Her Monero Hard Fork'u Açıklandı: Tam Ağ Güncelleme Geçmişi

Introduction: Monero's Philosophy of Continuous Improvement

Monero stands apart from most cryptocurrencies in its commitment to regular protocol upgrades through scheduled hard forks. While Bitcoin has largely embraced protocol ossification, with its last major consensus change (Taproot) activating in November 2021 after years of debate, Monero's community has consistently prioritized improving privacy, efficiency, and security through coordinated network upgrades.

This approach reflects a philosophical difference. Bitcoin developers argue that stability and predictability are paramount for a monetary system. Monero developers counter that privacy technology is an ongoing arms race, and a protocol that stops evolving will eventually be broken by advancing cryptanalysis, chain analysis techniques, or computational capabilities. Both positions have merit, but for a privacy-focused cryptocurrency, the case for regular upgrades is particularly strong.

This article provides a comprehensive chronological history of every major Monero network upgrade, explaining what each changed, why it was needed, and its impact on the protocol.

The CryptoNote Origins (April 2014)

Monero launched on April 18, 2014, as a fork of Bytecoin, which itself was the first implementation of the CryptoNote protocol described in a whitepaper by the pseudonymous Nicolas van Saberhagen. The original CryptoNote protocol provided two key privacy features that were revolutionary at the time.

Ring Signatures

CryptoNote used one-time ring signatures to hide the sender of a transaction. When spending an output, the spender's key was mixed with other public keys from the blockchain, making it impossible for an observer to determine which key actually authorized the transaction. Initially, users could choose their own ring size (the number of decoys), including a ring size of zero, which provided no sender privacy at all.

Stealth Addresses

Every transaction used one-time stealth addresses derived from the recipient's public address. This meant that even if you knew someone's Monero address, you could not scan the blockchain to find their incoming transactions. Each transaction created a unique destination visible only to the recipient.

The early Monero protocol, while innovative, had significant limitations. Amounts were visible, ring sizes were optional, and the cryptography was relatively immature. The subsequent history of upgrades is the story of systematically addressing these weaknesses.

Mandatory Minimum Ring Size (March 2016)

One of the earliest important upgrades established a mandatory minimum ring size of 3 (meaning at least 2 decoys plus the real spend). Before this change, users could send transactions with a ring size of 1 (no decoys), which provided no sender ambiguity. Worse, zero-mixin transactions actively harmed the privacy of other users by removing their outputs from consideration as decoys in future transactions. Research had shown that a significant portion of inputs could be traced due to the prevalence of low-ring-size transactions.

RingCT: Hiding Transaction Amounts (January 2017)

The implementation of Ring Confidential Transactions (RingCT) in January 2017 was arguably the most significant single upgrade in Monero's history. Before RingCT, transaction amounts were visible on the blockchain. This was a critical privacy gap because knowing the amounts flowing between addresses significantly aids in tracing transaction flows.

How RingCT Works

RingCT uses Pedersen commitments to hide transaction amounts while still allowing the network to verify that no Monero was created from nothing. A Pedersen commitment is a cryptographic construction where C = aH + bG, where a is the amount, b is a blinding factor, and H and G are generator points. Anyone can verify that the sum of input commitments equals the sum of output commitments (plus the fee commitment), confirming conservation of value without learning the actual amounts.

Range proofs accompanied each output to prove the committed amount was positive and within a valid range, preventing overflow attacks that could create Monero out of thin air. The initial range proofs were based on Borromean ring signatures and were quite large, adding significantly to transaction sizes.

RingCT was made mandatory in September 2017, completing Monero's trifecta of mandatory privacy: hidden senders (ring signatures), hidden receivers (stealth addresses), and hidden amounts (RingCT).

Bulletproofs: Shrinking Transaction Sizes (October 2018)

The October 2018 hard fork introduced Bulletproofs, replacing the Borromean range proofs used in RingCT. This was primarily an efficiency upgrade with dramatic results.

The Size Problem

The original Borromean range proofs were the largest component of a Monero transaction, often accounting for the majority of its size. A typical two-output transaction with Borromean proofs was roughly 13 KB. This made transactions expensive and limited the network's throughput.

Bulletproofs' Impact

Bulletproofs, based on a construction by Benedikt Bunz and colleagues at Stanford, provided range proofs that were dramatically smaller. A typical transaction dropped from approximately 13 KB to about 2.5 KB, a reduction of roughly 80%. This correspondingly reduced transaction fees by a similar amount. Additionally, Bulletproofs' size scales logarithmically with the number of outputs, making multi-output transactions even more efficient relative to the old system.

The same hard fork also increased the mandatory ring size from 5 to 11, improving sender privacy.

RandomX: ASIC-Resistant Mining (November 2019)

The November 2019 upgrade introduced RandomX, a new proof-of-work mining algorithm designed to be optimally efficient on consumer-grade CPUs and resistant to specialized mining hardware (ASICs and FPGAs).

The ASIC Problem

Monero had used CryptoNight as its mining algorithm since launch, and several times prior to RandomX, the network had hard-forked to modify CryptoNight after ASIC miners were detected on the network. The community's concern was that ASIC concentration would lead to mining centralization, undermining the decentralization that is essential for a censorship-resistant privacy coin.

How RandomX Works

RandomX executes random programs in a specialized virtual machine that heavily utilizes CPU features like branch prediction, caching, and floating-point operations. The algorithm requires 2 GB of RAM, making it impractical for simple ASIC designs. Its random program generation means there is no fixed computational pattern to optimize with specialized hardware.

The result was successful: to date, no ASICs have been developed for RandomX, and Monero mining remains accessible to anyone with a standard computer. This upgrade was significant not just technically but philosophically, ensuring that the mining network remained decentralized and accessible.

CLSAG: Faster Ring Signatures (October 2020)

The October 2020 hard fork replaced the existing MLSAG (Multi-Layered Linkable Spontaneous Anonymous Group) ring signature scheme with CLSAG (Concise Linkable Spontaneous Anonymous Group signatures).

Efficiency Gains

CLSAG provided the same security guarantees as MLSAG while reducing the ring signature size by approximately 25%. Verification time also improved by roughly 20%. For a typical two-input, two-output transaction, this translated to a total size reduction of about 10-15% compared to the MLSAG version.

The CLSAG scheme was formally published in a peer-reviewed paper and underwent extensive security analysis before deployment, exemplifying Monero's approach of implementing upgrades based on rigorous cryptographic research.

The August 2022 Upgrade: Bulletproofs+, Ring Size 16, and View Tags

The August 2022 hard fork was one of Monero's most feature-rich upgrades, introducing three significant changes simultaneously.

Bulletproofs+

Bulletproofs+ improved upon the original Bulletproofs implementation with a more efficient proof generation and verification algorithm. Transaction sizes decreased by an additional 5-7% compared to regular Bulletproofs. While the improvement was more modest than the original Borromean-to-Bulletproofs transition, it represented continued optimization of a core transaction component.

Ring Size Increase to 16

The mandatory ring size was increased from 11 to 16, meaning each transaction input now includes 15 decoy outputs plus the real one. This significantly improved sender privacy by increasing the number of possible senders an observer must consider. Statistical analysis attacks become harder as the ring size grows, particularly when combined with the decoy selection algorithm improvements that accompanied this change.

View Tags

View tags were a clever optimization to speed up wallet synchronization. A one-byte tag is appended to each transaction output that allows a wallet scanning the blockchain to quickly determine whether an output might belong to it, without performing the full computation. This reduced wallet sync times by roughly 40%, a significant quality-of-life improvement for users.

The Upcoming FCMP++ Upgrade

The most anticipated upcoming upgrade is Full-Chain Membership Proofs (FCMP++), which represents a fundamental evolution of Monero's sender privacy model.

Beyond Fixed Ring Sizes

Currently, Monero uses a ring of 16 members for each transaction input. While this provides reasonable privacy, the fixed ring size means that statistical analysis over time can potentially narrow down the real spend, especially when combined with timing analysis and knowledge of the decoy selection distribution.

FCMP++ will replace fixed-size ring signatures with a proof system where the anonymity set is the entire set of outputs on the Monero blockchain. Instead of proving that your spend is hidden among 16 candidates, you prove it is hidden among all millions of outputs that have ever been created on the network.

Technical Approach

FCMP++ uses a combination of the Curve Trees construction and the Selene/Helios proof systems to create efficient proofs of set membership for the full UTXO set. The cryptographic challenge is doing this without making transactions impractically large or slow to verify. The research team has made significant progress in achieving proof sizes and verification times that are practical for deployment.

Impact

When implemented, FCMP++ will effectively eliminate statistical analysis attacks based on ring membership. An observer will know that a transaction was made by someone who owns one of the millions of outputs on the blockchain, but will have no way to narrow this down further based on ring analysis alone. This represents a qualitative leap in sender privacy comparable to the introduction of RingCT for amount privacy.

Monero's Upgrade Philosophy vs. Bitcoin's Ossification

The contrast between Monero's regular hard fork schedule and Bitcoin's increasingly ossified protocol reflects fundamentally different design philosophies.

Bitcoin's Approach

Bitcoin prioritizes stability and predictability. Protocol changes are rare, require overwhelming consensus, and are implemented through backward-compatible soft forks when possible. The argument is that a monetary protocol should be as stable and predictable as possible, and that the risks of frequent changes outweigh the benefits.

Monero's Approach

Monero prioritizes privacy improvement and adaptation. The community recognizes that privacy technology exists in an adversarial environment where chain analysis firms, researchers, and governments are constantly developing new techniques to deanonymize transactions. A privacy protocol that stops evolving will eventually be defeated.

Monero's regular hard forks also make future upgrades, including the quantum-computing resistant cryptography that will eventually be needed, more practically achievable. The community and infrastructure are accustomed to coordinated upgrades, making the transition smoother when critical changes are needed.

Conclusion

From its CryptoNote origins through RingCT, Bulletproofs, RandomX, CLSAG, and beyond, Monero's upgrade history tells the story of a protocol that relentlessly pursues better privacy, efficiency, and decentralization. Each hard fork addressed real limitations and improved the practical privacy guarantees available to users.

The upcoming FCMP++ upgrade promises to be another landmark moment, potentially giving Monero the strongest sender privacy guarantees of any cryptocurrency in existence. For those who value financial privacy, Monero's willingness to evolve is not a liability but its greatest strength. MoneroSwapper provides easy access to XMR without KYC, allowing you to participate in this privacy-focused ecosystem regardless of which upgrade cycle the network is in.