <yasabi> isn't the supply inflation risk already present with ringct tho? making it default won't change that risk
83.  
84. rutherford, [09.12.19 14:03]
85. <yasabi> and code bugs can be found in any cryptocurrency, that seems a bad reason not to make a privacy coin as private as possible
86.  
87. rutherford, [09.12.19 14:03]
88. <yasabi> when exploits are discovered there's generally a way to verify whether or not they've been leveraged, as monero was able to do a couple years back