taler/exchange
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Update to taxability

Browse Source
This commit is contained in:
Jeffrey Burdges 2017-05-13 15:06:09 +02:00
parent 4f6e71a842
commit d010d31c09
No known key found for this signature in database
GPG Key ID: ABAC7FD1CC100A74
1 changed files with 21 additions and 13 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

34
doc/paper/taler.tex
View File

@ -1376,23 +1376,29 @@ data being persisted are represented in between $\langle\rangle$.
\section{Taxability arguments} \section{Taxability arguments}
We assume the exchange operates honestly when discussing taxability.
We feel this assumption is warratned mostly because a Taler exchange
requires liscenses to operate as a financial institution, which it
risks loosing if it knowingly facilitates tax evasion.
We also expect an auditor monitors the exchange similarly to how
government regulators monitor financial institutions.
In fact, our auditor software component gives the auditor read access
to the exchange's database, and carries out test operations anonymously,
which expands its power over conventional auditors.
\begin{proposition} \begin{proposition}
An auditor can detect an exchange operating either the refresh or Assuming the exchange operates the refresh protocol honestly,
linking protocol dishonestly. a customer operating the refresh protocol dishonestly expects to
loose $1 - {1 \over \kappa}$ of the value of thei coins.
\end{proposition} \end{proposition}
\begin{proof} \begin{proof}
.. Not sure about this one .. An honest esxchange keeps any funds being refreshed if the reveal
\end{proof} phase is never carried out, does not match the commitment, or shows
an incorrect commitment. As a result, a customer dishonestly
\begin{proposition} refreshing a coin looses their money if they have more than one
If the exchange operates the refresh protocol honestly, then dishonet commitment. They have a $1 \over \kappa$ chance of their
a dishonest wallet looses $1 - {1 \over \kappa}$ of the value dishonest commitment being selected for the refresh.
of the coins it refreshes dishonestly.
\end{proposition}
\begin{proof}
.. Can we reference something about cut and choose protocols? Or must we work this all out? ..
\end{proof} \end{proof}
We say a coin is {\em controlled} by a user if the user's wallet knows We say a coin is {\em controlled} by a user if the user's wallet knows
@ -1433,6 +1439,8 @@ for the residual value on $C'$ and runs the linking protocol to
determine if it was refreshed too. determine if it was refreshed too.
\end{proof} \end{proof}
At a result, there is no way for a user to loose control over a coin,
\section{Privacy arguments} \section{Privacy arguments}