✈️Mind SAP: Research

The Details of FHE-DKSAP:

MindSAP detailed protocol can be found as follows:

Initialization process

Bob (receiver) creates two key pairs: $(sk_2,PK_2)$ and $(sk_b,PK_b)$
$sk_2$ is a randomly generated private key for SA spending purposes.
A SA spending wallet address public key $PK_2$ is generated using $sk_2$ . It follows standard Ethereum address conversion from $sk_2$ to $PK_2$ . As said, the final wallet address by $PK_2$ does not need to be registered on Ethereum before use.
$sk_b$ is the FHE private key for SA encryption and decryption. It is generated by the FHE key generation functions.
Bob encrypts the $sk_2$ under the $PK_b$ , and gets $C_2$ for the further stealth address calculations.
Bob publicly shares $(PK_2,PK_B,C_2)$ .

SA generation process on the Sender's side

Alice (sender) generates a key pair $(sk_1,PK_1)$ randomly for each SA transaction.
$sk_1$ is Ethereum ephemeral and the public key or wallet address does not need to be registered on Ethereum before use.
She combines the two public keys for Ethereum wallet generation, $PK_1$ and $PK_b$ , to obtain $PK_z$
The Stealth Address (SA) is generated based on $PK_z$ by following standard Ethereum address conversion.
Alice encrypts the secret key $sk_1$ using Bob's HE public key $PK_b$ , resulting in the ciphertext $C_1$ . Alice then adds these two ciphertexts together and sends them to Bob.
Alice can not know SA's private key, as nobody can guess the private key from the public key $PK_z$ . It means Alice only knows where to send SA transactions, but never be able to login to this SA wallet.

SA generation process on the Recipient's side

Bob can decrypt the ciphertext C with his HE private key $sk_b$ . The HE decryption result is the private key $sk_z$ to the wallet that receives the sent from Alice.
Then, he can generate the stealth address with $sk_z$ and decrypt it with the private key, which only Bob owns. So Bob can transfer its balance with the private key $PK_z$ for the SA wallet.

Research Post in Ethereum Research about MindSAP:

Research Paper about FHE-DKSAP

Blockchain transactions have gained widespread adoption across various industries, largely attributable to their unparalleled transparency and robust security features. Nevertheless, this technique introduces various privacy concerns, including pseudonymity, Sybil attacks, and potential susceptibilities to quantum computing, to name a few. In response to these challenges, innovative privacy-enhancing solutions like zero-knowledge proofs, homomorphic encryption, and stealth addresses (SA) have been developed. Among the various schemes, SA stands out as it prevents the association of a blockchain transaction's output with the recipient's public address, thereby ensuring transactional anonymity. However, the basic SA schemes have exhibited vulnerabilities to key leakage and quantum computing attacks. To address these shortcomings, we present a pioneering solution - Homomorphic Encryption-based Dual-Key Stealth Address Protocol (HE-DKSAP), which can be further extended to Fully HE-DKSAP (FHE-DKSAP). By leveraging the power of homomorphic encryption, HE-DKSAP introduces a novel approach to safeguarding transaction privacy and preventing potential quantum computing attacks. This paper delves into the core principles of HE-DKSAP, highlighting its capacity to enhance privacy, scalability, and security in programmable blockchains. Through a comprehensive exploration of its design architecture, security analysis, and practical implementations, this work establishes a privacy-preserving, practical, and efficient stealth address protocol via additively homomorphic encryption.
Link: https://arxiv.org/abs/2312.10698

Presentation in Ethereum Foundation Private Event about FHE-DKSAP

https://app.streameth.org/devconnect/epf_day/session/fhedksap

PreviousMind SAP NextMindLake

Last updated 1 month ago