09-30, 13:00–13:45 (Europe/Prague), Slévárna
A mutator set is a cryptographic data structure for efficiently authenticating operations on large sets, similar to a Merkle tree but with important features for privacy:
- you can add items to the set;
- you can remove items from the set;
- you cannot link additions to removals.
Depending on your perspective, it is a) a succinct decoy-and-nullifier set such as used in ZCash and Monero (but without an every-expanding nullifier set); b) a cryptographic accumulator scheme with privacy-preserving set updates; or c) a mixnet without operators. In the context of cryptocurrencies, mutator sets are capable of achieving scalable privacy.