Shroud is the first fully functional privacy-preserving DApp on the Sui blockchain, enabling confidential and compliant trading by integrating zero-knowledge proofs with public DEX infrastructure.
-
Privacy with Compliance: Users can privately deposit, withdraw, and swap assets, but direct hidden-to-hidden transfers are restricted. All trades happen through a public DEX to ensure transparency and auditability.
-
Auditable Export: Users can export their full private transaction history for audits and compliance reporting.
-
ZK Infrastructure: Zero-knowledge circuits are built in Rust (arkworks) and Circom, with Groth16 verification and Poseidon hash precompile integration.
-
Pure Move Primitives: Implements a sparse Merkle tree with historical tracking in pure Move. A Poseidon hash in pure Move was also developed (not used in current version).
-
Frontend ↔ Circuit: Full-featured frontend supports native WASM proving, custom trading router, account management, and pool interaction via web workers.
Privacy is achieved by encoding user addresses in UTXO notes, hiding them during swaps while requiring disclosure in deposits and withdrawals. Nullifiers ensure one-time use of notes, preventing double-spending.
-
Address is also encoded in the UTXO note and enforced when deposit/withdraw to ensure non-mixing
-
$B=H(H(A,N),B_1,B_2,...,B_n)$ -
A is address, N is random nonce, and B_n is nth asset balance
-
ZK checks for note transition from B_n (before) to B_n (after) and consistent A and N
The contract is deployed to devnet because Sui's native Poseidon hash is not available in testnet nor mainnet.
- Package ID:
0xba1993ce8670d2fd5f4ade6322f334a4834f3da09244d553f8c667344f7eb552 - Shroud Core ID:
0x06ffdbfb65b1cf69c84e63f72b8155f63bcade1d53b03cd4eddf332dd0adf8f1