It's hard to make predictions about the future, but as of today, nobody has proposed adopting a similar MimbleWimble Extension Block in Bitcoin. Given the skepticism that previous extension block proposals were received with, I would be surprised if such a proposal got significant traction on Bitcoin.
The way I understand the proposal, the MimbleWimble Extension Block (MWEB) is coupled to the on-chain transaction body via a pegging mechanism. Funds can be moved into the MWEB by paying a special on-chain address and withdrawn from the MWEB by effecting a payment from that address.
Inside the extension block, transactions are created via the MimbleWimble protocol. MimbleWimble transactions must be crafted interactively involving both the sender and receiver, but making use Pedersen commitments the values of inputs and outputs are hidden to anyone but the parties crafting the transaction. Immediately after construction, transaction inputs and outputs form a similar graph structure as on-chain Bitcoin transactions. However, the minimal MimbleWimble transactions are especially designed to allow for transaction cut-through: transactions can be aggregated non-interactively facilitated by some Elliptic Curve magic and due to Pedersen Commitments being homomorphic, which prunes any intermediate outputs that already got spent in the aggregate. (E.g. if there are two transactions (A1βB1+A2) and (A2βC1+A3) they could get aggregated to (A1βB1+C1+A3) pruning the creation and spending of output A2.) As MimbleWimble transactions can be aggregated even across blocks, the chainstate reduces to a remaining kernel per transaction, the peg-in inputs and the currently spendable outputs. On the downside, MimbleWimble transactions are very limited in their scripting capabilities.
In result, an attacker can learn more about the transaction graph by actively monitoring the transaction relay, but a passive monitor catching up later would effectively only see a huge coinjoin that is the aggregate effect of all previous transactions with hidden amounts.
I only skimmed the MWEB proposal to brush up on details. I suggest verifying any information in this post if you have more than a passing interest.
You can get bonuses upto $100 FREE BONUS when you:
π° Install these recommended apps:
π² SocialGood - 100% Crypto Back on Everyday Shopping
π² xPortal - The DeFi For The Next Billion
π² CryptoTab Browser - Lightweight, fast, and ready to mine!
π° Register on these recommended exchanges:
π‘ Binanceπ‘ Bitfinexπ‘ Bitmartπ‘ Bittrexπ‘ Bitget
π‘ CoinExπ‘ Crypto.comπ‘ Gate.ioπ‘ Huobiπ‘ Kucoin.
Comments