<div dir="ltr">Howard, Peter and all readers,<br><br>Respectfully, I think we should be very careful about the precedent this case sets.<br><br>The core issue here isn’t whether privacy tools are sometimes used by bad actors as any powerful technology carries that risk.<br><br>The deeper concern is assigning criminal liability to the people who build foundational infrastructure, especially when it’s open source and autonomous.<br><br>Roman Storm wrote code.<br><br>That code was deployed and became immutable, operating independently on a decentralized network. <br><br>Hard stop.<br><br>The alleged misuse happened well after deployment (years). To retroactively connect him to those actions and label it a conspiracy feels like a fundamental misinterpretation of how these systems work.<br><br>It’s a bit like prosecuting a fork manufacturer because someone used a fork in a crime years after purchase. That’s not how we typically think about liability in any other domain.<br><br>Why should cypherpunks self-deprecate? We deserve fair and unbiased treatment, just like anyone building transformative technologies.<br><br>What was Roman's intent?<br><br>Was Tornado Cash built to protect users' privacy or to help adversaries like Kim Jong Un?<br><br>From everything I’ve seen, it was the former.<br><br><br>And if we conflate the two, blurring the lines between privacy and criminality, we risk chilling innovation at the edges as I mentioned before, where some of the most important work benefiting our society happens.<br><br>The crypto space, and open source development more broadly, are still defining their social contract with the world. I think we see this time and time again with the issues that continue to arise across open source projects (politics, tyranny, bullying, etc.).<br><br>This moment will shape how developers view the risks of building anything that challenges existing systems.<br><br>With all due respect, let’s be thoughtful.<br><br>If fear defines the boundaries of what’s possible, we might as well wear a ball and chain on our ankles.<br><br>I believe in natural limits, not artificial ones imposed by man. I know that you all think the same, because you have all made the impossible, possible, time and time again.<br><br>We're the ones who understand the code and its implications. It’s our responsibility to ensure that nuance, not fear, shapes the future.<br><br>- Andrew</div><br><div class="gmail_quote gmail_quote_container"><div dir="ltr" class="gmail_attr">On Wed, Aug 6, 2025 at 7:54 PM Howard Chu <<a href="mailto:hyc@symas.com">hyc@symas.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">Andrew Lee wrote:<br>
> Roman Storm, one of the developers of Tornado Cash, a smart contract on Ethereum designed to enable transactional privacy, has been found guilty of conspiring to operate an unlicensed money-transmitting business [1].<br>
> <br>
> Tornado Cash is simply code. It runs on the Ethereum Virtual Machine, autonomously.<br>
> <br>
> Yet, in 2022, the U.S. government designated it as a sanctioned entity, making it illegal for U.S. persons to interact with it in any capacity, including simply receiving coins therefrom [2].<br>
> <br>
> This case, and its verdict, makes writing open source code that enables privacy a crime.<br>
<br>
That's pure FUD. Roman Storm got in trouble because he was making a profit off the Tornado Cash platform.<br>
By definition, he was operating a business. A money transmitting business, without a license.<br>
<br>
Writing open source has nothing to do with the case.<br>
<br>
<a href="https://cryptobriefing.com/doj-targets-tornado-cash-profits/" rel="noreferrer" target="_blank">https://cryptobriefing.com/doj-targets-tornado-cash-profits/</a><br>
<br>
> It makes receiving a transaction from autonomous code a crime.<br>
> <br>
> <br>
> Technology is becoming more powerful, more decentralized, and more foundational to society. With that power comes tension between openness and control, privacy and compliance, innovation and regulation.<br>
> <br>
> It’s very easy to overlook these moments, since they feel distant or abstract.<br>
> <br>
> But make no mistake, they set precedents.<br>
> <br>
> They shape culture.<br>
> <br>
> They influence what we, the cypherpunks building at the edge, believe is possible or, rather, permissible.<br>
> <br>
> <br>
> “We must defend our own privacy if we expect to have any.” — Eric Hughes, A Cypherpunk’s Manifesto, 1993<br>
> <br>
> <br>
> Today is a setback for cryptography, for open source and for digital rights int he so-called land of the free [3]. We’ve taken one step back.<br>
> <br>
> It’s time to take two steps forward.<br>
> <br>
> <br>
> The Crypto Wars never ended. They simply waited until the cypherpunks were all but gone.<br>
> <br>
> But you are still here.<br>
> <br>
> Now is the time to rise.<br>
> <br>
> <br>
> - Andrew<br>
> <br>
> <br>
> [1] <a href="https://cointelegraph.com/news/tornado-cash-roman-storm-found-guilty-partial-verdict" rel="noreferrer" target="_blank">https://cointelegraph.com/news/tornado-cash-roman-storm-found-guilty-partial-verdict</a><br>
> <br>
> [2] <a href="https://ofac.treasury.gov/recent-actions/20220808" rel="noreferrer" target="_blank">https://ofac.treasury.gov/recent-actions/20220808</a><br>
> <br>
> [3] <a href="https://en.wikipedia.org/wiki/The_Star-Spangled_Banner" rel="noreferrer" target="_blank">https://en.wikipedia.org/wiki/The_Star-Spangled_Banner</a><br>
> _______________________________________________<br>
> The cryptography mailing list<br>
> <a href="mailto:cryptography@metzdowd.com" target="_blank">cryptography@metzdowd.com</a><br>
> <a href="https://www.metzdowd.com/mailman/listinfo/cryptography" rel="noreferrer" target="_blank">https://www.metzdowd.com/mailman/listinfo/cryptography</a><br>
> <br>
<br>
<br>
-- <br>
-- Howard Chu<br>
CTO, Symas Corp. <a href="http://www.symas.com" rel="noreferrer" target="_blank">http://www.symas.com</a><br>
Director, Highland Sun <a href="http://highlandsun.com/hyc/" rel="noreferrer" target="_blank">http://highlandsun.com/hyc/</a><br>
Chief Architect, OpenLDAP <a href="http://www.openldap.org/project/" rel="noreferrer" target="_blank">http://www.openldap.org/project/</a><br>
</blockquote></div>