Crypto Research

Monero vs Zcash: What's Actually Different?

Monero and Zcash both offer transaction privacy, but through fundamentally different architectures. One makes privacy mandatory. The other makes it optional. That distinction has real consequences for fungibility, exchange access, and regulatory exposure.
Lewis Jackson
CEO and Founder

Both Monero and Zcash are described as "privacy coins." That label is accurate in the narrow sense — both obscure transaction details that Bitcoin exposes — but it collapses a difference that actually matters. The underlying architectures are not variations on the same idea. They're different approaches to the same problem, with different tradeoffs, different regulatory profiles, and different implications for how useful the privacy actually is.

The clearest way to put it: Monero makes privacy mandatory. Zcash makes it optional. That single distinction flows through almost everything else.

How Monero's Privacy Works

Monero obscures three things by default, on every transaction: the sender, the receiver, and the amount.

Ring signatures handle sender obfuscation. When you send Monero, your transaction input is mixed with a set of other outputs from the blockchain, forming a "ring." An observer can see that one of those ring members sent the transaction — they can't determine which one. The size of that ring has increased over Monero's history (currently 16 decoys per input), with the intent of making statistical tracing harder as chain analysis evolves.

Stealth addresses handle receiver privacy. Rather than publishing your actual address and having incoming transactions publicly linkable to it, senders derive a one-time address for each transaction. Only the recipient can identify and claim funds sent to them; the public ledger sees a new address each time.

RingCT (Ring Confidential Transactions, introduced in 2017) hides the amounts. Cryptographic commitments allow the network to verify that inputs equal outputs — no inflation — without revealing the actual values. This closed what had been a meaningful gap in early Monero privacy.

The result is that every Monero transaction looks roughly the same to an outside observer. There's no "shielded vs transparent" distinction because there's no choice to make. You can't accidentally send an unshielded Monero transaction.

How Zcash's Privacy Works

Zcash uses zk-SNARKs — a class of zero-knowledge proofs — to achieve transaction privacy. The math is genuinely impressive: it allows a sender to prove they have the right to spend funds, and that the transaction is valid, without revealing who they are or how much they're sending. Zcash's implementation of this, called the Sapling protocol (2018) and later Orchard (2021), represents some of the most sophisticated applied cryptography in the field.

The privacy is strong in the cryptographic sense. But here's the structural issue: it's optional.

Zcash has two address types. Transparent addresses (t-addresses) work like Bitcoin — all transactions are visible on a public ledger. Shielded addresses (z-addresses, specifically the Sapling "zs" and Orchard "uo" formats) use the zero-knowledge proofs to hide sender, receiver, and amount.

Users can send between any combination of address types. And in practice, the majority of Zcash transactions have historically used transparent addresses. There are several reasons for this: wallet support for shielded transactions developed slowly, mining payouts originally went to transparent addresses, and exchanges generally required transparent address deposits.

This creates what's sometimes called the anonymity set problem. Privacy depends partly on blending in — if only a small fraction of transactions use shielded addresses, shielded users stand out simply by virtue of using them. The privacy guarantee from the cryptography is real, but its practical value is affected by adoption rates.

The Trusted Setup Question

Zcash's zk-SNARKs require a trusted setup: a multi-party computation ceremony that generates the public parameters the system needs to function. The ceremony is designed so that the private inputs are destroyed; if that destruction genuinely happened, the system is sound. If it didn't — if a party retained the toxic waste — they could theoretically generate fraudulent proofs and create Zcash from nothing.

Zcash has run multiple ceremonies (the original 2016 ceremony, Sapling in 2018, and the shift to Orchard, which uses a different proving system, Halo 2, that removes the trusted setup requirement). Orchard — the newest shielded pool — has no trusted setup.

Monero's cryptographic approach doesn't require a trusted setup. Ring signatures, stealth addresses, and RingCT are constructed from more standard cryptographic primitives. Whether that's a meaningful practical advantage depends on your threat model, but it's a structural difference worth understanding.

What's Changing

Both protocols have active development with meaningful near-term milestones.

Zcash: Electric Coin Company (ECC) and the Zcash Foundation have been developing a Proof of Stake transition for Zcash (internally called Zcash 2.0). The roadmap involves retiring the current PoW chain and moving to a new PoS architecture. This would change Zcash's security and economic model significantly. The timeline has shifted several times and remains in-progress as of early 2026.

Monero has a tail emission design: after the initial block reward schedule ends, Monero will produce 0.6 XMR per block indefinitely. The stated rationale is maintaining miner incentives without relying solely on transaction fees — a deliberate choice that accepts perpetual supply inflation at a low rate. This is a known parameter, not an unresolved question.

On the exchange side: both coins have faced delistings driven by regulatory pressure, particularly in jurisdictions where the FATF travel rule creates compliance friction for privacy-preserving assets. Monero has been delisted from more exchanges than Zcash, partly because Monero's mandatory privacy makes it harder to offer any "compliance-compatible" version of the asset. Zcash, with its transparent address option, has in some cases been retained on platforms that dropped Monero.

What Would Confirm This Direction

  • Zcash's shielded pool adoption increasing materially — specifically the percentage of shielded vs transparent transactions rising
  • Orchard pool seeing meaningful wallet and exchange integration, improving the anonymity set
  • Monero's ring signature size expanding further with protocol upgrades, maintaining tracing resistance as chain analysis improves
  • Zcash PoS transition executing cleanly with predictable validator economics

What Would Break or Invalidate It

  • Statistical deanonymization of Monero transactions becoming reliable at scale — researchers have published work on ring signature tracing; if this progresses enough to be practically exploitable, the privacy model weakens materially
  • A flaw in Zcash's zk-SNARK implementation enabling hidden supply inflation
  • Regulatory action eliminating both coins from the exchange ecosystem entirely
  • Zcash shielded adoption remaining low through the PoS transition, leaving the anonymity set problem structurally unresolved

Timing Perspective

Now: The mandatory vs optional privacy architecture is the live distinction. Monero's privacy is uniform by default; Zcash's requires intentional use of shielded pools, which most users haven't done historically. Exchange access is the near-term practical constraint for both.

Next: Zcash's PoS transition is the most consequential pending change — it would reshape the security model, economics, and potentially the development trajectory. Worth tracking if Zcash is in scope.

Later: The longer-horizon question is how zero-knowledge proof technology evolves more broadly. zk-SNARKs are increasingly used in Ethereum L2s and other contexts. Whether Zcash's head start in applied ZKP translates into durable relevance, or whether the technology becomes a commodity available to any chain, is unresolved.

Boundary Statement

This explanation covers the cryptographic architecture and structural differences. It doesn't address tax treatment, regulatory status in any specific jurisdiction, or whether either asset is appropriate for any purpose.

Both Monero and Zcash are live protocols with active development. The privacy guarantees described here reflect their current implementations — both are subject to change, and both have active research on potential vulnerabilities. The mechanism is what's described here. Whether that mechanism is useful depends on context that's outside the scope of this post.

Related Posts

See All
Crypto Research
New XRP-Focused Research Defining the “Velocity Threshold” for Global Settlement and Liquidity
A lot of people looking at my recent research have asked the same question: “Surely Ripple already understands all of this. So what does that mean for XRP?” That question is completely valid — and it turns out it’s the right question to ask. This research breaks down why XRP is unlikely to be the internal settlement asset of CBDC shared ledgers or unified bank platforms, and why that doesn’t mean XRP is irrelevant. Instead, it explains where XRP realistically fits in the system banks are actually building: at the seams, where different rulebooks, platforms, and networks still need to connect. Using liquidity math, system design, and real-world settlement mechanics, this piece explains: why most value settles inside venues, not through bridges why XRP’s role is narrower but more precise than most narratives suggest how velocity (refresh interval) determines whether XRP creates scarcity or just throughput and why Ripple’s strategy makes more sense once you stop assuming XRP must be “the core of everything” This isn’t a bullish or bearish take — it’s a structural one. If you want to understand XRP beyond hype and price targets, this is the question you need to grapple with.
Read Now
Crypto Research
The Jackson Liquidity Framework - Announcement
Lewis Jackson Ventures announces the release of the Jackson Liquidity Framework — the first quantitative, regulator-aligned model for liquidity sizing in AMM-based settlement systems, CBDC corridors, and tokenised financial infrastructures. Developed using advanced stochastic simulations and grounded in Basel III and PFMI principles, the framework provides a missing methodology for determining how much liquidity prefunded AMM pools actually require under real-world flow conditions.
Read Now
Crypto Research
Banks, Stablecoins, and Tokenized Assets
In Episode 011 of The Macro, crypto analyst Lewis Jackson unpacks a pivotal week in global finance — one marked by record growth in tokenized assets, expanding stablecoin adoption across emerging markets, and major institutions deepening their blockchain commitments. This research brief summarises Jackson’s key findings, from tokenized deposits to institutional RWA chains and AI-driven compliance, and explains how these developments signal a maturing, multi-rail settlement architecture spanning Ethereum, XRPL, stablecoin networks, and new interoperability layers.Taken together, this episode marks a structural shift toward programmable finance, instant settlement, and tokenized real-world assets at global scale.
Read Now

Related Posts

See All
No items found.
Lewsletter

Weekly notes on what I’m seeing

A personal letter I send straight to your inbox —reflections on crypto, wealth, time and life.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.