Can crypto Privacy Pools help balance privacy and regulation?
Ethereum co-founder Vitalik Buterin recently authored a research paper, the primary focus of which was integrating privacy features into blockchain transactions while ensuring compliance with a range of regulatory requirements.
Experts from various backgrounds collaborated on this research project, including early Tornado Cash contributor Ameen Soleimani, Chainalysis chief scientist Jacob Illum, and researchers from the University of Basel.
The diverse team reflects the interdisciplinary nature of the research, drawing insights from cryptocurrency, blockchain security and academic scholarship.
The paper suggests a protocol known as “Privacy Pools,” which can act as a regulation-compliant tool aimed at improving the confidentiality of user transactions.
How do Privacy Pools work?
Privacy Pools, as Buterin and the team explain in the research paper, aim to protect the privacy of transactions while separating criminal activities from lawful funds by organizing them into isolated sets or categories, allowing users to prove to regulators that their funds are not mixed with illicit funds.
This is accomplished through the use of techniques like zero-knowledge proofs to demonstrate the legitimacy of the transactions and the absence of involvement with criminal activities.
Zero-knowledge proofs are cryptographic techniques that allow one party (the prover) to demonstrate knowledge of a specific piece of information to another party (the verifier) without revealing any details about the information itself.
When users want to take their money out of the Privacy Pool, they can choose to create a zero-knowledge proof. This proof does two things: First, it confirms that the user’s transaction is legitimate and doesn’t involve a blockchain address associated with criminal activity. Second — and more importantly for users — it keeps their identities private.
Association sets
Another crucial part of how Privacy Pools work is the idea of “association sets,” subsets of wallet addresses within a cryptocurrency pool. When making withdrawals from the pool, users specify which association set to use. These sets are designed to include only noncritical or “good” depositors’ wallet addresses while excluding those considered “bad” depositors.
The purpose of association sets is to maintain anonymity, as withdrawn funds can’t be precisely traced to their source. However, it can still be proven that the funds come from a noncritical source.
Association set providers (ASPs) create these sets and are trusted third parties responsible for analyzing and evaluating the pool’s contributing wallets. They rely on blockchain analytics tools and technologies used in Anti-Money Laundering and transaction analysis.
Association sets are formed through two distinct processes: inclusion (membership) proofs and exclusion proofs.
Inclusion, also known as membership, is the process of curating a selection based on positive criteria, much like creating a “good” list. When considering deposits, for instance, you examine various options and identify those with clear evidence of being secure and low-risk.
Recent: Multiple buyers consider purchase and relaunch of ‘irreparable’ FTX
Exclusion involves forming a selection by focusing on negative criteria, much like compiling a “bad” list. In the context of deposits, ASPs evaluate different options and pinpoint those that are evidently risky or unsafe. Subsequently, they generate a list that comprises all deposits except for the ones categorized as risky, thereby excluding them from the list.
The paper takes an example of a group of five people: Alice, Bob, Carl, David and Eve. Four are honest, law-abiding individuals who want to keep their financial activities private.
However, Eve is a thief or hacker, and this is well known. People may not know who Eve really is, but they have enough proof to know that the coins sent to the address labeled “Eve” come from a “bad” source.
When these individuals use the Privacy Pool to withdraw money, they will be grouped together by ASPs with other users based on their deposit history via association sets.
Alice, Bob, Carl and David want to make sure their transactions are kept private while reducing the chances of their transactions looking suspicious at the same time. Their deposits have not been linked to any potential malicious activity, so the ASP chooses for them to be associated only with each other. So, a group is created with just their deposits: Alice, Bob, Carl and David.
Eve, on the other hand, also wants to protect her privacy, but her own deposit — which comes from a bad source — cannot be left out. So, she’s added to a separate association set that includes her deposit and the others, forming a group with all five user’s deposits: Alice, Bob, Carl, David and Eve.
Essentially, Eve is excluded from the original group with the trusted deposits (Alice, Bob, Carl and David) but is instead added to a separate group that includes her transactions and the others. However this doesn’t mean that Eve can use the privacy pool to mix her funds.
Now, here’s the interesting part: Even though Eve doesn’t provide any direct information about herself, it becomes clear by the process of elimination that the fifth withdrawal must be from Eve, as she’s the only one associated with all five accounts in the withdrawal records (since she was added to the separate group that included all five deposits).
Association sets help Privacy Pools by separating trustworthy users from questionable ones.
This way, transactions from reliable sources stay private, while any shady or suspicious ones become more visible and easier to spot.
This way, malicious actors can be tracked, which can satisfy regulatory requirements since the bad users won’t be able to use the pools to hide their activities.
What are others saying about the proposals?
Buterin’s paper has sparked discussions and garnered attention from the blockchain community and industry experts. Ankur Banerjee, co-founder and chief technology officer of Cheqd — a privacy-preserving payment network — believes Privacy Pools can make it easier for noncentralized entities to identify bad actors.
Banerjee told Cointelegraph, “The approach outlined could make this kind of money laundering analysis more democratized, and available to DeFi protocols as well. In fact, in the case of crypto hacks, it’s very hard to prevent hackers from trying to launder what they’ve stolen via DeFi protocols — it’s only centralized exchanges where they can be more easily caught/stopped.”
Seth Simmons (aka Seth For Privacy), host of the privacy-focused podcast Opt Out, told Cointelegraph, “While the concept is technically interesting in that it does minimize the data given over to regulated entities, it asks and answers the wrong question. It asks the question ‘What privacy are we allowed to have?’ instead of ‘What privacy do we need to have?’”
Simmons continued, saying, “For years now, there has been no balance between user anonymity and regulatory compliance, with the current ruling powers having an almost total visibility into the actions we take and the ways we use our money.”
“Privacy Pools must seek to right this imbalance by providing the maximum privacy for users possible today instead of attempting to lessen that privacy to please regulators.”
Banerjee expressed concerns about the built-in delays for adding deposits to association sets, stating, “Tokens can’t immediately get included in a ‘good’ or ‘bad’ set since it takes some time to figure out whether they are ‘good’ or ‘bad.’ The paper suggests a delay similar to seven days before inclusion (this could be higher or lower).”
Banerjee continued, “But what’s the right amount of time to wait? Sometimes, like in the case of crypto hacks, it’s very obvious soon after the hack that the coins might be bad. But in the case of complex money laundering cases, it might be weeks, months or even years before tokens are figured out to be bad.”
Despite these concerns, the paper says deposits won’t be included if they are linked to known bad behavior such as thefts and hacks. So, as long as malicious behavior is detected, this should not be a concern.
Additionally, people with “good” deposits can prove they belong to a trusted group and gain rewards. Those with “bad” funds can’t prove their trustworthiness, so even if they deposit them in a shared pool, they won’t gain any benefits. People can easily spot that these bad funds came from questionable sources when they’re withdrawn from a privacy-enhancing system.
Recent regulatory actions
Recent actions within the blockchain space have underscored the critical need for privacy and compliance solutions. One notable incident involved the United States government imposing sanctions on Tornado Cash, a cryptocurrency mixing service.
This move was prompted by allegations that Tornado Cash had facilitated transactions for the North Korea-linked hacking group Lazarus. These sanctions effectively signaled the U.S. government’s heightened scrutiny of privacy-focused cryptocurrency services and their potential misuse for illicit purposes.
Chris Blec, host of the Chris Blec Conversations podcast, told Cointelegraph, “It’s the easy way out to just look at recent news and decide that you need to start building to government specifications, but sadly, that’s how many devs will react. They’re not here for the principle but for the profit. My advice to those who care: Build unstoppable tech and separate it from your real-world identity as much as possible.”
Magazine: Slumdog billionaire 2: ‘Top 10… brings no satisfaction’ says Polygon’s Sandeep Nailwal
As the adoption of cryptocurrencies and decentralized applications continues to grow, governments and regulatory bodies worldwide grapple with balancing enabling innovation and safeguarding against illegal activities.
Simmons believes it is better to have tools governments cannot shut down: “Regulators will continue to push the imbalance of privacy and surveillance further in their direction unless we actively seek to build tools that give power back to the individual.”
He continued, “Tornado Cash is a perfect example of this, as they even went above and beyond and complied with regulators as much as was technically possible, and yet that wasn’t enough for ‘them.’ Even after supposedly becoming compliant, they remained a target of the U.S. government because governments do not want a balance between compliance and privacy — they want total surveillance, which leads to total power.”
“What we need to build in the space are tools (like Tornado Cash) that are resistant to state-level attacks and impossible to shut down or censor, as this is the only way to ensure we have tools at our disposal to defend our freedoms and keep governments in check. Privacy or bust.”
US Democrat lawmakers have launched a multi-angle attack on President Donald Trump’s crypto ventures with two bills and a subcommittee inquiry aimed at cutting his ability to profit from the initiatives.
The Modern Emoluments and Malfeasance Enforcement Act, or the MEME Act, aims to prevent federal officials from using their position to profit from memecoins, Democrat Senator Chris Murphy said in a May 6 statement.
If passed, the MEME Act prohibits the president, vice president, members of Congress, senior executive branch officials, their spouses and children from issuing, sponsoring, or promoting a security, future, commodity, or digital asset, according to the bill’s description.
Today I’m introducing a bill – the MEME Act – to ban a President or Member of Congress from issuing a meme coin.
The Trump Coin is the biggest corruption scandal in the history of the White House. @RepLiccardo and I are determined to put an end to this corruption – for good. pic.twitter.com/nQL9ZfIYYV
— Chris Murphy 🟧 (@ChrisMurphyCT) May 6, 2025
Violators could face civil penalties of up to $250,000 and be required to fork over any profits to the US Treasury. Criminal penalties could also apply, including fines and up to five years behind bars.
US Representative Sam Liccardo, another Democrat, introduced companion legislation in the House of Representatives. However, Trump’s party, the Republicans, controls both chambers, and the legislation will need Republican support.
Meanwhile, Democratic Senator Richard Blumenthal, a ranking member of the Permanent Subcommittee on Investigations (PSI), said in a May 6 statement that the committee is opening a preliminary inquiry into the Official Trump (TRUMP) token, Trump-backed platform World Liberty Financial (WLFI), and other associated business ventures.
As part of the inquiry, the PSI sent letters to the company behind the Trump coin, Fight Fight Fight, and WLFI, asking for records and communications between the companies and the Trump organization.
With his cryptocurrency schemes, Trump is putting a for sale sign in front of the White House. That’s why, as Ranking Member of the Permanent Subcommittee on Investigations, I’m launching an inquiry into this brazen corruption whose scope & scale is staggering. pic.twitter.com/3SiaCrthN8
— Richard Blumenthal (@SenBlumenthal) May 6, 2025
At the same time, Blumenthal says the subcommittee is asking for answers about what steps the firms have taken to address possible conflicts of interest.
Main points of interest flagged by the PSI include fees the president is making on the TRUMP token and the nearly 50% spike in value from $9.40 to $13.65 after the TRUMP coin website announced on April 23 that the top 220 holders of the token would be invited to a gala dinner at the White House.
Soon after launch on Jan. 18, the Trump coin hit its all-time high of $73.43, according to CoinGecko. However, it has since lost 85% of its value and is trading for $11.13.
More than half of TRUMP holders in profit
Roughly two million wallets have bought TRUMP, with an extra 54,000 adding the token to their stash after the dinner announcement, according to data shared with Cointelegraph from blockchain analysis firm Chainalysis.
Around 764,000 of these, most with small holdings, lost money on the coin, while the 58 investors in the token have made profits of over $10 million each, totaling an estimated $1.1 billion.
At the same time, Chainalysis says the memecoin creator has made $320 million so far, with an extra $1.3 million coming in since the White House dinner announcement.
Related: Dem lawmakers object to hearing, citing ‘Trump’s crypto corruption’
Meanwhile, a trucking logistics firm announced plans on April 30 to build a TRUMP coin treasury through a $20 million convertible note issuance.
Javier Selgas, CEO of Freight Technologies, said the tokens are an “excellent way to diversify our crypto treasury and also an effective way to advocate for fair, balanced, and free trade between Mexico and the US.”
The firm also acquired $5.2 million of the Fetch.ai network’s utility token FET on April 1.
Magazine: Mystery celeb memecoin scam factory, HK firm dumps Bitcoin: Asia Express
South Korea’s Democratic Party leader Lee Jae-myung has reportedly become the latest presidential candidate to promise the approval of spot crypto exchange-traded funds (ETFs) and other crypto-friendly measures, should he be elected.
Lee announced his crypto promises on May 6 as part of a broader initiative to provide more investment opportunities for Korea’s youth, one of the main target demographics for the fast-approaching June 3 election.
“I will create a safe investment environment so that young people can [build] assets and plan for the future,” The Korea Economic Daily (KED) quoted Lee as saying in Korean.
He also promised the legalization of spot crypto ETFs, lower transaction fees, and more consumer protection measures.
Lee’s Democratic Party of Korea is the favorite to win the presidential election with 42% support, according to a survey conducted by Korea’s National Barometer Survey between April 24 and 30. Korea’s acting president, Han Duck-soo, came in second at 13%.
This is the first time Lee has mentioned crypto as part of his presidential campaign, KED noted.
The Democratic Party made similar promises in its 2024 general election campaign, including passing spot crypto ETF legalization. However, progress stalled, KED said.
South Korea’s People Power Party makes similar promises
South Korea’s ruling party, the People Power Party, also reportedly made crypto policy promises in late April, which included allowing spot crypto ETFs, dismantling Korea’s controversial one-exchange-one-bank rule, and establishing a regulatory framework for stablecoins.
The one-exchange-one-bank rule in South Korea is a regulation that limits each crypto exchange to working with only one local bank. It is intended to prevent money laundering and strengthen transparency by ensuring that the identities of crypto investors can be verified when trading crypto.
South Korean industry officials estimate that 16 million or 31% of the country’s 51.7 million people have access to a crypto account.
Related: North Korean spy slips up, reveals ties in fake job interview
Kim Moon-soo is running as the People Power Party’s candidate — a party previously led by Yoon Suk Yeol, who was impeached after he declared martial law in December.
The controversial measure triggered a considerable fall in Bitcoin (BTC), Ether (ETH), and other cryptocurrencies. However, most coins recovered when the martial law was lifted around six hours later.
Korea’s Constitutional Court upheld the impeachment of Yoon in a unanimous 8–0 decision decision on April 4, effectively removing him from office.
Magazine: Crypto wanted to overthrow banks, now it’s becoming them in stablecoin fight
The US Commodity Futures Trading Commission (CFTC) is seeking permission from the court to drop an appeal against prediction market Kalshi. The move could allow the platform to offer political event contracts to users without contest.
In a May 5 filing in the US Court of Appeals for the District of Columbia Circuit, lawyers for the CFTC filed an unopposed motion for voluntary dismissal, suggesting an agreement with Kalshi. The motion, subject to approval by the court, could end the CFTC’s appeal against a federal court ruling that the financial regulator could not bar Kalshi from listing political event contracts, i.e., bets on elections.
Kalshi stipulated in a joint filing that the company would “bear its own costs, court fees and attorney fees incurred” if the court granted the CFTC’s motion to dismiss. The platform said that “election markets are here to stay” in a May 6 X post following the filing.
The betting platform initially filed a lawsuit against the CFTC in 2023 in response to the regulator ordering Kalshi to stop offering political event contracts. The company won in the lower court, prompting the appeal by the CFTC in September 2024.
Motion to drop the appeal after the change in administration?
The case was handled mainly before the US election and the appointment of acting CFTC chair Caroline Pham under President Donald Trump. CFTC Commissioner Summer Mersinger, nominated by former President Joe Biden, reportedly echoed Kalshi’s sentiment in February, claiming that election prediction markets were “here to stay.”
Related: Kalshi accepts Bitcoin deposits in bid to woo crypto-native users
Launched in 2021, Kalshi became popular among many crypto users in part due to bets related to the 2024 US election. Though the CFTC argued in its appeal that betting on the elections could result in “spectacular manipulation” of markets and harm to the public interest, the regulator under Pham and Trump appeared to have reversed its position with the motion to dismiss.
Magazine: Pokémon on Sui rumors, Polymarket bets on Filipino Pope: Asia Express
-
Sports3 years ago‘Storybook stuff’: Inside the night Bryce Harper sent the Phillies to the World Series
-
Sports1 year agoStory injured on diving stop, exits Red Sox game
-
Sports2 years agoGame 1 of WS least-watched in recorded history
-
Sports2 years agoMLB Rank 2023: Ranking baseball’s top 100 players
-
Sports4 years ago
Team Europe easily wins 4th straight Laver Cup
-
Environment2 years agoJapan and South Korea have a lot at stake in a free and open South China Sea
-
Environment2 years agoGame-changing Lectric XPedition launched as affordable electric cargo bike
-
Business3 years agoBank of England’s extraordinary response to government policy is almost unthinkable | Ed Conway