# Nummatus: A Privacy Preserving Proof of Reserves Protocol for Quisquis

Conference paper

First Online:

## Abstract

Quisquis is a recently proposed design for a privacy-focused cryptocurrency. We present *Nummatus*, a privacy preserving proof of reserves protocol for Quisquis. Nummatus enables exchanges to create a Pedersen commitment to the amount of Quisquis coins they own, without revealing the exact accounts they own. These commitments can be combined with a commitment to the total liabilities of an exchange to generate a proof of solvency. The Nummatus protocol also facilitates detection of account sharing collusion between exchanges. Our simulations show that the cost of using Nummatus instead of a non-private proof of reserves protocol is not prohibitive.

## Keywords

Proof of reserves Quisquis Cryptocurrency Privacy in blockchain## References

- 1.Grin rust-secp256k1-zkp github repository. https://github.com/mimblewimble/secp256k1-zkp/
- 2.Monero 0.13.0 Beryllium Bullet Release Notes. https://src.getmonero.org/2018/10/11/monero-0.13.0-released.html. Accessed 02 Aug 2019
- 3.Monero website. https://getmonero.org/
- 4.Nummatus simulation code. https://github.com/Arnabjana1999/Nummatus
- 5.What are zk-SNARKs? https://z.cash/technology/zksnarks/. Accessed 02 Aug 2019
- 6.Zcash website. https://z.cash/
- 7.Bao, F., Deng, R.H., Zhu, H.F.: Variations of Diffie-Hellman problem. In: Qing, S., Gollmann, D., Zhou, J. (eds.) ICICS 2003. LNCS, vol. 2836, pp. 301–312. Springer, Heidelberg (2003). https://doi.org/10.1007/978-3-540-39927-8_28CrossRefGoogle Scholar
- 8.Camenisch, J.: Group signature schemes and payment systems based on the discrete logarithm problem. Ph.D. dissertation, ETH Zürich (1998)Google Scholar
- 9.Camenisch, J., Stadler, M.: Proof systems for general statements about discrete logarithms. Technical report (1997)Google Scholar
- 10.Cramer, R., Damgård, I., Schoenmakers, B.: Proofs of partial knowledge and simplified design of witness hiding protocols. In: Desmedt, Y.G. (ed.) CRYPTO 1994. LNCS, vol. 839, pp. 174–187. Springer, Heidelberg (1994). https://doi.org/10.1007/3-540-48658-5_19CrossRefGoogle Scholar
- 11.Dagher, G.G., Bünz, B., Bonneau, J., Clark, J., Boneh, D.: Provisions: Privacy-preserving proofs of solvency for Bitcoin exchanges. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (ACM CCS), New York, NY, USA, pp. 720–731 (2015)Google Scholar
- 12.Decker, C., Guthrie, J., Seidel, J., Wattenhofer, R.: Making Bitcoin exchanges transparent. In: Pernul, G., Ryan, P.Y.A., Weippl, E. (eds.) ESORICS 2015. LNCS, vol. 9327, pp. 561–576. Springer, Cham (2015). https://doi.org/10.1007/978-3-319-24177-7_28CrossRefGoogle Scholar
- 13.Dutta, A., Vijayakumaran, S.: MProve: A proof of reserves protocol for Monero exchanges. In: 2019 IEEE European Symposium on Security and Privacy Workshops (EuroS&PW), pp. 330–339, June 2019. https://doi.org/10.1109/EuroSPW.2019.00043
- 14.Dutta, A., Vijayakumaran, S.: Revelio: A MimbleWimble proof of reserves protocol. In: 2019 Crypto Valley Conference on Blockchain Technology (CVCBT), pp. 7–11, June 2019. https://doi.org/10.1109/CVCBT.2019.000-5
- 15.Fauzi, P., Meiklejohn, S., Mercer, R., Orlandi, C.: Quisquis: A new design for anonymous cryptocurrencies. Cryptology ePrint Archive, Report 2018/990 (2018). https://eprint.iacr.org/2018/990
- 16.Pedersen, T.P.: Non-interactive and information-theoretic secure verifiable secret sharing. In: Feigenbaum, J. (ed.) CRYPTO 1991. LNCS, vol. 576, pp. 129–140. Springer, Heidelberg (1992). https://doi.org/10.1007/3-540-46766-1_9CrossRefGoogle Scholar
- 17.Saberhagen, N.v.: CryptoNote v 2.0. White paper (2013). https://cryptonote.org/whitepaper.pdf
- 18.Wiktionary contributors: nummatus – Wiktionary, the free dictionary. https://en.wiktionary.org/wiki/nummatus. Accessed 02 Aug 2019
- 19.Wiktionary contributors: quisquis – Wiktionary, the free dictionary. https://en.wiktionary.org/wiki/quisquis. Accessed 02 Aug 2019
- 20.Wiktionary contributors: simplus – Wiktionary, the free dictionary. https://en.wiktionary.org/wiki/simplus. Accessed 02 Aug 2019
- 21.Wilcox, Z.: Proving your Bitcoin reserves. Bitcoin Talk Forum Post, May 2014. https://bitcointalk.org/index.php?topic=595180.0

## Copyright information

© Springer Nature Switzerland AG 2019