Cryptology ePrint Archive: Report 2020/1064

Mimblewimble Non-Interactive Transaction Scheme

Gary Yu

Abstract: I describe a non-interactive transaction scheme for Mimblewimble protocol, so as to overcome the usability issue of the Mimblewimble wallet. With the Diffie–Hellman, we can use an Ephemeral Key shared between the sender and the receiver, a public nonce R is added to the output for that, removing the interactive cooperation procedure. And an additional one-time public key P' is used to lock the output to make it only spendable for the receiver, i.e. the owner of P'. Furtherly, to keep Mimblewimble privacy character, the Stealth Address is used in this new transaction scheme.

Category / Keywords: public-key cryptography / Mimblewimble, Stealth address, Bitcoin, Grin, Confidential transaction, Privacy

Date: received 2 Sep 2020, last revised 21 Dec 2020

Contact author: gary yu at gotts tech

Available format(s): PDF | BibTeX Citation

Note: A major updating on the scheme, and analysis on replay attack and rogue-key attack, etc., to substitute the unsafe previous version.

Version: 20201221:130713 (All versions of this report)

Short URL: ia.cr/2020/1064


[ Cryptology ePrint archive ]