ABSTRACT: This document outlines SigNote: Signed Notes for Reserve Currencies. A SigNote refers to digital data that comes from and is signed in trust by a government's central reserve. SigNotes could be used as the digital equivalent to Reserve Currency Bank Notes if adopted by a government's central reserve. Like paper banknotes, all SigNotes are owned by a government's central reserve and can be thought of as legal tender. Unlike paper banknotes, each SigNote contains cryptographic information to identify each entity that interacted with the note. Whereas most paper bank notes are legal tender for the life of the note, SigNotes are only valid for a set amount of time. This provides incentive for those in possession to return time-spent SigNotes to an agent of a government's central reserve where new SigNotes will be issued and the agent can assess the lifetime of the note. Much akin to paper banknotes, SigNotes can be sent from "hand-to-hand" and as such, network connectivity is not required to make payments with SigNotes. Lastly, Double spend attacks are prevented by means of a legal framework aided by the cryptographic information contained within each note and the time limitation of each note. Any double-spent SigNote would be returned more than once to an agent of a government's central reserve when reclaimed. By comparing the difference between similar notes, the rogue entity who double-spent and forked the note would become immediately apparent. Since cryptographic identities must be signed by a government's central reserve and therefore be accountable to a government's central reserve, any such rouge entity could be criminally sentenced under the current legal framework for banknote fraud by most governments.
Copyright Β© MMXVIII kristopher tate. All Rights Reserved.
Without permission, anyone may use, reproduce or distribute any material in this document for non-commercial and educational use (i.e., other than for a fee or for commercial purposes) provided that the original source and the applicable copyright notice are cited.
DISCLAIMER: This SigNote Specification is for information purposes only. kristopher tate does not guarantee the accuracy of or the conclusions reached in this document and as such, it is provided βas isβ. kristopher tate does not make and expressly disclaim all representations and warranties, express, implied, statutory or otherwise, whatsoever, including, but not limited to: (i) warranties of merchantability, fitness for a particular purpose, suitability, usage, title or noninfringement; (ii) that the contents of this document are free from error; and (iii) that such contents will not infringe third-party rights. kristopher tate shall have no liability for damages of any kind arising out of the use, reference to, or reliance on this document or any of the content contained herein, even if advised of the possibility of such damages. In no event will kristopher tate be liable to any person or entity for any damages, losses, liabilities, costs or expenses of any kind, whether direct or indirect, consequential, compensatory, incidental, actual, exemplary, punitive or special for the use of, reference to, or reliance on this document or any of the content contained herein, including, without limitation, any loss of business, revenues, profits, data, use, goodwill or other intangible losses.
- The SigNote Specification (draft-00)
Members of the U.S. Congress and the Federal Reserve are said to be in talks as of May 2018 about the possibility of a Federal Reserve Blockchain nicknamed "FedCoin" [1]. With the rise of credit cards and subsequently debit cards, the benefits of electronic money transfer are well known and practiced. That said, the boundary between money transfer and unit of reserve currency is also well apparent: today, we continue use paper money in daily commerce that is prone to counterfeiting and damage. Such paper reserve currency cannot be sent long distances or spent online without the help of third-parties.
In his seminal paper, Bitcoin: A Peer-to-Peer Electronic Cash System [2], Satoshi Nakamoto outlines a money transfer network that would "allow payments to be sent directly from one party to another without going through a financial institution." As of May 2018, the current implementation of the Bitcoin network consumes a great deal of energy by means of requiring computers to calculate cryptographic proofs of all transactions at great cost [3].
Since Bitcoin and related systems are built on the principle of a network of computers calculating cryptographic proofs, such systems suffer from the following problems:
- Proofs require massive commitment from our environment [3].
- Transactions are costly and slow [4].
- Transactions cannot travel from "hand-to-hand".
- Those who can afford the fastest computers serve to get richer than others [5].
Bitcoin in particular has a limited number of "coins" that amounts to 21 million in total when all the coins are found. Before such an event, it is said that "mining [coins] will not be profitable due to the high energy cost and expensive hardware needed for mining." [6]
Our current society and financial system is built on the reserve currency banking model, a model of trust. Bitcoin and related systems seemingly aim to replace government backed reserve currency with their own model of a trustless system with no controls or legal oversight. From Nakamoto's paper: "We have proposed a system for electronic transactions without relying on trust." [2]
The Federal Reserve's Randal Quarles Says Bitcoin Could Be Dangerous for the Financial System [7]
βWithout the backing of a central bank asset and institutional support, it is not clear how a private digital currency at the center of a large-scale payment system would behave, or whether the payment system would be able to function, in times of stress,β Quarles, the Fedβs newly minted vice chairman for supervision, said in remarks prepared for a Thursday conference at the U.S. Treasury Department.
βDigital currencies are a niche product that sometimes garners large headlines," he said. βBut from the standpoint of analysis, the βcurrencyβ or asset at the center of some of these systems is not backed by other secure assets, has no intrinsic value, is not the liability of a regulated banking institution, and in leading cases, is not the liability of any institution at all.β
Bitcoin and related systems are built on anonymous cryptographic primitives that make it easy to subvert international anti-laundering treaties leading to increased drug trafficking.
According to the U.S. DEA [8]:
Emerging as a money laundering threat, virtual currencies, such as Bitcoin, enable [Transnational Criminal Organizations] to easily transfer illicit proceeds internationally.
A joint report published by The Foundation for Defense of Democracies' Center on Sanctions and Illicit Finance [9] has indicated that Bitcoin laundering for illicit drug activity is a highly centralized process.
Authors Yaya Fanusi and Tom Robinson [10]:
Mixers have consistently processed about a quarter of incoming illicit Bitcoins per year. The proportion laundered through exchanges and gambling combined has been roughly constant (66 to 72 percent). Of note, Bitcoin exchanges processed 45 percent of laundered Bitcoins, but, as they received much higher volumes, a much lower proportion of their activity is illicit.
These problems are not just limited to Bitcoin: the Federal Bureau of Investigation (FBI) expressed concerns over digital currency Monero and its use among criminals. Joseph Battaglia, a special agent working at the FBI's Cyber Division in New York City, had this to say at a joint event with New York's Fordham University [11]:
There are obviously going to be issues if some of the more difficult to work with cryptocurrencies become popular. Monero is one that comes to mind, where its not very obvious what the transaction path is or what the actual value of the transaction is except to the end users. -- Joseph Battaglia, FBI Special Agent at the NYC Cyber Division
SigNote defines a set of rules for encoding, validating and sending banknote denominations from entity to entity, much like sending files directly from computer to computer. Compare this to Bitcoin and related systems where each address in the system stores a balance much like a bank and requires a network of computers to calculate a shared balance.
Just like paper banknotes, no fees are required to settle debts. Unlike paper banknotes, SigNotes are digital data that can be securely stored inside a smartphone or physical cryptographic wallet. Settling debts only requires a means of directly connecting to another secure wallet either physically or over the Internet.
- Cryptographically Signed Identities: All cryptographic identities used in SigNote are required to be co-signed by a government's central reserve and therefore are accountable to a government's central reserve. In the event of a double-spend, illicit transaction or fraudulent activity, any such rouge entity could be identified and subsequently sentenced if required under the current legal framework for wire fraud by most governments.
- Privacy Amongst Peers: Names, phone numbers and addresses are not stored in SigNote as a policy and therefore contribute to the strength of privacy amongst peers.
- Support for ISIC Codes: SigNote records a ISIC (International Standard Industrial Classification) code for each transaction that is verified by both sender and recipient so that economic activity can recorded for easy accounting and to protect against money laundering and fraudulent transactions.
- SigNote: Short for Signed Notes (for Reserve Currencies), it is digital computer file that utilizes secure cryptographic signatures to store, verify and transmit reserve currency in denominations established by a government's central reserve.
- SigChain: Short for Signature Chain, it refers to the continuously growing list of metadata sections inside of a SigNote, which are linked and secured after each transaction by cryptographic signatures.
- Spent at Time: The time at which a SigNote is VOID and cannot transact further. Spent SigNotes may be sent back to an agent of a government's central reserve to redeem a new SigNote for further transaction. Spent at Time can be as short as 1 second or as long as 100 years (or longer). We recommend somewhere between 6-months to a year.
- Signed Checkpoint: A critical or special section after a series of metadata sections that secures all transactions up to the checkpoint signature. All SigNotes end with a signed checkpoint section.
See Markdown for RAW ASCII Chart
See Markdown for RAW ASCII Chart
SigNotes are represented and stored on computers as binary files.
All SigNotes contain the following information when first signed into existence:
- Creation Time (TAI64N, 12-bytes)
- Spent at Time (TAI64N, 12-bytes)
- 3-letter Currency Code (ISO 4217, 3-bytes, Ex: JPY, USD)
- Currency Denomination (UINT16, Non-Zero)
- Sequential Identifier (13-bytes, all uppercase, a-z 0-9, asterisk
0x2Apadded) - Decimal place / subunit indicator position (UINT8, number of places from start of number, Ex: USD is 2, JPY is 0)
- Public key of Authorized Agent of a government's central reserve (Ed25519 key, 32-bytes)
- Signature data from currency code trust root (government central reserve) authorizing Agent's public key (Ed25519 signature, 64-bytes)
- Nonce (UINT32)
- SigNote Hash Key String (64-Bytes) (Ex: "In God We Trust. Copyright The United States Federal Reserve")
- The SigNote's Serial Number (BLAKE2b 64-byte Hash of Initial Data)
Filenames start with the hyphenated concatenation of the ISO 4217 3-letter currency code, followed by the denomination in integer multiples of its least subunit, followed by the serial number and end with the .snote file extension. For example, a SigNote representing the denomination of Β₯10,000 Japanese Yen would be the following:
JPY-10000-5891b5b522d5df086d0ff0b110fbd9d21bb4fc7163af34d08286a2e846f6be03.snote
Likewise, a SigNote representing the denomination of $100.00 United States Dollars would be the following:
USD-10000-48ae15fd45c3ae607e41a72d153d6c051f267c42f5ea11f26e1b33b183eaf0e8.snote
Notice again that SigNotes of USD denomination are represented in integer multiples of its least subunit and not a fraction of the main unit.
SigNotes start with the following 4-byte version header:
------------- 4-bytes / 32 bits -------------
+--------------------+ +--------------------+
| MAGIC:"SN" | | VERSION |
| (0x534E) | | (0x0001) |
+--------------------+ +--------------------+
After the file version header, a SigNote is a constructed of sections and signed checkpoints.
Each section is represented by the following data structure:
------------- 4-bytes / 32 bits -------------
+------------++-------------++--------------+
|SECTION TYPE||SECTION FLAGS||SECTION LENGTH|
| (UINT8) || (UINT8) || (UINT16) |
+------------++-------------++--------------+
---- Section Length (MAXIMUM 16383 BYTES) ---
+-------------------------------------------+
| SECTION SPECIFIC DATA |
| (MAXIMUM 16383 BYTES) |
+-------------------------------------------+
Lengend:
- π© Implementation Required
- π lockable via Trust Authorization Section
Table of Contents
0x0π©π Document Root Control Sections0x00SigNote Initialization
Initializes the SigNote
0x1π©π Trust Control Sections0x10Trust Authorization Section (TAS)
Connects a public key to a currency's trust root.
0x2π©π Transaction Control Section0x20Offer
Offer SigNote to a known public key0x21Accept
Accept SigNote under new public key (must match most recent offer section.
0x3π Reserved0x4π Reserved0x5π Reserved0x6π Reserved0x7π Reserved0x9π Reserved0xAπ Reserved0xBπ Reserved0xCπ Reserved0xDReserved0xEReserved0xFSpecial Consideration Sections0xF0π Reserved0xF1π Reserved0xF2π Reserved0xF3π Reserved0xF4π Reserved0xF5π Reserved0xF6π Reserved0xF7π Reserved0xF8π Reserved0xF9π Reserved0xFAπ Reserved0xFBπ Reserved0xFCπ Reserved0xFDπ Reserved0xFEπ©π VOID Fuse Used to void a SigNote before its Spent at Time (ST) Limit.
Next immediate checkpoint must be signed by an agent of a government's central reserve.0xFFπ© Signed Checkpoint Section
SigNotes form a complete chain of trust via its SigChain, the chain of digital signatures that extend from a government's central reserve to the financial institutions, retailers and consumers who make use of reserve currency.
The integrity of each signer in the SigChain is backed by the signature of Intermediate entities (Regional Mints, State Department, Treasury, Notaries) who extend the trust of a government's central reserve.
+-----------------------------------------------------+
-----[ROOT]-----+ Government Central Reserve |
+-------+-------------------+------------------+------+
| | |
+-------v-------+ +---------v--------+ +-------v------+
-[INTERMEDIATE]-+ Regional Mint +-+ State Department +-+ Gov Treasury |
+-------+-------+ +------------+-----+ +-------+------+
| | |
+-------v----------------+ +---v------------+ |
-[INTERMEDIATE]-+ Financial Institutions +-+ State Notaries | |
+----+-------------------+ +-+-+----------+-+ |
| | | | |
| +-----------+ | | |
+----v---+ +-----v-----+ +-----v-----+ +--v----v------+
---[END USER]---+ ATMs +-+ Retailers +-+ Consumers +-+ Gov Agencies |
+--------+ +-----------+ +-----------+ +--------------+
Each link in this chain is stored in a SigNote in the form of a Trust Authorization Section (TAS).
Each Trust Authorization Section (TAS) is represented by the following data structure:
|[ENTITY ROLE]
+------------+00______ END USER
| |01______ INTERMEDIATE L1
| |10______ INTERMEDIATE L0
| |11______ ROOT
|
| |[ISSUER ROLE]
| +----------+__00____ END USER
| | |__01____ INTERMEDIATE L1
| | |__10____ INTERMEDIATE L0
| | |__11____ ROOT
| |
------------- 4-bytes / 32 bits ------------- | | |____1000 Can sign 0x0 Sections
+------------++-------------++--------------+ | | +--------+____0100 Can sign 0x1 Sections
|SECTION TYPE||SECTION FLAGS||SECTION LENGTH| | | | |____0010 Can sign 0x2 Sections
|(UINT8=0x10)|| (UINT8) || (UINT16) | | | | |____0001 Can sign 0x3 Sections
+------------++-------------++--------------+ v v v
------------ 28-bytes / 224 bits ------------ /00000000 |10000000 Can sign 0x4 Sections
+--------------++--------------++-----------+/ v------------+01000000 Can sign 0x5 Sections
| Not Valid || Not Valid || % 00000000 |00100000 Can sign 0x6 Sections
| Before || After || ROLE CODE % v----------+ |00010000 Can sign 0x7 Sections
| (TAI64N) || (TAI64N) || (UINT32) % 00000000 | |00001000 Can sign 0x8 Sections
| (12 bytes) || (12 bytes) || %\ v--------+ | |00000100 Can sign 0x9 Sections
+--------------++--------------++-----------+ \00000000 | | |00000010 Can sign 0xA Sections
------------ 32-bytes / 256-bits ------------ | | |00000001 Can sign 0xB Sections
+-------------------------------------------+ | |
| ENTITY PUBLIC KEY | | +-+10000000 Can sign 0xC Sections
| Ed25519(256-bits) | | |01000000 Can sign 0xF0 Section
+-------------------------------------------+ | |00100000 Can sign 0xF1 Section
------------ 32-bytes / 256-bits ------------ | |00010000 Can sign 0xF2 Section
+-------------------------------------------+ | |00001000 Can sign 0xF3 Section
| ISSUER PUBLIC KEY | | |00000100 Can sign 0xF4 Section
| Ed25519(256-bits) | | |00000010 Can sign 0xF5 Section
+-------------------------------------------+ | |00000001 Can sign 0xF6 Section
------------ 64-bytes / 512-bits ------------ |
+-------------------------------------------+ +---+10000000 Can sign 0xF7 Section
| Trust Authorization Section Signature | |01000000 Can sign 0xF8 Section
| Ed25519(512-bits) | |00100000 Can sign 0xF9 Section
+-------------------------------------------+ |00010000 Can sign 0xFA Section
|00001000 Can sign 0xFB Section
|00000100 Can sign 0xFC Section
|00000010 Can sign 0xFD Section
|00000001 Can sign 0xFE Section
- The Not Valid After timestamp must be greater than the creation date of the SigNote
- The Not Valid After timestamp must be greater than the Spent at Time (ST) of the SigNote
SigNotes are append-only logs of transaction data that MUST be signed after each transaction.
Unless the following requirements are met, any signed checkpoint data will be discarded:
- All checkpoint public keys must be linked to a valid chain of the SigNote's currency trust root. This is accomplished via file sections with type
0x10hexadecimal. - The timestamp must be more recent than any other timestamp within the SigNote.
- The timestamp must be within the Spent at Time (ST) Limit of the SigNote.
- The timestamp must be a time earlier than current time of the verification engine.
A signed checkpoint is designated inside of the file as a section with the registered type 0xFF hexadecimal and has the following data structure:
------------- 4-bytes / 32 bits -------------
+------------++-------------++--------------+
|SECTION TYPE||SECTION FLAGS||SECTION LENGTH|
|(UINT8=0xFF)|| (UINT8) || (UINT16) |
+------------++-------------++--------------+
------------ 16-bytes / 128 bits ------------
+---------------------------++--------------+
| Timestamp || Random Nonce |
| (TAI64N, 12 bytes) || (UINT32) |
+---------------------------++--------------+
------------ 32-bytes / 256-bits ------------
+-------------------------------------------+
| SIGNER PUBLIC KEY |
| Ed25519(256-bits) |
+-------------------------------------------+
------------ 64-bytes / 512-bits ------------
+-------------------------------------------+
| Signature of file up to this Checkpoint |
| Ed25519 (512-bits) |
+-------------------------------------------+
This area is reserved for information about how to Verify a SigNote.
This area is reserved for information about how to Transfer a SigNote.
- Header
- Initialization Section
- Signed Checkpoints
- Signature Trust Authorization
- Signed Checkpoint Verification
- Transferring SigNotes
- Offer
- Accept
- SigNote-Python
The first implementation will be written in Python for ease of understanding the file format.