Privacy in Pantheon refers to the ability to keep transactions private between the involved parties. Other parties cannot access the transaction content, sending party, or list of participating parties.
For production systems requiring private transactions, we recommend using a network with a consensus mechanism supporting transaction finality. For example, IBFT 2.0.
Private Transaction Manager
Pantheon uses a Private Transaction Manager to implement privacy. For example, Orion.
Each Pantheon node that sends or receives private transactions requires an associated Orion node.
Private transactions are passed from the Pantheon node to the associated Orion node. The Orion node encrypts and directly distributes (that is, point to point) the private transaction to Orion nodes participating in the transaction.
Private Transaction Managers are also known as Enclaves.
Private Transaction Attributes
Private transactions have additional attributes to public Ethereum transactions:
privateFrom- Orion public key of transaction sender
privateFor- Orion public keys of transaction recipients or
privacyGroupId- Privacy group to receive transaction
restriction- Private transactions are
restrictedprivate transactions the payload of the private transaction is received and stored only by the nodes participating in the transaction.
unrestrictedprivate transactions the payload of the private transaction is transmitted to all nodes in the network but is readable only by nodes participating in the transaction.
restrictedprivate transactions only.
Pantheon and Orion Keys
Pantheon and Orion nodes both have public/private key pairs identifying them. The private transaction
submitted from the Pantheon node to the Orion node is signed with the Pantheon node private key. The
privateFor attributes specified in the RLP-encoded transaction string for
eea_sendRawTransaction are the public keys
of the Orion nodes sending and receiving the transaction.
The mapping of Pantheon node addresses to Orion node public keys is off-chain. That is, the sender of a private transaction must know the Orion node public key of the recipient.