> This threat model is also mentioned explicitly in the ZCash (Zerocash) design, which notes that “Zerocash only anonymizes the transaction ledger. Network traffic used to announce transactions, retrieve blocks, and contact merchants still leaks identifying information (e.g , IP addresses). Thus users need some anonymity network to safely use Zerocash” [29]. Therefore, allowing users to enable thirdparty anonymity in terms of unlinkability between transactions will be the goal of this user study. > > their understanding of privacy - while sometimes confused with the more narrow use of encryption - does indeed map to a global passive adversary capable of observing the metadata of their communication > > <cite>-- H. Halpin, K. Ermoshina, and F. Musiani, “Co-ordinating developers and high-risk users of privacy-enhanced secure messaging protocols,” in Proceedings of the Security Standardisation Research Conference, 2018, pp. 56–75.</cite>