Advanced

Monero Internals Quiz (Expert)

No hand-holding. Test whether you truly understand Monero's cryptography and protocol internals.

Covers material from Monero Internals: Cryptography & Protocol Deep Dive.

Create a free account or log in to save your quiz scores and track your progress.

Q1

On Ed25519, what is a Monero private key and what operation produces the matching public key?

Q2

For a standard (non-subaddress) output, how is the one-time output public key P built?

Q3

What exactly is a key image, and what property makes it stop double-spends?

Q4

In RingCT, an output amount is committed as C = aH + xG. What must hold for the transaction to be valid (ignoring fees)?

Q5

What do Bulletproofs+ prove, and why are they needed?

Q6

Why does a view tag speed up wallet scanning?

Q7

What makes RandomX resistant to ASICs?

Q8

When sending to a subaddress whose public spend point is D, the sender publishes the transaction public key as R = r*D rather than R = r*G. Why is this necessary?

Q9

In a current RingCT transaction the per-output ecdhInfo field is only 8 bytes. Why does it not also need to carry the 32-byte commitment blinding factor (the mask)?

Q10

Why does a RingCT transaction attach a fresh pseudo-output commitment to each input instead of using the input's original on-chain amount commitment directly in the balance equation?

🎓 Graduate from Monero Academy

Create a free account, ace every quiz across all courses, and earn your place on the Graduates wall — with your own Monero address for donations. An account also tracks your progress through the courses, and graduating is the prize for finishing.