Zero-knowledge for DeFi is ‘not the correct answer’ — Multicoin Capital’s Kyle Samani

A number of teams are working to enable zero-knowledge DeFi, but they’re all dealing with the same basic logic problem

by Darren Kleine /
article-image

ADragan/Shutterstock modified by Blockworks

share

Kyle Samani says zero-knowledge proofs have their place, just not in DeFi. “I’m fairly confident ZK is not the correct answer for privacy on-chain.” 

Proving to someone that an individual is old enough to buy alcohol without revealing personal details like an address? “That maps to ZK extraordinarily well,” he says. 

“That’s literally what a zero-knowledge proof does,” he says. “If the goal is to preserve privacy, proving something about yourself, that works very well.” But that’s not the case if the goal is privacy in the context of DeFi, Samani explains.

On the Lightspeed podcast (Spotify/Apple), Multicoin Capital’s Kyle Samani explains why zero-knowledge, or ZK, rollups are not practical solutions for privacy in DeFi.

DeFi requires the notion of a “shared state,” Samani explains. “There’s an LP pool and a limit order… and you have people crossing the spread and you have people doing interactions and there’s now math happening between people.”

“In the world in which people are submitting ZK things to a blockchain to do these kinds of financial transactions, there is no notion of global state,” he says. “Therefore, if there is no notion of global state, you cannot reason about global state.”

Reasoning from the top-down

Samani suggests thinking about the basic premise of zcash (ZEC), the privacy-based cryptocurrency, to illustrate the problem. With zcash, he explains, the proof of any transaction states that a series of UTXOs (unspent transaction outputs) have been sent to a series of private addresses in an “encrypted blob.” 

In the example Samani gives, he says, “the total number of UTXOs I have received is less than the number of UTXOs I have sent out, including the current transaction.”

“Basically, you’re just saying my balance is larger than zero,” he says. 

Theoretically, zcash should never exceed a circulation of 21 million since it is a fork of Bitcoin built with the same supply limit, but there’s no way to audit the supply due to its privacy-based design, according to Samani.

It’s been a fundamental property of zcash since “day one,” Samani says. He points to what could have been a catastrophic bug, reported and remediated by the zcash team in 2019, whereby someone might have been able to mint an unlimited number of zcash in the encrypted pool.

“No one believes that it was taken advantage of, but it was discovered, it was patched and then disclosed afterwards by the Electric Coin Company, which further highlights the fact that there was no way to audit the system from the top-down.” In other words, it’s impossible to know with certainty that the supply of zcash is still fixed at 21 million.

Samani relates the incident to attempts to implement zero-knowledge solutions in DeFi. “If you can’t reason about the system from the top-down, then DeFi, at least DeFi as we know it right now, doesn’t work.”

“There is no XYK. You don’t know what K is, and therefore you don’t know what X and Y are.”

“Collateral management, and are you solvent, and your health factor and all this stuff — those concepts don’t work when everyone is submitting a bunch of private proofs to the chain.” DeFi requires a top-down view to function, Samani says, “And that fundamentally doesn’t map to a bunch of encrypted ZK transactions.” 

A number of teams are working at enabling zero-knowledge SDKs, Samani says, “but they’re all dealing with this very basic logic problem.”

Samani suggests the right way to get to privacy in DeFi is via FHE, or fully homomorphic encryption. Contracts would be encrypted end-to-end, with state transitions applied by validators. “The validators don’t need to actually know what any of the balances are to apply the transitions and run the comparative ‘if statements’ and such.”

“The beauty of that system is that the core logic of the system is preserved,” he says. “That strikes me as the right way to solve the problem.”

Start your day with top crypto insights from David Canellis and Katherine Ross. Subscribe to the Empire newsletter.

Explore the growing intersection between crypto, macroeconomics, policy and finance with Ben Strack, Casey Wagner and Felix Jauvin. Subscribe to the On the Margin newsletter.

The Lightspeed newsletter is all things Solana, in your inbox, every day. Subscribe to daily Solana news from Jack Kubinec and Jeff Albus.

Tags

Upcoming Events

Permissionless III Hackathon

Salt Lake City, UT

MON - TUES, OCT. 7 - 8, 2024

Blockworks and Bankless in collaboration with buidlbox are excited to announce the second installment of the Permissionless Hackathon – taking place October 7-8 in Salt Lake City, Utah. We’ve partnered with buidlbox to bring together the brightest minds in crypto for […]

learn more

Permissionless III

Salt Lake City, UT

WED - FRI, OCTOBER 9 - 11, 2024

Permissionless is a conference for founders, application developers, and users. Come meet the next generation of people building and using crypto.

learn more

recent research

Research Report Templates (1).png

Research

Why Solana Mobile Should 100x Their Phone Production

Solana Mobile is a highly ambitious foray into the mobile consumer hardware market, seeking to open up a crypto-native distribution channel for mobile-first applications. The market for Solana Mobile devices has demonstrated a phenomenon whereby external market actors (e.g. Solana-native projects) continuously underwrite subsidies to Mobile consumers. The value of these subsidies, coming in the form of airdrops, trial programs, and exclusive NFT mints, have consistently covered the cost of the phone and generated positive returns for consumers. Given this trend in subsidies, the unit economics in the market for Mobile devices, and the initial growth rate and trajectory of sales, it should be expected that Solana mobile can clear 1M to 10M units over the coming years. As more devices circulate amongst users, Solana Mobile presents a promising venue for the emergence of killer-applications uniquely enabled by this mobile-first, crypto-native distribution channel.

by Luke Leasure

/

news

article-image

Analysis

Empire Newsletter: How US presidencies map to crypto markets

Plus, breaking down Donald Trump’s shifting crypto stance

by Katherine Ross&David Canellis /
article-image

DeFiMarkets

Mt. Gox customers to receive crypto assets after 10-year wait

Markets are holding relatively steady despite the supply shock

by Donovan Choy /
article-image

Markets

Markets brace for volatility as VIX rises to highest level since April 

Analysts are looking ahead to August, a historically volatile month made more interesting this year by the US presidential election

by Casey Wagner /
article-image

Analysis

On the Margin Newsletter: A notoriously rough month for markets is upcoming

Plus, a look into Lighting Labs’ newest feature

by Casey Wagner /
article-image

Opinion

Crypto investors must embrace new tax rules or risk falling behind

Crypto’s Wild West era is over — it’s time to embrace regulation to secure the future of digital assets

by Zac Townsend /
article-image

Analysis

Lightspeed Newsletter: Wine tokenization on Solana

Plus, Solana has now surpassed Ethereum in trailing 30-day decentralized exchange volume

by Jack Kubinec&Jeff Albus /