The traditional banking model achieves a level of privacy by limiting access to information to the parties involved and the trusted third party.The necessity to announce all transactions publicly precludes this method, but privacy can still be maintained by breaking the flow of information in another place: by keeping public keys anonymous.
传统的银行模型,通过限制交易各方和可信第三方信息访问权的方式,来达到一定级别的私密。(比特币)必须公开通告所有交易的特性与这种方式八字不合,但是通过在另一处打断信息流,隐私权仍然可以保留,即:保持公钥的匿名性。
The public can see that someone is sending an amount to someone else, but without information linking the transaction to anyone. This is similar to the level of information released by stock exchanges, where the time and size of individual trades, the "tape", is made public, but without telling who the parties were.
公众可以看到某人向某人发送了一定金额,却看不到与这笔交易关联的任何人的信息。这和证券交易所发布的信息级别类似,在什么时间有多大规模的个体交易,即所谓的“行情”,是公开的,但并不透露各方是谁。
As an additional firewall, a new key pair should be used for each transaction to keep them from being linked to a common owner. Some linking is still unavoidable with multi-input transactions, which necessarily reveal that their inputs were owned by the same owner. The risk is that if the owner of a key is revealed, linking could reveal other transactions that belonged to the same owner.
还有一道额外的防火墙,即每一笔交易都应使用一对新的密钥以防止通过这些密钥关联到一个共同的所有者。在多输入的交易当中,一些关联也是不可避免的,这些交易必然暴露了它们的多个输入来源于同一个所有者。(这当中的)风险在于,一旦密钥的所有者被暴露,其关联将暴露该所有者的其他交易。
注:第9部分讲到每一笔交易有两个输出,一个用于支付,一个用于找零。实际上,结合新密钥对的生成,可以理解为每次交易都花掉了所有资金,只是找零的部分支付给了新的“自己”。
公钥的匿名性,构成了比特币独特的身份隔离机制。而“用过即弃”的密钥使用方式,又加强了交易身份的猜解难度。这种对隐私的保护方式让人又爱又恨。一方面,公众只能看到金额在不同的账户之间流动,却无法具体定位账户背后现实的自然人,保证了账户私密性;另一方面,如果某个人遗失了密钥或者账户资金被盗,基本不存在任何有助于追回资金的旁证,增加了账户管理风险。
这个特性也是比特币被广大权力机构所排斥的根源。虽然账户之间的交易是安全的,但同时也是脱离监管的。没有任何可追溯到人的账户信息,存储在任何一个可通过行使行政权力集中审计的地方。这很容易被非法交易和金融犯罪所利用。但是,监管问题犹如数字货币头上悬着的达摩克利斯之剑,应该催生与之匹配的金融监管新技术和新模式,而不是形成一味否认、避之不及的应对态度。