You have to trust whoever generates the entropy for super duper private key
as a one time thing. Otherwise the key owner can steal coins.
Seems like a showstopper to me.
Maybe doable with side chains, so if any one chain is compromised the other
chains can still work.
But we don't have side chains.
So, it's very proof of concept and maybe in the future.
On Mon, May 19, 2014 at 9:16 AM, Amir Taaki <genjix@???> wrote:
> http://zerocash-project.org/media/pdf/zerocash-extended-20140518.pdf
>
>
>
> _______________________________________________
> unSYSTEM mailing list: http://unsystem.net
> https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/unsystem
>
>