Jargon file and glossary

lock height For coinbase coins (outputs), they must be locked for a while (1000 confirmations or around 17 hours) or else chain reorganisations will cause a lot of trouble.

mmr Merkle Mountain Range

pmmr Pruneable Merkle Mountain Range

output (defined here) OutputFeatures - currently a Boolean == coinbase or not ("Options for an output's structure or use") Commitment - rG+vH The homomorphic commitment representing the output's amount SwitchCommitHash - blake2(rJ) The switch commitment hash, a 160 bit length blake2 hash of blind*J RangeProof - A proof that the commitment is in the right range

input (defined here) A reference to an output being spent by a transaction.

switch commitment a hash of something, like the blinding pubkey

grins, milligrins used to denominate coins (chosen by popular vote on the mailing list)

kernel the core piece of a transaction, and one that must be kept also when transactions are merged

pre-image something, like a blinding pubkey?

Elliptic algebra

C is a Pedersen commitment (homomorphic commitment) (defined here). C = rG+vH

G and H are fixed nothing-up-my-sleeve elliptic curve group generators.

v is the amount.

r is a secret random blinding key

rJ switch commitment. Kept private. Derived from wallet private keys.

kG (Excess values?)

bJ (to be verified) is a public key on generator J, with b = blind, J=curve generator? ("compute b (by solving dlog) [...] and you know nothing about x Also look at Lemma 4.1 in https://eprint.iacr.org/2017/604 or Lemma 1 in https://eprint.iacr.org/ 2013/606.pdf." /Tim Ruffing)