newsence
來源篩選

Anonymous PGC: Practical Anonymous and Confidential Payment for Account-based Blockchains

ethresear.ch

We are excited to share our latest work, Anonymous PGC , which has been accepted by EUROCRYPT 2026 . Paper (ePrint): https://eprint.iacr.org/2025/884 Context & Motivation In 2019, our team proposed PGC (ESORICS 2020), introducing Twisted ElGamal to achieve confidential transfers. This work was concurrent with Zether and its core design was later adopted by Solana for their ZK-token extension. However, existing account-based privacy solutions like Anonymous Zether (IEEE S&P 2021) still face critical hurdles: Weak Security Model: Vulnerability to rogue-key attacks due to randomness reuse. Limited Anonymity: Restrictive parity constraints on participant indices. Lack of Multi-receiver Support: Difficulty in supporting t \geq 2 receivers efficiently. Anonymous PGC resolves these challenges by introducing a new framework and novel ZK primitives. Key Contributions Solving the GK Generalization Open Problem: We generalized the Groth-Kohlweiss (GK) 1 -out-of- n proof (EUROCRYPT 2015) to the k -out-of- n case. Range-Proof Friendly (RPF): It seamlessly “solders” with off-the-shelf range proofs (e.g., Bulletproofs), addressing a critical gap in prior work. Efficient Heterogeneous k -out-of- n Proof: We extended the Attema-Cramer-Fehr (ACF) proof (CRYPTO 2021) to support Distinct Group Homomorphisms (DGH) . This allows proving statements across different public keys without ad-hoc PoKs. We reduced complexities from O(n(n-k)) to O(n) while maintaining logarithmic proof size. Performance Improvements: Compared to Anonymous Zether (for n=64 and t=8 ): 2.4x faster in transaction generation. 5.7x faster in verification. 2.2x reduction in transaction size. Integration with Ethereum As the community explores Privacy Pools and Stealth Addresses , the efficiency of k -out-of- n proofs is paramount. Anonymous PGC offers a “sweet spot” by being account-native and significantly more efficient than circuit-based or FHE-based alternatives. We are currently refining the implementation and are looking for research grants or advisory roles to assist with the engineering integration into the Ethereum ecosystem. Any feedback will be highly apprecitaed! 1 post - 1 participant Read full topic

newsence

Anonymous PGC:適用於帳戶制區塊鏈的實用匿名與機密支付方案

ethresear.ch
5 天前

AI 生成摘要

我們很高興分享我們最新的研究成果 Anonymous PGC,該論文已被 EUROCRYPT 2026 接收。這項工作解決了現有帳戶制隱私方案在安全性、匿名性限制及多接收者支援方面的關鍵挑戰,並顯著提升了交易生成與驗證的效率。

匿名 PGC:適用於帳戶制區塊鏈的實用匿名與機密支付 - 密碼學 - Ethereum Research

摘要

在本文中,我們提出了一種針對帳戶制區塊鏈(如以太坊)的實用匿名與機密支付方案。我們的方案名為「匿名 PGC」(Anonymous PGC),它建立在 PGC(私有廣播通道)協議的基礎上,並顯著提升了其隱私特性。

主要貢獻

  1. 匿名性與機密性:我們的方案同時隱藏了交易金額(機密性)以及發送者與接收者的身份(匿名性)。
  2. 帳戶制相容性:不同於許多基於 UTXO 的隱私方案,匿名 PGC 專為帳戶制模型設計,使其更易於整合至現有的智慧合約平台。
  3. 效率:我們利用高效的零知識證明技術,確保交易驗證在鏈上是切實可行的。

技術概覽

1. 加密機制

我們使用同態加密技術來隱藏餘額和交易金額。這允許在不解密的情況下對加密餘額進行更新。

2. 零知識證明

為了確保交易的有效性而不洩露任何私密資訊,發送者必須提供以下證明:

  • 足額證明:證明發送者擁有足夠的餘額進行轉帳。
  • 範圍證明:證明交易金額為正數且在合理範圍內。
  • 身份有效性證明:證明發送者屬於一組潛在用戶(環簽名或類似機制),從而實現匿名性。

3. 隱身地址

為了進一步增強接收者的匿名性,我們採用了隱身地址技術,使得每次交易的目標地址在觀察者眼中都是唯一的且不可關聯的。

結論

匿名 PGC 為帳戶制區塊鏈提供了一個平衡隱私與效率的解決方案。透過結合先進的密碼學原語,我們能夠在不犧牲去中心化特性的前提下,提供強大的財務隱私保護。