'%3e%3crect%20x='109.185'%20y='253.397'%20width='350.859'%20height='857.656'%20fill='white'/%3e%3cpath%20d='M274.77%20708.572H233.194V888.205H286.632C302.651%20888.205%20314.635%20883.711%20322.461%20875.088C330.287%20866.465%20334.322%20851.404%20334.322%20830.149V779.138C334.322%20752.539%20329.797%20734.2%20320.382%20723.997C310.966%20713.795%20295.681%20708.451%20274.77%20708.451V708.572Z'%20fill='%23FF5C00'/%3e%3cpath%20d='M310.966%20610.558C320.015%20601.206%20324.539%20585.295%20324.539%20563.19V530.518C324.539%20490.559%20308.887%20470.519%20277.705%20470.033H232.949V624.768H269.512C287.977%20624.768%20302.039%20619.91%20311.088%20610.436L310.966%20610.558Z'%20fill='%23FF5C00'/%3e%3cpath%20d='M277.582%200C124.362%200%200%20123.399%200%20275.704V1069.3C0%201221.48%20124.239%201345%20277.582%201345C430.803%201345%20555.165%201221.6%20555.165%201069.3V275.704C555.165%20123.52%20430.926%200%20277.582%200ZM426.523%20833.064C426.523%20878.367%20414.539%20912.739%20390.817%20936.423C375.898%20951.241%20356.7%20961.322%20333.221%20966.909V987.677C333.221%201002.5%20320.993%201014.64%20306.075%201014.64C291.156%201014.64%20278.805%201002.5%20278.805%20987.677V971.888H232.949V987.677C232.949%201002.5%20220.721%201014.64%20205.803%201014.64C190.884%201014.64%20178.655%201002.5%20178.655%20987.677V971.888H170.218C150.53%20971.888%20140.625%20962.05%20140.625%20942.496V415.743C140.625%20396.188%20150.53%20386.35%20170.218%20386.35H178.655V357.201C178.655%20342.383%20190.884%20330.238%20205.803%20330.238C220.721%20330.238%20232.949%20342.383%20232.949%20357.201V386.35H278.805V357.201C278.805%20342.383%20291.034%20330.238%20306.075%20330.238C321.115%20330.238%20333.221%20342.383%20333.221%20357.201V388.78C333.221%20389.994%20332.977%20391.087%20332.855%20392.18C354.499%20397.524%20371.863%20406.512%20384.703%20419.386C406.469%20441.491%20417.597%20475.377%20417.597%20521.045V544.364C417.597%20604.363%20397.42%20642.743%20357.556%20659.14V660.719C403.656%20676.265%20426.646%20717.074%20426.646%20782.782V833.064H426.523Z'%20fill='%23FF5C00'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_1_174'%3e%3crect%20width='555'%20height='1345'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
- Confidential Addresses and Confidential Transactions
- Blinding Keys
In this section, you will learn how to use the Confidential Transactions feature of Elements.
All addresses in Elements are, by default, blinded using Confidential Transactions, which keep the amount and type of assets transferred visible only to participants in the transaction (and those they choose to reveal the blinding key to), while still cryptographically guaranteeing that no more coins can be spent than are available.
Confidential Addresses and Confidential Transactions
By default, when you create a new address in Elements using the
getnewaddress command, it is created as a confidential address.To demonstrate confidential transactions, we'll have e2 send itself some funds and then attempt to view the transaction from e1. This will demonstrate the confidential nature of transactions in Elements.
Every new address generated by an Elements node is confidential by default. We can demonstrate this by getting e2 to generate a new address.
e2-cli getnewaddress
Note that the address begins with 'e1'. This identifies it as a Confidential Address. Examining the address in more detail using the getaddressinfo command reveals additional details about the address.
e2-cli getaddressinfo <address>
You can see that there is a confidential_key property, which indicates that it is a confidential address.
The confidential_key is the public blinding key, which is added to the confidential address itself. This is the reason why a confidential address is so long.
It also has an associated unconfidential address. If you wish to use regular, non-confidential transactions within Elements, please send assets to this address instead of the one with the 'lq1' prefix.
We can now have e2 send some funds to the address it generated. This will later demonstrate that e1, as it is not one of the transacting parties, will not be able to view the transaction details.
e2-cli sendtoaddress <address>
Note the transaction ID. Confirm the transaction.
e2-cli -generate 101
Looking at the transaction, where e2 sent some funds to itself from the perspective of e2 itself.
e2-cli gettransaction <txid>
Scrolling up the transaction details, you can see that e2 can view the amounts sent and received as well as the asset transacted. You can also see the amountblinder and assetblinder properties, which are used to blind the details from other nodes not involved in the transaction.
To check the details of the same transaction from e1, we first need to get the raw transaction details.
e1-cli getrawtransaction <txid>
That returns raw transaction details. If you look within the vout section, you can see that there are three instances. The first two instances are the receiving and change amounts, and the third is the transaction fee. Of these three amounts, the fee is the only one in which you can see a value, as the fee itself is always unblinded within Elements.
Blinding Keys
What the first two VOUT sections show are "blinded ranges” of the value amounts and the commitment data, which acts as proof of the actual amount and type of asset transacted.
Even if we were to import e2's private key into e1's wallet, it would still not be able to see the amounts and type of asset transacted because it still has no knowledge of the blinding key used by e2. We'll prove this by importing the private key used by e2's wallet into e1's. First, we need to export the key from e2
e2-cli dumpprivkey <address>
Then import it into e1.
e1-cli importprivkey <privkey>
Now we can prove that e1 can still not see the values.
e1-cli gettransaction <txid>
Indeed, it shows 0 as the tx amount when it was actually 1.
To view the actual, unblinded value, we need the blinding key. To do this, we first export the blinding key from e2.
e2-cli dumpblindingkey <address>
Then import it into e1.
e1-cli importblindingkey <address> <blinding key>
Now, when we get the transaction details from e1.
e1-cli gettransaction <txid>
It shows that with the blinding key imported, we can now view the actual value of 1 within the transaction.
In this section, we've seen that the use of a blinding key hides the amount and type of assets in a transaction, and that by importing the right blinding key, we can reveal those values. In practical use, a blinding key may, for example, be given to an auditor, should there be a need to verify the amounts and types of assets held by a party. The Confidential Transactions feature of Elements also allows for “range proofs” to be performed. Range proofs can prove that an amount of an asset is held within a given range, without the need to expose the actual amount itself.
We have also seen that Confidential Transactions are optional, but enabled by default when a new address is generated.
That's it for this lesson; good luck on the quiz, and see you in the next one!