Zcash Integration

Zcash Integration Guide

SIP Protocol integrates Zcash technology for privacy-preserving cross-chain transactions. This guide covers setup, usage, and best practices.

Overview

SIP leverages Zcash in three key ways:

Feature	Description	Status
Zcash RPC Client	Full shielded transaction support	Implemented
Viewing Keys	Selective disclosure inspired by Zcash	Implemented
Proof Composition	Halo2 proofs + Mina verification	Planned

Why Zcash?

Zcash pioneered shielded transactions with billions in private value transferred since 2016. SIP builds on this battle-tested foundation.

Quick Start

Installation

npm install @sip-protocol/sdk

Basic Usage

import { ZcashRPCClient, createZcashClient } from '@sip-protocol/sdk'

// Create client
const zcash = createZcashClient({
  rpcUrl: 'http://localhost:8232',
  rpcUser: 'your-rpc-user',
  rpcPassword: 'your-rpc-password'
})

// Check connection
const info = await zcash.getBlockchainInfo()
console.log('Zcash network:', info.chain)

Zcash RPC Client

The ZcashRPCClient provides full access to Zcash’s shielded infrastructure.

Configuration

interface ZcashRPCConfig {
  rpcUrl: string       // Zcash node RPC endpoint
  rpcUser: string      // RPC authentication user
  rpcPassword: string  // RPC authentication password
  timeout?: number     // Request timeout (ms, default: 30000)
}

Account Management

Zcash uses HD (Hierarchical Deterministic) accounts for address generation:

// Create a new HD account
const { account } = await zcash.createAccount()
console.log('Account index:', account)

// Generate unified address for the account
const { address } = await zcash.getAddressForAccount(
  account,
  ['sapling', 'orchard']  // Receiver types
)
console.log('Unified address:', address)

Shielded Transactions

// Get shielded balance
const balance = await zcash.getShieldedBalance(zAddress)
console.log('Shielded balance:', balance, 'ZEC')

// Send shielded transaction
const txid = await zcash.sendShielded({
  from: senderZAddress,
  to: recipientZAddress,
  amount: 1.5,         // Amount in ZEC
  memo: 'Private payment'  // Optional encrypted memo
})
console.log('Transaction ID:', txid)

// List shielded transactions
const transactions = await zcash.listShieldedTransactions(zAddress)

Unified Addresses (ZIP-316)

Zcash Unified Addresses combine multiple receiver types in a single address:

// Generate address with all receiver types
const { address } = await zcash.getAddressForAccount(
  account,
  ['orchard', 'sapling', 'p2pkh']  // Shielded + transparent
)

// Address format: u1...
// Contains:
// - Orchard receiver (latest shielded pool)
// - Sapling receiver (widely supported)
// - Transparent receiver (for compatibility)

Viewing Keys

SIP’s viewing key system is inspired by Zcash’s design, enabling selective disclosure for compliance.

Zcash Viewing Key Types

Type	See Incoming	See Outgoing	Spend
Full Viewing Key	Yes	Yes	No
Incoming Viewing Key	Yes	No	No
Outgoing Viewing Key	No	Yes	No

SIP Viewing Keys

import { generateViewingKey, deriveViewingKeyHash } from '@sip-protocol/sdk'

// Generate viewing key pair
const { viewingKey, viewingKeyHash } = generateViewingKey(spendingKey)

// Viewing key can be shared with auditors
// viewingKeyHash is stored on-chain for verification
console.log('Share with auditor:', viewingKey)
console.log('On-chain hash:', viewingKeyHash)

Compliance Flow

import { SIP, PrivacyLevel } from '@sip-protocol/sdk'

const sip = new SIP({ network: 'mainnet' })

// Create compliant transaction (generates viewing key)
const intent = await sip
  .intent()
  .input('ethereum', 'ETH', amount)
  .output('solana', 'SOL')
  .privacy(PrivacyLevel.COMPLIANT)  // Includes viewing key
  .build()

// Extract viewing key for auditor
const viewingKey = intent.viewingKey
console.log('Auditor viewing key:', viewingKey)

// Auditor can verify transaction details
const details = await sip.decryptWithViewingKey(
  intent.encryptedData,
  viewingKey
)

Privacy Levels

SIP privacy levels map to Zcash concepts:

SIP Level	Zcash Equivalent	Description
TRANSPARENT	t-address	Public, on-chain visible
SHIELDED	z-address	Full privacy, hidden amounts
COMPLIANT	z-address + viewing key	Privacy with audit capability

Usage

import { PrivacyLevel } from '@sip-protocol/sdk'

// Transparent (public) - like Zcash t-address
await sip.intent()
  .privacy(PrivacyLevel.TRANSPARENT)
  .build()

// Shielded (private) - like Zcash z-address
await sip.intent()
  .privacy(PrivacyLevel.SHIELDED)
  .build()

// Compliant (private + auditable) - z-address with viewing key
await sip.intent()
  .privacy(PrivacyLevel.COMPLIANT)
  .build()

Zcash as Destination

Route swaps through Zcash’s shielded pool for maximum privacy:

import { SIP, PrivacyLevel } from '@sip-protocol/sdk'

const sip = new SIP({
  network: 'mainnet',
  zcashConfig: {
    rpcUrl: 'http://localhost:8232',
    rpcUser: 'user',
    rpcPassword: 'pass'
  }
})

// Swap ETH → ZEC (shielded)
const intent = await sip
  .intent()
  .input('ethereum', 'ETH', ethAmount)
  .output('zcash', 'ZEC')
  .recipientAddress(zAddress)  // Shielded z-address
  .privacy(PrivacyLevel.SHIELDED)
  .build()

Future: Proof Composition

SIP’s roadmap includes composing proofs from multiple systems:

┌─────────────────────────────────────────────────────────────┐
│  PROOF COMPOSITION (Phase 3)                                │
├─────────────────────────────────────────────────────────────┤
│  Zcash (Halo2)  →  Privacy execution                        │
│  Mina (Kimchi)  →  Succinct verification                    │
│  Noir           →  Validity proofs                          │
│                                                             │
│  Combined: Maximum privacy + minimal verification cost      │
└─────────────────────────────────────────────────────────────┘

Halo2 Advantages

Feature	Benefit
No trusted setup	Eliminates ceremony risk
Recursive proofs	Proof aggregation
IPA commitments	Smaller proof sizes

Error Handling

import { ZcashRPCError, hasErrorCode, ErrorCode } from '@sip-protocol/sdk'

try {
  const txid = await zcash.sendShielded(params)
} catch (error) {
  if (error instanceof ZcashRPCError) {
    console.error('Zcash RPC error:', error.code, error.message)

    // Common error codes
    if (error.code === -6) {
      console.error('Insufficient funds')
    } else if (error.code === -28) {
      console.error('Node is still syncing')
    }
  }
}

Performance

Operation	Time	Notes
Create account	<100ms	HD derivation
Generate address	<100ms	Address encoding
Send shielded	2-40s	Proof generation
Verify proof	~10ms	Fast verification

Resources

Zcash Documentation

• Zcash Protocol Specification
• ZIP-316: Unified Addresses
• Zcash RPC Reference
• Halo 2 Book

SIP Resources

• SIP SDK Reference
• ZcashShieldedService
• Privacy Levels Guide
• Viewing Keys Concept

Demo

Try the live demo at sip-protocol.org/demo to see Zcash integration in action.