Anna and Auryn Macmillan walk through two major architectural transitions, starting with Zodiac's evolution from an opinionated DAO toolkit into a modular access control suite. The conversation traces how real-world multisig exploits revealed that monolithic governance frameworks create unacceptable blast radius—a single vulnerability can drain an entire treasury. The solution: decompose access control into independent, auditable modules where compromise containment becomes a design constraint, not an afterthought.
The episode then pivots to the main event: The Interfold, a new encrypted execution environment that refuses to pick sides in the FHE vs. ZK vs. MPC debate. Instead, Macmillan details a co-processor architecture where a fresh off-chain compute node spins up per transaction, processes encrypted data using fully homomorphic encryption, and submits a zero-knowledge proof attesting that the computation was performed correctly—all without ever decrypting the underlying inputs.
Key mechanisms covered include the MPC-based distributed key generation ceremony that prevents any single operator from holding the full encryption key, the economic security model for compute nodes, and the concrete 12–18 month audit pipeline required to stress-test three interlocking cryptographic systems. Use cases span secret ballot voting with real-time tally updates, sealed-bid auctions where only the winning price is revealed, collaborative analytics across competing organizations, and private AI training. Throughout, Macmillan grounds the discussion in practitioner realities: what ships first, what breaks, and why composability matters more than cryptographic purity.
Key Insights
- Encrypted execution unlocks onchain private voting without tally latency because computations run on encrypted data directly, enabling real-time result updates while vote secrecy remains intact.
- The Interfold's co-processor architecture spins up a fresh off-chain compute node per transaction, processes encrypted data using FHE, then generates a ZK proof that the node executed correctly before posting results onchain.
- Encryption keys are generated through a multi-party computation (MPC) ceremony distributed across independent operators—no single party ever holds the full key, eliminating the trusted decryptor problem.
- Sealed-bid auctions become possible onchain because bids are encrypted before submission, compute nodes run the auction logic over encrypted values, and only the final winning bid and price are revealed.
- The audit pipeline for this system runs on a 12–18 month timeline due to the novel combination of three cryptographic primitives, with the FHE component requiring the longest review given its relative immaturity compared to ZK and MPC.
- Lessons from actual multisig hacks directly informed the access control redesign: the shift from monolithic DAO tooling to a modular suite means a vulnerability in one module doesn't compromise the entire organization's treasury.
Who should listen: Engineers and architects designing onchain privacy systems who need to understand the integration surface between FHE computation, ZK verification, and MPC key management—not just the primitives in isolation.
Why This Matters
The Interfold represents a shift from treating FHE, ZK, and MPC as competing privacy approaches to combining them as composable primitives. This forces a re-evaluation of security assumptions—and attack surfaces—when no single cryptographic technique carries the full trust burden.
