deanonymization and linkability of
play

Deanonymization and linkability of transactions based on network - PowerPoint PPT Presentation

Oct 08, 2023 •330 likes •735 views

Deanonymization and linkability of cryptocurrency Deanonymization and linkability of transactions based on network analysis cryptocurrency transactions based on Biryukov, Tikhomirov network analysis Introduction Tx clustering Parallel

  1. Deanonymization and linkability of cryptocurrency Deanonymization and linkability of transactions based on network analysis cryptocurrency transactions based on Biryukov, Tikhomirov network analysis Introduction Tx clustering Parallel connections Alex Biryukov, Sergei Tikhomirov Weighting timestamp vectors Correlation matrix Measuring anonymity University of Luxembourg Experiments Estimating the source IP 17 June 2019 Discussion Euro S&P Conclusion Stockholm, Sweden 1/39

  2. Deanonymization Outline and linkability of cryptocurrency transactions based on network analysis Introduction Biryukov, Tikhomirov Transaction clustering Introduction Parallel connections Tx clustering Parallel connections Weighting timestamp vectors Weighting timestamp vectors Correlation matrix Correlation matrix Measuring anonymity Measuring anonymity Experiments Estimating the source IP Experimental results Discussion Estimating the source IP Conclusion Discussion Conclusion 2/39

  3. Deanonymization Outline and linkability of cryptocurrency transactions based on network analysis Introduction Biryukov, Tikhomirov Transaction clustering Introduction Parallel connections Tx clustering Parallel connections Weighting timestamp vectors Weighting timestamp vectors Correlation matrix Correlation matrix Measuring anonymity Measuring anonymity Experiments Estimating the source IP Experimental results Discussion Estimating the source IP Conclusion Discussion Conclusion 3/39

  4. Deanonymization Bitcoin and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering Parallel connections Weighting timestamp vectors Correlation matrix Measuring anonymity Experiments ◮ The first to solve double-spending with proof-of-work Estimating the source IP Discussion Conclusion ◮ Senders broadcast transactions into a P2P network ◮ Miners construct blocks (thus confirming transactions) 4/39

  5. Deanonymization Privacy in Bitcoin and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering ◮ Transactions not linked to ”real-world” identity Parallel connections Weighting timestamp vectors Correlation matrix ◮ Users can generate as many key pairs as they wish Measuring anonymity Experiments Estimating the source IP ◮ False sense of privacy? Discussion Conclusion 5/39

  6. Deanonymization Taint analysis heuristics and linkability of cryptocurrency transactions based on network analysis ◮ All transaction inputs probably belong to the sender Biryukov, Tikhomirov ◮ One output probably also belongs to the sender Introduction Tx clustering Parallel connections Weighting timestamp vectors Correlation matrix Measuring anonymity Experiments Estimating the source IP Discussion Conclusion Figure: Bitcoin transaction structure 6/39

  7. Deanonymization Privacy coins hinder blockchain analysis... and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Dash: mixing by masternodes Introduction ◮ Tx clustering Parallel connections Weighting timestamp vectors Correlation matrix Measuring anonymity Experiments Monero: ring signatures Estimating the source IP ◮ Discussion Conclusion Zcash: zk-SNARKs ◮ 7/39

  8. Deanonymization ...but what about network analysis? and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering ◮ How do messages propagate through the network? Parallel connections Weighting timestamp vectors Correlation matrix ◮ What does a well-connected adversary learn? Measuring anonymity Experiments Estimating the source IP ◮ Is it possible to link txs by the same user? Discussion Conclusion 8/39

  9. Deanonymization Our contributions and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering ◮ We introduce a new transaction clustering method Parallel connections Weighting timestamp based on weighted vectors of IP addresses vectors Correlation matrix Measuring anonymity ◮ We validate our method with experiments on Bitcoin Experiments Estimating the source IP and three major privacy-focused cryptocurrencies Discussion Conclusion 9/39

  10. Deanonymization Outline and linkability of cryptocurrency transactions based on network analysis Introduction Biryukov, Tikhomirov Transaction clustering Introduction Parallel connections Tx clustering Parallel connections Weighting timestamp vectors Weighting timestamp vectors Correlation matrix Correlation matrix Measuring anonymity Measuring anonymity Experiments Estimating the source IP Experimental results Discussion Estimating the source IP Conclusion Discussion Conclusion 10/39

  11. Deanonymization Message propagation in Bitcoin and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering Parallel connections Weighting timestamp vectors Correlation matrix Measuring anonymity Experiments Estimating the source IP Discussion Figure: Bitcoin’s 3-step message exchange Conclusion 11/39

  12. Deanonymization Broadcast randomization in Bitcoin and forks and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering Parallel connections ◮ trickling: send to a random subset once every 100 ms Weighting timestamp vectors Correlation matrix Measuring anonymity ◮ diffusion: send to each neighbor after a random delay Experiments Estimating the source IP Discussion Conclusion 12/39

  13. Deanonymization Intuition and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering Transactions issued from the Parallel connections Weighting timestamp vectors Correlation matrix same node have correlated Measuring anonymity Experiments broadcast patterns. Estimating the source IP Discussion Conclusion 13/39

  14. Deanonymization Outline of our clustering method and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov ◮ Establish parallel connections to many nodes Introduction Tx clustering ◮ Log timestamps of received tx announcements Parallel connections Weighting timestamp vectors Correlation matrix ◮ For each tx, consider IPs which announced it to us Measuring anonymity Experiments Estimating the source IP ◮ Cluster transactions with ”similar” IP vectors Discussion Conclusion ◮ Measure the decrease in anonymity 14/39

  15. Deanonymization Parallel connections and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction ◮ Default connections: 8 outgoing + up to 117 incoming Tx clustering Parallel connections ◮ We are unlikely to get a new tx quickly with only one Weighting timestamp vectors Correlation matrix connection per node Measuring anonymity Experiments Estimating the source IP ◮ bcclient establishes parallel connections to nodes Discussion Conclusion ◮ Bitcoin and Zcash show similar distribution of free slots 15/39

  16. Deanonymization Bitcoin free slots and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering Parallel connections Weighting timestamp vectors Correlation matrix Measuring anonymity Experiments Estimating the source IP Discussion Conclusion 16/39

  17. Deanonymization Zcash free slots and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction Tx clustering Parallel connections Weighting timestamp vectors Correlation matrix Measuring anonymity Experiments Estimating the source IP Discussion Conclusion 17/39

  18. Deanonymization Weighting timing vectors and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov IP addresses p i announce a new tx to us at times t i . Introduction We assign exponentially decreasing weights to p i : Tx clustering Parallel connections w ( p i ) = e − ( t i / k ) 2 Weighting timestamp vectors Correlation matrix Measuring anonymity where the median IP gets weight 0 . 5: Experiments Estimating the source IP t median Discussion k = � Conclusion − ln(0 . 5) 18/39

  19. Deanonymization Weighting timing vectors: example and linkability of cryptocurrency transactions based High values indicate higher probability of an IP to be the on network analysis sender or one of its entry nodes. Biryukov, Tikhomirov Introduction Tx clustering Parallel connections Weighting timestamp vectors Correlation matrix Measuring anonymity Experiments Estimating the source IP Discussion Conclusion Figure: Weight functions for 3 timestamp vectors 19/39

  20. Deanonymization Clustering the correlation matrix and linkability of cryptocurrency transactions based on network analysis Biryukov, Tikhomirov Introduction ◮ For each pairwise correlations of weight vectors of txs Tx clustering Parallel connections Weighting timestamp ◮ Hypothesis: correlation matrix has a block-diagonal vectors Correlation matrix structure Measuring anonymity Experiments Estimating the source IP ◮ With a right permutation of rows and columns, related Discussion transactions will form clusters along the main diagonal Conclusion 20/39

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Collaborative Deanonymization University of Cambridge Security Seminar Series, 26 May 2020 Patrik

Collaborative Deanonymization University of Cambridge Security Seminar Series, 26 May 2020 Patrik

Collaborative Deanonymization University of Cambridge Security Seminar Series, 26 May 2020 Patrik Keller, Martin Florian, Rainer Bhme https://arxiv.org/abs/2005.03535 Motivation Decentralized systems Crime Anonymity prevention Objective:

194 views • 15 slides
Deanonymization of Hongjie Chen the Bitcoin System Chongyao Xia Content Background

Deanonymization of Hongjie Chen the Bitcoin System Chongyao Xia Content Background

April 2018 Deanonymization of Hongjie Chen the Bitcoin System Chongyao Xia Content Background Existing Work Our work Reference Background Basic concepts Important relationship Bitcoin transaction P2P networks

442 views • 30 slides
O nline Reput at ion Syst ems Roger D ingledine T he Free Haven Project 1 B ased on linkability

O nline Reput at ion Syst ems Roger D ingledine T he Free Haven Project 1 B ased on linkability

O nline Reput at ion Syst ems Roger D ingledine T he Free Haven Project 1 B ased on linkability Reput at ion can help solve market for lemons Useful even in pseudonymous/ dynamic environment s B ut somet imes dangerous if people can

270 views • 7 slides
Beyond Anonymity - Pseudonyms person pseudonym linkability role pseudonym relationship

Beyond Anonymity - Pseudonyms person pseudonym linkability role pseudonym relationship

Beyond Anonymity - Pseudonyms person pseudonym linkability role pseudonym relationship pseudonym role-relationship pseudonym transaction pseudonym anonymity Beyond Anonymity - Pseudonyms person pseudonym linkability role pseudonym

79 views • 5 slides
Non-Interactive Plaintext (In-)Equality Proofs and Group Signatures with Verifiable Controllable

Non-Interactive Plaintext (In-)Equality Proofs and Group Signatures with Verifiable Controllable

S C I E N C E P A S S I O N T E C H N O L O G Y Non-Interactive Plaintext (In-)Equality Proofs and Group Signatures with Verifiable Controllable Linkability Olivier Blazy 1 , David Derler 2 , Daniel Slamanig 2 , Raphael

345 views • 21 slides
A Content Propagation Metric for Efficient Content Distribution Ryan S. Peterson ! , Bernard

A Content Propagation Metric for Efficient Content Distribution Ryan S. Peterson ! , Bernard

A Content Propagation Metric for Efficient Content Distribution Ryan S. Peterson ! , Bernard Wong ! , and Emin Gn Sirer ! Department of Computer Science, Cornell University School of Computer Science, University of Waterloo !

868 views • 39 slides
Kasiska Division of Health Sciences 2019 Spring Opening Assembly A WARM WELCOME TO OUR NEW

Kasiska Division of Health Sciences 2019 Spring Opening Assembly A WARM WELCOME TO OUR NEW

Kasiska Division of Health Sciences 2019 Spring Opening Assembly A WARM WELCOME TO OUR NEW COLLEAGUES Kasiska Division of Health Sciences Ryan Gerulf Director of Development Kasiska Division of Health Sciences Tony Seikel Interim

557 views • 38 slides
AutoML: Automated Machine Learning Barret Zoph, Quoc Le Thanks: Google Brain team CIFAR-10

AutoML: Automated Machine Learning Barret Zoph, Quoc Le Thanks: Google Brain team CIFAR-10

AutoML: Automated Machine Learning Barret Zoph, Quoc Le Thanks: Google Brain team CIFAR-10 AutoML Accuracy ML Experts ImageNet Top-1 Accuracy AutoML ML Experts Current: Current: But can we turn this into: Importance of architectures

1.19k views • 48 slides
Say Hello! Dustin Werran, Xiaopei Wu, Mohamad Katanbaf, Qihan Zhao, Harita Kannan Outline

Say Hello! Dustin Werran, Xiaopei Wu, Mohamad Katanbaf, Qihan Zhao, Harita Kannan Outline

Say Hello! Dustin Werran, Xiaopei Wu, Mohamad Katanbaf, Qihan Zhao, Harita Kannan Outline Introduction System Architecture Database Interaction Model Conversation State Machine Verification Model Challenges and Future

288 views • 11 slides
2nd Grade Home Learning May 11 - 15 Please do not feel you need to complete every activity

2nd Grade Home Learning May 11 - 15 Please do not feel you need to complete every activity

2nd Grade Home Learning May 11 - 15 Please do not feel you need to complete every activity everyday. We understand you are busy and overwhelmed. Use what Dear Families, you can and what makes sense for your family. The 2nd grade

533 views • 15 slides
Schnorr Signature & MimbleWimble Oct. 5, 2019 Overview of today Lack of Privacy in

Schnorr Signature & MimbleWimble Oct. 5, 2019 Overview of today Lack of Privacy in

Schnorr Signature & MimbleWimble Oct. 5, 2019 Overview of today Lack of Privacy in Bitcoin MimbleWimble cryptocurrency ECC math Schnorrs signatures scheme Pedersen Commitments Motivation Bitcoin is decentralized

430 views • 40 slides
DATA TXT Making Linked Open Data more usable and accessible using dataTXT semantic text APIs a

DATA TXT Making Linked Open Data more usable and accessible using dataTXT semantic text APIs a

DATA TXT Making Linked Open Data more usable and accessible using dataTXT semantic text APIs a startup that works on big data and semantic web DATA TXT A named entity extraction API that works very well on short and unstructured texts in English

692 views • 21 slides
Beyond Co occurrence: Discovering and Visualizing Tag Relationships from Geo spatial and

Beyond Co occurrence: Discovering and Visualizing Tag Relationships from Geo spatial and

Beyond Co occurrence: Discovering and Visualizing Tag Relationships from Geo spatial and Temporal Similarities Haipeng Zhang, Mohammed Korayem, Erkang You and David Crandall School of Informatics and Computing, Indiana University Online

409 views • 26 slides
Evaluating Semantic Composition of German Compounds Corina Dima, Jianqiang Ma and Erhard Hinrichs

Evaluating Semantic Composition of German Compounds Corina Dima, Jianqiang Ma and Erhard Hinrichs

Evaluating Semantic Composition of German Compounds Corina Dima, Jianqiang Ma and Erhard Hinrichs University of Tbingen, Department of Linguistics and SFB 833, Germany Wer wurmt der Ohrwurm? An interdisciplinary, cross-lingual perspective on

508 views • 31 slides
MEASURING IMPACT IN CACAO PRODUCTION SUMMER ALLEN SUSTAINBILITY: RELEVANT OR USEFUL?

MEASURING IMPACT IN CACAO PRODUCTION SUMMER ALLEN SUSTAINBILITY: RELEVANT OR USEFUL?

MEASURING IMPACT IN CACAO PRODUCTION SUMMER ALLEN SUSTAINBILITY: RELEVANT OR USEFUL? RESILIENCE Focused on resistance to and recovery from shocks (Rodriguez-Niki, 2015). TRIPLE BOTTOM LINE Idea that a business should have a social and

433 views • 28 slides
THURSDAY Publish a character description 1 SPELLING We will be learning to spell: Words ending

THURSDAY Publish a character description 1 SPELLING We will be learning to spell: Words ending

Untitled.notebook September 28, 2020 THURSDAY Publish a character description 1 SPELLING We will be learning to spell: Words ending in 'fer' with suffixes Can you put each word into a sentence? referral preferring reference preferred

518 views • 16 slides
14.581 International Trade Lecture 4: Assignment Models 14.581 Week 3 Spring 2013

14.581 International Trade Lecture 4: Assignment Models 14.581 Week 3 Spring 2013

14.581 International Trade Lecture 4: Assignment Models 14.581 Week 3 Spring 2013 14.581 (Week 3) Assignment Models Spring 2013 1 / 36 Todays Plan Overview 1 Log-supermodularity 2 Comparative advantage based asignment models

582 views • 36 slides
1-D and 2-D Parity FEC draft-ietf-fecframe-1d2d-parity-scheme-00 IETF 73 November 2008 Ali

1-D and 2-D Parity FEC draft-ietf-fecframe-1d2d-parity-scheme-00 IETF 73 November 2008 Ali

1-D and 2-D Parity FEC draft-ietf-fecframe-1d2d-parity-scheme-00 IETF 73 November 2008 Ali C. Begen abegen@cisco.com Introduction 1-D and 2-D parity codes are systematic FEC codes of decent complexity that provide protection against

262 views • 9 slides
A characterization of Krull monoids for which sets of lengths are arithmetical progressions W.A.

A characterization of Krull monoids for which sets of lengths are arithmetical progressions W.A.

A characterization of Krull monoids for which sets of lengths are arithmetical progressions W.A. Schmid LAGA, Universit Paris 8, France March 2019 Sets of lengths A monoid H (commutative, cancellative), for example the multiplicative monoid

927 views • 90 slides
Learning graphs from data: A signal processing perspective Xiaowen Dong MIT Media Lab Graph

Learning graphs from data: A signal processing perspective Xiaowen Dong MIT Media Lab Graph

Learning graphs from data: A signal processing perspective Xiaowen Dong MIT Media Lab Graph Signal Processing Workshop Pittsburgh, PA, May 2017 Introduction What is the problem of graph learning? 2 /34 Introduction What is the

1.29k views • 111 slides
On CDCL-based Proof Systems with the Ordered Decision Strategy Nathan Mull 1 , Shuo Pang 2 ,

On CDCL-based Proof Systems with the Ordered Decision Strategy Nathan Mull 1 , Shuo Pang 2 ,

On CDCL-based Proof Systems with the Ordered Decision Strategy Nathan Mull 1 , Shuo Pang 2 , Alexander Razborov 3 July 6-8, 2020 1University of Chicago, Department of Computer Science 2University of Chicago, Department of Mathematics

636 views • 36 slides
The Rokhlin dimension of topological Z m -actions The structure and classification of nuclear

The Rokhlin dimension of topological Z m -actions The structure and classification of nuclear

The Rokhlin dimension of topological Z m -actions The structure and classification of nuclear C*-algebras G abor Szab o WWU M unster April 2013 1 / 22 Main result Today, I would like to convince you of the following: Theorem Let X

612 views • 57 slides
Distributed Power Management under Limited Communication Na Li Harvard University Rutgers,

Distributed Power Management under Limited Communication Na Li Harvard University Rutgers,

Distributed Power Management under Limited Communication Na Li Harvard University Rutgers, 08/22/2017 Acknowledgment : Harvard Univ : Guannan Qu, Chinwendu Enyioha, Vahid Tarokh KTH : Sindri Magnusson, Carlo Fishchione Caltech: Steven Low NREL:

1.11k views • 87 slides
A. V. Geramita and E. Carlini asked that their slides be combined into a single file, since their

A. V. Geramita and E. Carlini asked that their slides be combined into a single file, since their

A. V. Geramita and E. Carlini asked that their slides be combined into a single file, since their talks were meant to be taken as parts 1 and 2 of a single presentation. . Solution to Waringss Problem for Monomials - I M.V. Catalisano, E.

445 views • 28 slides

More recommend