Tornado.Cash has become the largest privacy solution on Ethereum today. Tornado.Cash has been fully autonomous and decentralized, but it’s static — it has no way to evolve. This is a proposal to change that. If this proposal is adopted, then the governance of Tornado.Cash will be entrusted to its users, and Tornado.Cash will be allowed to evolve under the stewardship of its community. This way, the users of Ethereum will control their own privacy protocol.

Here is how a proposal for how the Tornado.Cash governance system could work:

TORN Token

TORN is an ERC20-compatible token with a fixed supply that governs Tornado.Cash…


Image for post
Image for post

We are excited to announce that we have launched an open-source library that Ethereum developers can use to get the current gas price for their dApp. It automatically uses the Chainlink gas oracle as the default reference price when the off-chain APIs do not or cannot respond. It’s currently live and integrated into the Tornado Cash UI for calculating a user’s recommended gas fee.

Tornado.cash requires users to pay gas fees when making deposits, as well as for relayer services when making withdrawals. Currently, our UI relies on one of four off-chain API endpoints as gas price feeds for calculating…


Maintaining financial privacy is essential to preserving our financial freedom. However, it should not come at the cost of non-compliance.

We all remember the important event, of the blockchain history, that took place just a few months ago, when a user was blocked by one of the well-known centralized exchanges for trying to utilize a privacy solution. If you would like to read more about it, the full story can be found here.

That is why we decided to be ahead of the game and over the past few weeks implemented certain compliance-related tools including Tornado.cash Compliance Tool. If it…


We have some great news! As we promised from our previous report, we have set the operator address to 0x000000000000000000000000000000000000 on all instances (0.1 ETH, 1 ETH, 10 ETH, and 100 ETH), so that from now on, all tornado.cash contracts are immutable and unstoppable.

Image for post
Image for post

What it means

From now on, Tornado.cash is largely living by the precepts that code is law. The Tornado.cash smart contracts are running on Ethereum and the community has the decision on whether or not to use our tools.

There are pros and cons to this. The positive thing is that no one can modify the smart contracts and…


We are happy to announce that our trusted setup ceremony is now complete.

With a record 1114 contributions this was by far the largest Trusted Setup Ceremony to date. By comparison, all other trusted setup ceremonies had less than 200 participants. Just as we hoped, everything went smoothly and we would like to thank the Ethereum Community for their support and participation.

Image for post
Image for post

Statistics

  • A full list of participants can be found here
  • There were a total of 1114 contributions.
  • Of those, 450 provided their identity while 664 remained anonymous.
  • There were 259 public attestation tweets.
  • 54 contributions were made using Rust…


We are happy to announce that Tornado.cash trusted setup ceremony has been launched. We ask crypto community to help make Tornado.cash fully trustless by contributing to the ceremony.

Image for post
Image for post

What does it mean?

Tornado.cash utilizes zk-SNARK technology to provide anonymity for withdrawals. The zk-SNARK requires a trusted setup which is a special procedure that generates the prover and verifier keys. In order to make sure that it is done in a secure way, no one is be able to fake proofs or steal user funds it should be done in a decentralized way. To fake zk proofs, an attacker must compromise every single participant of…


This is a full disclosure of the vulnerability that we published earlier

The potential leak was discovered two weeks ago and disabled immediately to prevent any future exposure.

The leak could only happen in a two step process. First, a user had to click “Share URL” button which created a URL that contained your private note information, like so: https://tornado.cash/?note=tornado-eth-0.1-1-0x60f495681bc7048021bbab1301c600c8ff16fbfd3f9ebff4bd01af7d4faec1e8526f5a3642adf72f008b6531fe9e4ca76a994a807cc41455735076f8c51e. After that, if the user opened the full URL in the browser the requests made from that page to the third-party services contained note data in the Referer HTTP header. Therefore, if any of these services logged this header, they…


We have received a vulnerability report on our UI from @epheph. Only 12 users and a total of 13.2 eth were affected. If you made a deposit from one of the following addresses, you need to withdraw your note ASAP. You may immediately re-deposit it back as a new note since the bug has been fixed already.

Additionally, 86 deposits, that were already withdrawn, might have their privacy compromised. If you made a deposit from one of these addresses, please consider utilizing Tornado.cash again.

The exposure was limited to the 98 users who utilized the vulnerable UI feature. All other…


Network-level security

In the current implementation, we only attempt to solve the on-chain part of privacy. There is also network-level privacy that needs to be handled by users.

  • Your IP address can be considered public information because it is known to many parties like your ISP and any router on the way to your target server. For example, your ISP could log timestamps of packets sent to Relayer and correlate them with withdrawal transaction timestamps. Use a VPN or Tor to hide your IP, especially during a withdrawal.
  • The note contains data that can be used to link your deposit with withdrawal…


Image for post
Image for post

Today we are thrilled to announce the new version of Tornado.cash privacy solution. The new version contains a number of major features as well as many improvements under the hood and on the UI side.

ERC20 token support

Now Tornado supports ERC20 tokens. The first token that was added to Tornado.cash is DAI.

Tornado Cash

Non-custodial private transactions on Ethereum. tornado.cash

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store