towards better privacy with monero
play

Towards Better Privacy with Monero Malte Mser Based on An Empirical - PowerPoint PPT Presentation

Mar 16, 2023 •581 likes •891 views

Towards Better Privacy with Monero Malte Mser Based on An Empirical Analysis of Traceability in the Monero Blockchain, joint work with Kyle Soska, Ethan Heilman, Kevin Lee, Henry Heffan, Shashvat Srivastava, Kyle Hogan, Jason Hennessey,

  1. Towards Better Privacy with Monero Malte Möser Based on An Empirical Analysis of Traceability in the Monero Blockchain, 
 joint work with Kyle Soska, Ethan Heilman, Kevin Lee, Henry Heffan, Shashvat Srivastava, 
 Kyle Hogan, Jason Hennessey, Andrew Miller, Arvind Narayanan, and Nicolas Christin.

  2. � 2

  3. � 3 Takeaways ▸ Monero improves upon Bitcoin’s privacy ▸ One-time addresses prevent address clustering ▸ Transaction values are hidden ▸ Obfuscation of payment flows ▸ Incorrect use can severely hurt your anonymity ▸ Used for both illegitimate and legitimate purposes

  4. � 4 Anonymity Anonymity is the state of not being identifiable within 
 a set of subjects, the anonymity set. Pfitzmann & Köhntopp 2001 Indistinguishable

  5. � 6 Issue 1: Public Reuse of Addresses Send Bitcoin to 
 1myaddress001 To: 1myaddress001 To: 1myaddress001

  6. � 10 Issue 1: Public Reuse of Addresses To: 1myaddress042 To: 1myaddress001 To: 1myaddress001 To: 1myaddress612

  7. � 12 Monero Uses Stealth Addresses Send XMR to 
 mystealthyaddr To: g77gwvm8mg ▸ Based on shared secret (ECDH) ▸ Sender embeds information allowing to recover secret ▸ Recipients must try to redeem all outputs on the blockchain

  8. � 13 Issue 2: Values Are Visible 1 XMR Send XMR to 
 mystealthyaddr To: g77gwvm8mg 10.376289 XMR To: 0yqija6fga

  9. � 14 When the Cookie Meets the Blockchain ▸ Each step can leak information to third-party trackers ▸ Timing and value allow to identify corresponding transactions Goldfeder et al. (2018). When the cookie meets the blockchain: Privacy risks of web payments via cryptocurrencies

  10. � 15 Amounts Are Encrypted (Since 2017) ?? XMR Send XMR to 
 mystealthyaddr To: g77gwvm8mg ?? XMR To: 0yqija6fga

  11. � 16 Issue 3: Tracing Payments Bob Alice Hotel

  12. � 17 Output Selection in Bitcoin each input spends a single output

  13. � 18 Output Selection in Monero each input spends one of multiple outputs linkable ring signature (key image)

  14. � 19 Deduction Technique initially no mandatory 
 number of mixins

  15. � 21 Results of Deducibility Attack ▸ 64% of inputs have no mixins ▸ 63% of inputs with mixins are deducible

  16. � 23 How Do You Choose Fake Coins? 2 years old 3 months old 2 days old Most likely to be the 
 real coin being spent

  17. � 24 Distributions Do Not Match Real Real + Fake Ruled-out

  18. � 25 The Newest Input Is Usually the Real One Successful for 80% of all inputs between April 2014 and April 2017

  19. � 26 How Can We Fix This? Sample More “Recent” Mixins ▸ More mixins, more “recent” mixins ▸ Simulation results in our paper Estimate Empirical Distribution Probability Binned Mixin Time

  20. � 27 Sophisticated Timing Attacks 2 years old 3 months old 2 days old ▸ Bob is one of five suspects to have bought drugs at AlphaBay today ▸ I know Bob bought some XMR exactly 3 months ago

  21. � 29 Chain Forks Are a Privacy Hazard Monero MoneroV

  22. � 32 Chain Forks Are a Privacy Hazard linked by key image Intersection reveals true spend

  23. � 33 Estimating Performance of Guess-Newest Source: Abraham Hinteregger and Bernhard Haslhofer. An Empirical Analysis of Monero Cross-Chain Traceability. (2019)

  24. � 34 Quantifying Privacy-Sensitive Use ▸ Not all transactions are equally privacy sensitive Monero doubles ▸ Goal: quantify block interval different usage types

  25. � 36 Estimating Mining Activity ▸ Miners announce blocks and payouts ▸ Website crawl ▸ # blocks found ▸ # payout txs ▸ 0.44 txs per block related to mining

  26. � 37 AlphaBay ▸ Volume spiked when AlphaBay started accepting Monero AlphaBay starts accepting Monero

  27. � 38 AlphaBay - Daily Volume (Number of Transactions) (nr. of transactions, 7 − day avg.) XMR or BTC 5,000 BTC only Unidentified 4,000 Daily volume 3,000 2,000 1,000 0 Jan 2015 Jul 2015 Jan 2016 Jul 2016 Jan 2017 Date

  28. � 39 AlphaBay ▸ Volume spiked when AlphaBay started accepting Monero AlphaBay starts accepting Monero ▸ At most 25% of txs can be deposits at AlphaBay

  29. � 40 Cryptocurrency Privacy Inherits the Worst of ▸ Data anonymization ▸ Blockchain data is public ▸ Weakness can be exploited retroactively ▸ Communication anonymity ▸ Behavior of some users influences anonymity of others ▸ “Anonymity loves company” cf. Goldfeder, Kalodner, Reisman & Narayanan (2018)

  30. � 41 Summary ▸ Monero improves upon the limited privacy of Bitcoin ▸ Correct use of technology is paramount ▸ It’s hard to patch a broken system ▸ Illicit business tends to be early adopters of new technologies ▸ Many legitimate uses that are less visible

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Ring Signatures Monero Oct. 14, 2019 Overview Privacy Hierarchy Monero Secretly

Ring Signatures Monero Oct. 14, 2019 Overview Privacy Hierarchy Monero Secretly

Ring Signatures Monero Oct. 14, 2019 Overview Privacy Hierarchy Monero Secretly signing a transaction Secretly receiving a transaction Privacy Hierarchy Everything open Bitcoin Pseudonymous, amount open Privacy Hierarchy

911 views • 45 slides
Towards Better Privacy with Monero Malte Mser Based on joint work with Kyle Soska, Ethan

Towards Better Privacy with Monero Malte Mser Based on joint work with Kyle Soska, Ethan

Towards Better Privacy with Monero Malte Mser Based on joint work with Kyle Soska, Ethan Heilman, Kevin Lee, Henry Heffan, Shashvat Srivastava, Kyle Hogan, Jason Hennessey, Andrew Miller, Arvind Narayanan, and Nicolas Christin 2 3

393 views • 27 slides
How the hell does Monero work? @pwrcycle > cafecode.com/shellcon2018-monero.pdf whois

How the hell does Monero work? @pwrcycle > cafecode.com/shellcon2018-monero.pdf whois

How the hell does Monero work? @pwrcycle > cafecode.com/shellcon2018-monero.pdf whois pwrcycle Prolexic SOC Verisign VIDN Apple SIRT F5 Silverline Salesforce NetSec Gmail Reddit pwrcycle on Twitter Freenode LinkedIn Signal

177 views • 15 slides
Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and

Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and

Remote Side-Channel Attacks on Anonymous Transactions In Zcash & Monero Florian Tramr and Dan Boneh and Kenny Paterson USENIX Security Symposium Meet Alice the Anonymous Activist Blogger PK A anonymous 2 Alices Lack of Privacy Send

395 views • 21 slides
Monero an anonymous altcoin Dionysis Zindros ATHECRYPT 2016 Overview Bitcoins problems

Monero an anonymous altcoin Dionysis Zindros ATHECRYPT 2016 Overview Bitcoins problems

Monero an anonymous altcoin Dionysis Zindros ATHECRYPT 2016 Overview Bitcoins problems Moneros solutions Fungibility Anonymity Unlinkability Untraceability Acknowledgments Bitcoin Genve, Universit

734 views • 52 slides
An Empirical Analysis of Traceability in the Monero Blockchain Malte Mser, Kyle Soska, Ethan

An Empirical Analysis of Traceability in the Monero Blockchain Malte Mser, Kyle Soska, Ethan

An Empirical Analysis of Traceability in the Monero Blockchain Malte Mser, Kyle Soska, Ethan Heilman, Kevin Lee, Henry Heffan, Shashvat Srivastava, Kyle Hogan, Jason Hennessey, Andrew Miller, Arvind Narayanan, Nicolas Christin PETS 2018:

287 views • 26 slides
MProve: A Proof of Reserves Protocol for Monero Exchanges Arijit Dutta, Saravanan Vijayakumaran

MProve: A Proof of Reserves Protocol for Monero Exchanges Arijit Dutta, Saravanan Vijayakumaran

MProve: A Proof of Reserves Protocol for Monero Exchanges Arijit Dutta, Saravanan Vijayakumaran Department of Electrical Engineering Indian Institute of Technology Bombay IEEE S&B, Stockholm June 20, 2019 1 / 12 Cryptocurrency Exchanges

395 views • 12 slides
$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

$ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that

Presentation Slides $ Lesson Ten Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

318 views • 13 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

$ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy

Presentation Slides $ Lesson Fourteen Consumer Privacy 04/09 privacy and information information privacy: privacy that involves the rights of individuals in relation to information about them that is circulating in society. why privacy is an

429 views • 13 slides
CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies

CS305 Topic Privacy Concept Evolution Rights to Privacy Privacy and Technologies US Privacy Laws Sources: Baase: A Gift of Fire and Quinn: Ethics for the Information Age Ethics Spring 2010 Privacy 1 Privacy The original

725 views • 45 slides
Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is

1.01k views • 76 slides
Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in

Data privacy: an introduction (part 1) Klara Stokes What is privacy? Privacy has been defined in many ways over the years. Usually privacy is concerned with the individual human being. We may talk about privacy as the control over your own

230 views • 21 slides
Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy

Engineering privacy by design Privacy by Design Let's have it! Information and Privacy Commissioner of Ontario https://www.ipc.on.ca/images/resources/7foundationalprinciples.pdf Privacy by Design Let's have it! Article 25 European

1.32k views • 118 slides
Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy.

Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy.

Anonymity & Privacy Alice Privacy EU directives (e.g. 95/46/EC) to protect privacy. College Bescherming Persoonsgegevens (CBP) What is privacy? Users must be able to determine for themselves when, how, to what extent and

798 views • 45 slides
Data Pallets For Traceable Data Jay Lofstead, Joshua Baker, Andrew Younge PDSW-DISCS WIP

Data Pallets For Traceable Data Jay Lofstead, Joshua Baker, Andrew Younge PDSW-DISCS WIP

Data Pallets For Traceable Data Jay Lofstead, Joshua Baker, Andrew Younge PDSW-DISCS WIP November 12, 2018 SAND2018-12555 C Sandia National Laboratories is a multimission laboratory managed and operated by National Technology and Engineering

462 views • 7 slides
Maintaining Individual Traceability in Shared Project Accounts with CEDPS/VDT Tools Shreyas

Maintaining Individual Traceability in Shared Project Accounts with CEDPS/VDT Tools Shreyas

Maintaining Individual Traceability in Shared Project Accounts with CEDPS/VDT Tools Shreyas Cholia Software Group, NERSC OSG All Hands-Meeting, Baton Rouge LA, March 2009 Motivation for Project Accounts at NERSC Analogous to OSG group

87 views • 4 slides
Do Information Retrieval Algorithms for Automated Traceability Perform Effectively on Issue

Do Information Retrieval Algorithms for Automated Traceability Perform Effectively on Issue

Do Information Retrieval Algorithms for Automated Traceability Perform Effectively on Issue Tracking System Data? Thorsten Merten 1( B ) , Daniel Kr amer 1 , Bastian Mager 1 , Paul Schell 1 , ursner 1 , and Barbara Paech 2 Simone B 1

359 views • 7 slides
4/19/2013 Fast and reliable Portable and easy to install PRESERVING, GENERATING, AND

4/19/2013 Fast and reliable Portable and easy to install PRESERVING, GENERATING, AND

4/19/2013 Fast and reliable Portable and easy to install PRESERVING, GENERATING, AND VISUALIZING KNOWLEDGE OF ARCHITECTURALLY SIGNIFICANT REQUIREMENTS IN SOURCE CODE Institute for Software Research Distinguished Speaker Series University

534 views • 25 slides
DISTRIBUTED TRACING WHO ARE WE? Frank Pfleger Lukasz Pielak @frankpfleger

DISTRIBUTED TRACING WHO ARE WE? Frank Pfleger Lukasz Pielak @frankpfleger

THE WAY TO DISTRIBUTED TRACING WHO ARE WE? Frank Pfleger Lukasz Pielak @frankpfleger @lukaszpielak frank@trasier.com lukasz@trasier.com WHAT IS THIS TALK ABOUT Understand the concepts The way to Distributed

754 views • 49 slides
Strong Jump-Traceability The Computably Enumerable Case Peter Cholak University of Notre Dame

Strong Jump-Traceability The Computably Enumerable Case Peter Cholak University of Notre Dame

Will he finish in time? No way! Yes! Strong Jump-Traceability The Computably Enumerable Case Peter Cholak University of Notre Dame Department of Mathematics www.nd.edu/~cholak Supported by NSF Grant DMS 02-45167 (USA). Logic Colloquium 07

440 views • 9 slides
White-Box Security Notions for Symmetric Encryption Schemes ee 1 ede Lepoint 1 , 2 C ecile

White-Box Security Notions for Symmetric Encryption Schemes ee 1 ede Lepoint 1 , 2 C ecile

White-Box Security Notions for Symmetric Encryption Schemes ee 1 ede Lepoint 1 , 2 C ecile Delerabl Tancr` Pascal Paillier 1 Matthieu Rivain 1 CryptoExperts 1 , erieure 2 Ecole Normale Sup SAC 2013 Outline 1 What is white-box

406 views • 38 slides
Towards Distributed Trustworthy Traceability and Accountability Jrn Erbguth a and Jean-Henry

Towards Distributed Trustworthy Traceability and Accountability Jrn Erbguth a and Jean-Henry

Towards Distributed Trustworthy Traceability and Accountability Jrn Erbguth a and Jean-Henry Morin a b a University of Geneva, CUI - ISS, 1227 Carouge, Switzerland Tel: +41 787256027, E-mail: erbguth@unige.ch - Tel: +41 22 379 02 55, E-mail:

177 views • 3 slides

More recommend