Incognito Whitepaper: Incognito Mode for Cryptonetworks

Semaj · February 22, 2021, 10:26am

So where I can find the source code to generate the burning address 15pABFiJVeh9D5uiQEhQX4SVibGGbdAVipQxBdxkmDqAJaoG1EdFKHBrNfs?

Semaj · February 22, 2021, 3:29pm

What I want to state here is that, it is possible that someone (who generated the burning address 15pABFiJVeh9D5uiQEhQX4SVibGGbdAVipQxBdxkmDqAJaoG1EdFKHBrNfs, who knows, right?) knows the corresponding private key. Thus, he/she can spend the coins belonging to this address.

hiennguyen · February 23, 2021, 2:54am

Hi @Semaj,

15pABFiJVeh9D5uiQEhQX4SVibGGbdAVipQxBdxkmDqAJaoG1EdFKHBrNfs
This is the old burning address that generated by this commit.
It’s just a random point on the elliptic curve. So, it returns different results for each execution. We can’t reproduce how to generate this burning address with this code.

Therefore, we upgrade the generation new burning address from the predefined seed as this code.

hieutran · February 23, 2021, 3:01am

Your concern totally makes sense and your solution is still possible. Basically, we can reject any transaction that used one of the inputs (including both the real one and fake ones) belonging to burning addresses 1 & 2. Because all output sent to the burning address is a no privacy transaction.

Semaj · February 23, 2021, 10:24am

The links do not help at all. If the code cannot generate the burning address, who knows if it is randomly chosen or someone just put it there. So basically, as a user, telling me to believe that no one knows the private key is like telling me to stop using blockchains.

Semaj · February 23, 2021, 10:25am

Did the team implement any mechanism for this?

hiennguyen · February 24, 2021, 3:08am

We will add code to reject these transactions that spend inputs from the old burning address.

Semaj · February 24, 2021, 4:20pm

Hope to get your update soon

AloneWalker · March 12, 2021, 3:46pm

Have the check finished yet?

hiennguyen · March 17, 2021, 4:05pm

We are building the privacy v2 - it’s more privacy and more security. And we will reject these transactions that spend input coins from the burning address in this upgrade version. You can see its process here. Thank you.

NibblesnBytes · April 13, 2021, 8:42am

Is there any reason that that burn address couldn’t have been 0000000000? I think the community would agree that it would be hard to know the seed of this account. Another option is to take the ASCII for BURNBURNBURN and use the B64 encode for our burn address.

AloneWalker · April 15, 2021, 6:18pm

easy thing they never thought of

AgAgent · May 19, 2021, 9:58am

Hi team, I’m from Augmented Finance, the new DeFi lending protocol, augmented by AI: https://docs.augmented.finance. I saw Coinspect has audited Incognito. Kindly ask you to answer some questions regarding their audit process.

Did they perform on time or were late and didn’t acknowledge that?
How cooperative they were?
Did they miss any critical bugs that put the funds of your users at risk?
Did they help you with a list of actions required after the audit to improve the security of the protocol?

duc · May 19, 2021, 10:01am

Just gave you the answer over Telegram, thanks.