ABCDEFGHIJKLMNOPQRSTUVWXYZ
1
ProjectStep 1Step 2Step 3Step 4Step 5Step 6
2
Fileverseopen sourcing our workyou literally generate and download your own e2ee keys documentationsocial recovery optionsdocs
3
Lava Networkstarting with our litepaperfurther questions feel free to drop them in our discord.coderead by yourself,
or by a third party
4
HolonymCheck their website or docsIf they vaguely say “data is kept private” and provide no explanation how, runIf they provide explanation, check with an expert or DYORnon-tech friendly
5
Spinner cashcode is law. So how about "don't trust, verify"?But to verify, it would require certain technical skills... like reading source code 😅We hope to bring in 3rd party auditors at some pointtech-centric
6
SessionThere is the Session code auditSee what's being said in (non-paid) media: reviews, articles, etc.
7
ZKBobhether the solution forces users to preserve their privacy or if it's the user's responsibility. For example, Tornado Cash increases anonymity by requiring users to deposit a specific amount, but doesn't require using different addresses for withdrawalszkBOB doesn't force specific amounts or address usage, but encourages the use of new withdrawal addresses by rewarding them with a small amount of native coins that can be used in the next transaction to pay for gas.How the components of the protocol communicate with each other and if users can replace any components is another important aspect.In the case of zkBOB, the pool contracts are the core component, and the user needs to trust the zkBOB development team regarding privacy leaks in the rest of infrastructure: UI and the sequencer. However, the project roadmap includes plans to address these concerns.Since privacy-preserving solutions on the blockchain involve complex mathematical concepts that may be difficult for non-techie individuals to understand, there will always be trust assumptions for this part of the solution.The only way for non-techie people to reduce risks is to seek expert advice or do extensive research before using such solutions.


For zkBOB, it's worth noting that the project is open source, the part of the protocol related to zero-knowledge was audited, and the team does its best to support documentation that's up-to-date and clear for ordinary users.
8
Litentryyou can start by reading litentry’s explainers firstthen maybe then read through other privacy solutions to make the comparison?
9
BrightIDYou could rationalize from the fact that it does not ask you for any personally identifying information directly, so there is nothing to preserve and keep it safe in its infrastructure.technical things you could ask a technical person you trust to look at its oss code.
10
Swarmreading our whitepaper, which provides a comprehensive overview of Swarm's technology and how it achieves privacy
11
RailgunUse @Railway_xyz to send a private transfer to a 0zk address through a Relayer. Examine the "receipt" of that transfer on etherscan or arbiscan. You will not find: (1) sender, (2) receiver, (3) token or (4) amount anywhere in the transaction receipt.There's a ton a technical person can do to verify but there's also a litmus test of #privacy that anyone can do. https://t.co/PqkUJWwmPDThis is a 0zk -> 0zk transaction (sending tokens from one #DeFi user to another.

You'll note in the the scan has a from address but this is simply a Relayer address that pays gas to process the on-chain computation.
User communications with a Relayer are passed via through the
@waku_org p2p gossip network, so Relayers can't know a particular message origin.

In other words, even here #privacy was a big consideration throughout the tech stack not just on Etherscan.
The To address is simply the RAILGUN smart contract on
@0xPolygon
in this case. So nothing is revealed about the recipient.

- The value that exchanged hands? #Private
- Try to decode the input data for the transaction? It's all #encrypted.

So how much money exchanged hands here?

Well, the short answer here is - it's #private.

Only the sender and recipient will know. There will be #zeroknowledge about it unless they choose to reveal the transaction information.
12
Penumbramaybe look for people you trust that are able to analyze the technical solution for its privacy merits and then get their opinion ? it's prob difficult to analyze a technical protocol with a non-technical analysis.what you're asking about relates to a more holistic assessment of a protocol and its attributes, so that should be within the scope of a research function moreso than a security audit function.
13
HOPR1. FOSS
Free & Open Source Software is the foundation that enables you to check whatever you want. The hoprd client is released under GPLv3 license that allows you to do that (and also modify and re-distribute) hoprd freely: GitHub
2. Code quality
Open source code should be readable to be helpful to you! To that end we enforce code quality via linters for Typescript
https://github.com/hoprnet/hoprnet/blob/df7bc88517329472adbfe73bd4a22bddd5cfbcc9/package.json#L46…
and for our Rust code:
https://github.com/hoprnet/hoprnet/blob/master/rustfmt.toml…
and in our automation pipeline:
3. Tools
So far we released tools such as http://DERP.hoprnet.org or http://mint.hoprnet.org (which in turn are obviously also FOSS!) that show shortcomings of existing technologies. We will keep building such tools also for HOPR itself.
The exact checks you'd do depend on the application that actually use HOPR

E.g. on #RPCh we're thinking of installing a VPN server on the RPCh exit node which would visualize requests via DERP: https://twitter.com/hoprnet/status/1596896868377792520
If you want to go hardcore, you could use a packet inspection tool such as #Wireshark to check all packets coming into your machine and going outYou will notice that you cannot tell anything from these packets - thanks to the Sphinx packet format that we use at HOPR:
https://twitter.com/hoprnet/status/1572601550379311104

Check out our HOPR Basics series for more details:
https://medium.com/hoprnet/basics/home
14
Wakurfc.vac.dev is a good start.The RFC repository contains the specification of Waku and other protocols. In terms of @ethstatus 's privacy claims. It is good to first look at the base layer: @waku_org

The RFCs describe the protocol and also contains security assumptions/guarantees section.
Tthe target audience are researchers and maintainers of Waku implementations. Not the easiest thing to read!
15
RotkiDon't think u can. Gotta trust either me or someone who can read codeThe simplest thing a non-techie person can understand is:

- Local application with all data stored in a local encrypted database (private by design)
Opensource, so your techy friend can see we are not lyingIt really isn't complicated imo.

To be 100% sure read code
But it does not take an expert to understand that an application that you download, run locally and keeps all data locally is 1000x more private than a webapp

We have been brainwashed to calling webapps, as "apps" now.
16
Webbyou need to analyze the data they create through transactions. If that data (and metadata) can be analyzed for patterns then that can help define the degree of privacy of the solution.For our bridge solution, this is akin to rebuilding the tx graph and seeing if flows through such a graph can be identified. The main actions in our system are deposit, transfers, and withdrawals. We use the same zero knowledge proof based ideas to make it harder to track…
17
Boring protocolThe "no logs" claims are generally very ambiguous. We make a point to know as little as technically possible about our users. We only know the bare minimum required to make the network function. All we know is your wallet pubkey, with which we issue and assign to a network key.
18
Lit protocolState of Network is available right here: https://t.co/sgaOX5SPga
19
Alter networkTry the #dapp and join the chatroom for
@AlterDapp
community
You can check out this video to see how to create an account on mobile.

https://youtu.be/ZgpCHDnR9WU
The discord has a lot of resources as well, depending in what you need.
20
Sons of cryptoWe have no (google) analytics or trackingWe do not run any backendWe will have built in mixersWe dont know or what to know who or where users areFor non-techie that would not be straight forward. Perhaps using something like https://charlesproxy.com to see all the traffic. Still fairly techie though.

For devs all of our code is open source on github, anyone can read it.
21
OrbisYou can check our open-sourced SDK, but that would require people to read some code :) https://t.co/iiA7lSaDdn
22
Nighthawk WalletIt’s been a while since @NighthawkWallet APK was analyzed for privacy concerns. Feel free to test it at
@ExodusPrivacy, a friendly service to investigate Android apps.
You can also obtain the @NighthawkWallet APK built with @fdroidorg and verify the “no anti-features” tag. We’ve worked hard to remove dependency on third-party services and strictly require user’s consent before opting-in to sharing information.

https://t.co/YwYd4RUeVh
“Anti-Features are organized into “flags” that packagers can use to mark apps, warning of possibly undesirable behaviour from the user’s perspective, often serving the interest of the developer or a third party.”

https://t.co/LEaBIh8LV7
23
KILT ProtocolKILT preserves privacy in the same way paper or plastic credentials do:
1. they are not stored on any central entity but totally decentralised in the wallets of their owners. 2. users decide for what reason they share a credential with whom. 3. one can share credentials partially
A DID is created on the user‘s device. Like your blockchain keypair. It’s an identifier like your face, your fingerprint or your signature. It’s not issued by any entity. This way it’s always decentralised and does not have a decentralisation status.
24
Onionclubactually privacy is by default on our platform. It's not a option! So, every user will have this enabled and if they want to be doxxed than they need to jump trough some hoops.
25
SismoHere are the public resources we have around the core of our ZK systems:

Here are the public resources we have around the core of our ZK systems:
- Commitment mapper https://docs.sismo.io/sismo-docs/technical-concepts/commitment-mapper…
- Hydra-S1 ZK Scheme https://docs.sismo.io/sismo-docs/technical-concepts/hydra-zk-proving-schemes…
- Privacy & Security FAQ (the less technical part)

https://t.co/M3eVLoYeUK
26
KrebitPrivacy-preserving: your credential's claims are stored encrypted off-chainSelf-sovereign: you control the access conditions to read your private dataThis is possible thanks to
@LitProtocol and @ceramicnetwork
27
Puma browserOne of the reasons we started focusing more on enabling novel use-cases like ENS/HNS/IPFS and others is because it's really easy to demo in 10-15 seconds and prove, vs privacy is much harder to both demo and prove beyond company reputation.
28
Hideyour.cashWe’re on the process to conduct a security audit with a full report when going to mainnet.Our code is open source in case you wanna ask someone from your trust.
29
Spook
If you’re non technical you won’t be able to verify it yourself.

You need this information from a trusted source that has done the job of checking its privacy.
30
ElusivOnce we are live, detailed docs including our whitepaper will be released!you can expect more explanatory content covering various topics around privacy, ZKPs, MPC and more.
31
BeamYou can read Beams whitepaperI also recommend reading the Documentation
you can reach me here on Twitter, on Telegram
@maxnflaxl or on Discord Maxnflaxl#8141
32
FindoraDapps using our privacy SDK will allow their users to transact with privacy. The evidence can be found on our block explorer when one attempts to view the details.
33
Leo walletHere's a talk by our co-founder/CTO discussing Zero Knowledge Proofs in general and some features our wallet utilizes to increase privacy (e.g. single-use addresses) https://t.co/BLeKu2ghmS
34
ScalaYou should probably start here: https://wiki.scalaproject.io and if you have questions send us a DM.
35
Media networkThanks to the blockchain and smart contracts, your personal and payment information is always secure. Communication between clients and providers is always encrypted.The client only needs to disclose the origin (i.e., the back-end IP) for the CDN marketplace and the Legacy dCDN.
36
Privacy & Scalabilityone approach might be looking at the public data from the system. If you see user identifiers being used only once that's perhaps helpful? But a non-technical person doesn't know if identifiers are true random, or if they're backdoored somehow.With the unirep protocol we're building an explorer that shows all the things happening in the system. So a user could see their epoch keys and attestations and see how they're distinct in the system. One thing we might do is write what can and can't be determined about the different identifiers.
37
AutomataYou should go to the very beginning of the medium articles. There is explained how the architecture works.https://medium.com/atanetwork/whats-automata-i-the-last-puzzle-piece-to-web-3-0-ea8a0af5840e
https://medium.com/atanetwork/whats-automata-ii-protocol-overview-witness-7c1fc2232655
https://medium.com/atanetwork/whats-automata-iv-conveyor-93c9335e4f43
38
Aleo
i'd start with the official Blog articles:
https://www.aleo.org/post/welcome-to-aleo
https://www.aleo.org/post/zero-knowledge-primitives-by-aleo
Hi! there are so many info you can find in blog articles :Laughheart: unofficial!
also there are so many videos on this topic you can find in 📸┃user-content
our community has so many contributions and rich diversity of content
39
MASQJoin our beta testing group and simply try it for yourself!You can run any local and in-browser IP tests you want, and use other tools to see how the data is transported to and from your machine.As a non-techie the first start is simply check an IP checker website while using
40
Lokinetuser education would absolutely be how. to be fair lokinet's docs arent really there rn, it's always on the todo list and never really gets done.once you do all the user education you can, you get to the point where you see that privacy is more of a bonus to seal the deal than a primary feature from the perspective of the consumer grade user.ideally we dont want lokinet to leak anything at all. net usage statistics tools from projects like pihole provide great visualizations for some of it. i am sure there are ones for netflow data too not just dns.
41
ActiListWe are running on the Secret Network blockchain, you can check out http://SCRT.network for more information.
42
CheqdYou can start by learning about verifiable credentials, decentralised identifiers(DID), and the concept of Self-Sovereign identity.cheqd is quite technical, and in order to understand why it is privacy preserving, you'll need to get familiar with some terms.You can also learn more about each of the components of the network, the credential types, co clots of payment rails and verification by visiting our learn pages
https://t.co/8OQ0Fav16W
Concepts of payment rails** Sorry for the typo

As a final note, you'll find a range of useful content and project progress on our blog. If you have any questions, you can jump on our official telegram channel or tweet us.
https://t.co/wHRkrrJ3F0
43
PirateChainLook at the block explorer and see if you can figure out how much ARRR is in a wallet...
44
Obscuro- we'll build tools that have been audited by trusted authorities to verify attestation of software versions along with audits showing the software doesn't leak privacy
- although superficial, our block explorers will demonstrate privacy
- anyone can run a node and use simple network tools to verify data flowing is encrypted
- Provide education on how TEEs preserve privacy and the things to look out for
We'll deploy a game with significant funds that can only be won by breaking Obscuro's privacy. As long as the game isn't won, users can be confident privacy remains intact.
45
SendingMeyou can visit @Sending_Network account to learn more about what is under the hoodour GitBook is pretty easy to read even if you are not techie :)
46
MysteriumNetworkwe would recommend our docs: https://docs.mysterium.networkAlso here is a study on decentralized VPN (featuring us) by
@NorthwesternU, thread + paper here :https://twitter.com/MysteriumNet/status/1619616182964994049
47
nix-bitcoinFor one, you need to be fairly technical to setup nix-bitcoin at this point.One important aspect is whether all outbound connections are tunneled through Tor by default. You could check the generated configuration files. For example, make sure that proxy=127.0.0.1:9050 is in fact set in /var/lib/bitcoind/bitcoin.conf.
48
LitecashLitecash is the first fork of BEAM and we tweaked the fees to zero, and less congested to keep lightning fast transaction along with a sustainable coin supply for mass adoption while keeping inflation resistance. Our privacy is built on the mimblewimble protocol which is unique compared to other privacy protocols. Litecash transactions are not held on a ledger and disappear as opposed to other methods of scrambling or clustering which could actually be decoded with new wave super computers.if a transfer does not complete due to a wrong address or defunct wallet, funds get sent back to the sender within 24 hours ensuring no lost coins.
49
Black BoxFor the transactions anonymizer, privacy is preserved when the onchain link between SENDER and RECEIVER wallets is broken or untraceable.
50
ErgoErgo has the flexibility to implement privacy in various use cases. Although it is not a privacy-oriented blockchain, Sigma Protocols allow privacy-oriented dApps like ErgoMixer, or private side-chains, to obfuscate specific transactions https://t.co/KVNIk8amD1
51
Sacred Financeideally a tech partner (that you would work with) reading our Github and is the best way to verify that our communications protocol is private.Other heuristics, you could take advantage of are smart contract audits or endorsements from Firms and experts.
52
3NUMstarting with articles on our Medium for an overview on how 3NUM works and the approach that we are taking: https://t.co/OoJPH9QcSn
53
DAMLI recommend trying out or watching this demo https://t.co/8EqSBKvnOw to get a sense of the capabilitiesThis starts getting more technical - https://t.co/9MIlxCJicN
54
Concealyou could start to look at the block explorer and see that transactions doesn’t reveal who sent what to who.
55
Seneca blockchainYou can always connect with our team and chat with our developers on LinkedIn here: https://t.co/2c1nwDeCrerecommend signing up for early access to our blockchain & trying our demo here: https://t.co/OCLQoaPW7M
56
PartclParticl academy is a good starting point imho
https://academy.particl.io/en/latest//
Particl is a complex project, and there's different reasons why SMSG, PART(Anon), and BasicSwap are "truly privacy preserving"

For details on why part anon is truly privacy preserving i would check particl academy website linked above

For BSX i would probably check thishttps://particl.news/basicswap-the-fully-private-cross-chain-dex//
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100