Stylized illustration of a Monero coin suspended inside a zero-knowledge cryptographic mesh
Categories
Uncategorized

FCMP++ is Monero’s biggest privacy upgrade in years. Trail of Bits audits it May 11–22, 2026. What it is, how it works, and how to swap XMR with no account.

You can swap BTC for XMR without an account — but first, it helps to understand why XMR's privacy model is about to get meaningfully stronger.

TL;DR: FCMP++ (Full Chain Membership Proofs++) replaces Monero's ring-signature decoy system with a zero-knowledge proof that covers the entire UTXO set. The result: every Monero output becomes a potential input in every transaction, making chain-analysis attacks orders of magnitude harder. A Trail of Bits security audit runs May 11–22, 2026.

What FCMP++ is — and what it replaces

Monero has used ring signatures since 2017 to hide which output in a transaction is the real spend. Under the current system, a transaction bundles the real input with a fixed number of decoys drawn from the blockchain. The decoy set size has grown over time — currently 15 outputs — but it is still a small sample of the chain.

That bounded decoy set is the root limitation. Researchers have shown that statistical analysis, timed-payment attacks, and chain-reaction tracing can narrow down the real input with meaningful probability when the ring size is small. The decoy model was always a pragmatic compromise.

FCMP++ replaces it entirely. Instead of a ring drawn from a handful of outputs, FCMP++ uses a cryptographic construction called a Full Chain Membership Proof: a zero-knowledge proof that the spent output exists somewhere in the entire Monero UTXO set — without revealing which one. The "decoy set" effectively becomes every unspent output on the chain.

The core technical work was led by Monero contributor Luke Parker (kayabaNerve), building on the Curve Trees construction described in academic literature. The Monero Research Lab has published the design in detail. (Monero Research Lab — FCMP++ design notes, retrieved 2026-05-07.)

Why the Trail of Bits audit matters

Cryptographic protocols fail in implementation, not just in theory. A construction that is sound on paper can still have bugs in the proving system, the verifier, or the serialisation layer. This is why a formal security audit by an independent firm is a prerequisite for mainnet activation.

Trail of Bits, a well-regarded security research firm with prior Monero-adjacent work, begins a formal audit of the FCMP++ implementation on May 11, 2026, with an expected completion date of May 22, 2026. (Trail of Bits — engagement announcement, retrieved 2026-05-07.) The audit result — pass, conditional, or fail with findings — will directly determine the timeline for a network upgrade proposal and eventual hard fork.

For XMR holders and swappers, the audit completion is the practical milestone to watch. A clean bill of health accelerates the upgrade path; significant findings delay it.

What changes for ordinary Monero users

From a user perspective, the change is invisible in normal operation. You still send XMR to an address; the wallet constructs the transaction. What changes is the proof embedded in that transaction.

The main practical implications:

  1. Stronger default privacy. Because the anonymity set is the full chain rather than 15 decoys, the statistical attacks that currently erode ring-signature privacy become computationally infeasible against FCMP++ outputs.
  2. Larger proof size (initially). FCMP++ proofs are larger than current ring signatures. Wallet developers are working on optimisations, but early versions of the upgrade will increase transaction byte weight — which may slightly increase fees until compression improves.
  3. No change to the swap workflow. If you are swapping into or out of XMR today, the process is identical after the upgrade. You supply a receiving address; the funds arrive. The improvement is in what an observer can infer from the chain — not in the mechanics of sending or receiving.
  4. Forward-compatibility with future upgrades. FCMP++ is designed to compose with Seraphis, the next-generation Monero transaction protocol. Upgrading to FCMP++ now is the stepping stone toward a more complete privacy model.

How to swap BTC to XMR before or after the upgrade

If you have read this far and want XMR, here is the straightforward path — no account required.

  1. Go to the BTC to XMR swap page. Enter the amount of Bitcoin you want to send.
  2. Enter your Monero receiving address. This is the wallet address where XMR will arrive. Double-check it — Monero addresses do not support address books with automatic correction.
  3. Enter a BTC refund address (recommended). If the swap cannot complete for any reason, GhostSwap returns your BTC here.
  4. Send BTC to the deposit address shown. The swap initiates when GhostSwap detects your deposit on-chain.
  5. Wait. Median completion is around 8 minutes. The 95th-percentile case takes up to 30 minutes, usually because of slow Bitcoin confirmation.

No sign-up. No email. No identity verification required. GhostSwap supports 1,600+ coins — funds pass through non-custodially and are never held by GhostSwap. Pricing is floating-rate: the exact XMR amount is set by the market rate at the moment your BTC deposit is confirmed, not the moment you entered the amount.

If you prefer a different entry point, you can start a swap directly at the exchanger.

Curve Trees cryptographic accumulator: branches converging into a single zero-knowledge proof
A Curve Trees accumulator: every unspent output forms a leaf, and a transaction proves membership without revealing which leaf.

FAQ

Q: When will FCMP++ actually activate on the Monero mainnet? A: No firm date is set as of May 2026. The Trail of Bits audit (May 11–22) is the next milestone. After the audit, a network upgrade proposal must go through community review and a hard fork coordinated with miners and node operators. Realistic estimates from Monero contributors suggest late 2026 or 2027 depending on audit findings and implementation time.

Q: Does FCMP++ make Monero truly untraceable? A: No single technology claim should be stated in absolute terms. FCMP++ substantially raises the cost of tracing any given spend by expanding the anonymity set to the full chain. It eliminates the statistical weaknesses of bounded ring signatures. Whether that meets any particular personal or operational threshold is a question you should assess against your own situation and the academic literature.

Q: Do I need to upgrade my Monero wallet for FCMP++? A: Yes. When the hard fork activates, wallets that haven't been updated will not be able to construct FCMP++ transactions. Standard Monero wallets (Monero GUI, Feather Wallet, and others) are expected to release compatible versions ahead of the network upgrade.

Q: Can I already swap XMR on GhostSwap? A: Yes. XMR is available now across 1,600+ pairs — no account, no KYC, non-custodial. Use the BTC to XMR swap page or the main exchanger.

Q: What is a zero-knowledge proof in plain English? A: A zero-knowledge proof lets you convince a verifier that a statement is true without revealing why it is true. In FCMP++, the statement is: "I own an output that exists somewhere in this blockchain." The proof convinces every node on the network of that fact without revealing which output it is.

Questions about swapping Monero? See our FAQ →.

BTC BTC
ETH ETH
ETH ETH
BTC BTC
BTC BTC
SOL SOL
ETH ETH
SOL SOL
BTC BTC
XMR XMR
ETH ETH
XMR XMR
SOL SOL
XMR XMR
XMR XMR
USDT USDT
USDT USDT
XMR XMR
XMR XMR
BTC BTC
BTC BTC
ZEC ZEC
ETH ETH
ZEC ZEC
SOL SOL
ZEC ZEC
ZEC ZEC
USDT USDT
USDT USDT
ZEC ZEC
ZEC ZEC
BTC BTC
ETH ETH
XRP XRP
BTC BTC
DOGE DOGE
DOGE DOGE
USDT USDT
BTC BTC
LTC LTC
SHIB SHIB
PEPE PEPE
PEPE PEPE
USDT USDT
SHIB SHIB
USDT USDT
BONK BONK
USDT USDT
WIF WIF
USDT USDT
POPCAT POPCAT
USDT USDT
DOGE DOGE
SHIB SHIB

Recent posts