TokenPay Utilizes Dual-Key Stealth Addresses for Complete Anonymity

Dual-Key Stealth Addresses

Stealth addressing is when a sender takes a public address from a recipient and transforms it to a one-time address. This is publicly unlinkable to the original public address and to any other one-time address. Only the recipient can link all of the payments together. Furthermore, only the recipient can derive the secret key associated with the one-time address. By using the stealth addressing protocol, a recipient can publish one address and receive unlimited publicly unlinkable payments. Dual-key stealth addresses add another layer of security. The TokenPay platform incorporates dual-key stealth addresses. This refers to the pairs of spend/view keys. It allows “decoding” (or removing the unlinkability) stealth addresses without simultaneously allowing them to be spent. This is the ultimate in settlement security and anonymity and it is standard when transacting in TPAY.

Simply put, the TPAY dual-key stealth address can be shared publicly by the recipient but any transaction made out to this address can not be linked back to it. It is completely anonymous. When the stealth address has been ultimately revealed to the payer, it will enable the payee to receive infinite unlinkable payments by TPAY. That means that each payment to a stealth address computes a new unused normal address on which the funds are to be received.

For instance, a potential hacker or eavesdropper will be unable to link the two addresses involved in the transactions. In the figure above P = Hs(rA)G + B is depicted. In this image. P is the final stealth address (one-time output key, the destination where funds will actually be sent), Hs is the hashing algorithm that returns a scalar, r is the new random scalar we chose for this transaction, A is the receiver’s public view key, G is the standard Ed25519 base point (the EdDSA signature scheme), and B is the receiver’s public spend key.