With a zero-knowledge proof setup like Tornado.cash, there's a master "secret key" that needs to be used, and it can be derived from multiple sources to kick off the process, but if anyone ever got a hold of all the secret bits from that initial kick-off, they could make fake claims ("prove" something that was false). So, as long as at least one person in the initial ceremony/kick-off really seriously destroys their piece of the puzzle, then the secret is safe and can't be derived by a bad actor. Having lots of people contributing secret bits to the ceremony makes it more likely that *someone* will properly destroy their secret bits after the ceremony (be a good actor) rather than everyone colluding together to save their secret bits for later maliciousness.
Reading the [indictment](https://www.justice.gov/opa/press-release/file/1249026/download), the part that was illegal was the custodial nature (money transmitter) and stated intent (he advertised it as a way to hide drug purchases).
Reading about this tornado project reminded me of the Dining cryptographers problem.
Do you think a DC-net could be implemented on top of Ethereum?
Same reason Lubin said Libra should be built on Ethereum to avoid regulation.
The old guys who sold off our future to Russia want to take the name of Jesus and piledrive it into the ground.
On Eth? no problem!!
On anything else? U better pray boiiiii
I can confirm this. Been hearing a lot of noises as of late. CTRL+A, SHIFT + DEL. Problem solved! :)
EDIT: I peeked at your post history and WOW! You really hate ETH. That's too bad. We will have a huge difference of opinion there. So note it down.... Jesus loves ETH.
There was also a different duping bug abused both on Bitcoin Private (uses same tech) and PIVX (used Zerocoin which is similar tech). I think Zcash and Monero's supply are auditable now, so hopefully Tornado can do the same.