[Cryptography] Post-quantum confidential transactions: open problem with the commitment layer
Howard Chu
hyc at symas.com
Mon Jun 22 08:59:18 EDT 2026
Communitycoins via cryptography wrote:
> Hi all,
>
> I'm working on a formal specification for a privacy-focused cryptocurrency
> built entirely on post-quantum primitives, and I've hit a wall I'd like input
> on. The full spec is public and there's no company, no funding, and no token
> behind it. This is a design-first project, written before any implementation,
> specifically so the cryptography can be reviewed before anything ships.
>
> The signature and KEM layers are straightforward. FALCON-1024 for signatures,
> Kyber-1024 for key encapsulation, both NIST 2024 standards. The problem is the
> privacy stack.
>
> The design targets Monero-style privacy: ring signatures for sender anonymity,
> stealth addresses for the recipient, and confidential transactions to hide
> amounts. The amount-hiding layer is where I'm stuck.
Just a note - "Monero-style" has moved on, ring signatures are obsolete. The
next Monero upgrade will use Full Chain Membership Proofs.
https://moneroswapper.io/blog/fcmp-plus-plus-monero-upgrade-explained
--
-- Howard Chu
CTO, Symas Corp. http://www.symas.com
Director, Highland Sun http://highlandsun.com/hyc/
Chief Architect, OpenLDAP http://www.openldap.org/project/
More information about the cryptography
mailing list