Add Pedersen Commitments explanation to FAQ

Text from [here](https://www.reddit.com/r/Monero/comments/6wi512/how_can_a_third_party_verify_my_transaction/dm89e8g/).
2024-12-23 12:09:49 +00:00 · 2017-08-28 12:29:54 -04:00 · 2017-08-28 12:29:54 -04:00 · 0071ea3a69
commit 0071ea3a69
parent ddaff002ad
1 changed files with 15 additions and 0 deletions
--- a/get-started/faq/index.md
+++ b/get-started/faq/index.md
@ -124,3 +124,18 @@ Fungibility is a simple property of money such that there are no differences bet
 </div>

 </div>
+
+<div class="tab">
+    <input id="tab-eleven" type="checkbox" name="tabs" class="accordian">
+    <label for="tab-eleven" class="accordian">If Monero is so private how do we know they're not being created out of thin air?</label>
+    
+<div class="tab-content" markdown="1">
+
+The value of the inputs that you are spending and the value of the outputs you are sending are encrypted and opaque to everyone except the recipient of each of those outputs.
+
+The clever part is that they're encrypted using Pedersen commitments. What this means is that no observers can tell the amounts of the inputs and outputs, but they can do math on the Pedersen commitments to determine that no Monero was created out of thin air.
+
+As long as the encrypted output amounts you create (which include an output for the recipient and a change output back to yourself) plus the transaction fee (which is unencrypted) is equal to the sum of the inputs that are being spent, then you have a legitimate transaction that is not creating Monero out of thin air. Pedersen commitments mean that the sums can be verified as being equal, but the Monero value of each of the sums and the Monero value of the inputs and outputs individually are undeterminable.
+</div>
+
+</div>