And if there is not a specific good reason why this is the case, can I suggest that it would be quite a lot better for privacy to make the receiving t-addresses be single use and spin up a new one for each transaction?
5 Likes
We intend to add address rotation.
9 Likes
A quick mention of another privacy pet peeve: wallets should always warn users when merging t-address inputs (sending a transaction with multiple inputs) because this stores a permanent record on the blockchain that the same user likely controlled both addresses, enabling clustering.
Perhaps
This transaction will permanently reveal to the public:
- The input addresses used to fund it
- That the owner of these input addresses is likely the same person
- The recipient (if t-addr)
- The amounts sent to the recipient (if t-addr)
- The date and time of the transaction
- If not running your own lightwalletd node, it is possible your IP addresses are logged by this server: 1.2.3.4:443
Confirm?
Personally I love T-addresses and I think that they’re a huge, if controversial, differentiator to have around. But we really could do better to steward the UX around them for less obsessive people.
4 Likes
If the process of consolidating transparent funds to shielded in zashi is doing this 
kind of merging, then i vote for changing that to making each t-address → z-address a discrete transaction.
1 Like
@joshs any chance you have a ballpark timeframe for when this may land?
1 Like
Likely Q2.
3 Likes
Solid request, looking forward to the t-address rotation update
It seems to me it reuses z addresses as well. As like if it knew only one z address. This is odd
reusing z address is common practice from privacy standpoint you dont lose any privacy as nobody can track your assets or transactions on chain using z address.
unless ofc you want more than 1 wallet for different use cases or to separate money. then multiple z addresses can be good - and i think its planned in the future?
Using the same z address does impact your privacy though because it can reveal information about you.
If I post my z address on Facebook so all my FB friends can see or more if my fb profile is public (for example because I am doing a garage sale, asking for donations, etc)…and then I post the same z address on here or another public forum for my politics website or to sell VPN, email, storage, or LLM services for zcash then anyone who can see my FB profile will be able to tie me to my politics website or the websites I sell those services.
2 Likes
yeah, thats true.
only use z address multiple times only in places where you are ok that the address could be tied to your identity. even tho none of the funds or transactions can be seen by anyone else.
Yeah, unfortunately currently Zashi doesn’t allow creating multiple z-addresses (or t-addresses). As much as I like the simplicity of Zashi, I think it will be much more compelling to use once we can create and manage multiple addresses.
Things are shaping up very nice for Zcash, but I think this is a significant missing piece that helps tie and make private commerce seamless with Zcash. Flexa allowing shielded payments, Mayaprotocol and Near allowing crosschain, Keystone wallet supporting shielded Zcash…now we just need Zashi to allow managing multiple addresses with these to really make all this powerful to use for all kinds of commerce.
2 Likes