Deanonymization and linkability of cryptocurrency transactions based on network analysis

Biryukov, Alex; Tikhomirov, Sergei

Reference : Deanonymization and linkability of cryptocurrency transactions based on network analysis


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a journal
	Discipline(s) :	Engineering, computing & technology : Computer science
	Focus Areas :	Security, Reliability and Trust
	To cite this reference:	http://hdl.handle.net/10993/39724

Title :	Deanonymization and linkability of cryptocurrency transactions based on network analysis
Language :	English
Author, co-author :	Biryukov, Alex [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) > ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)]
	Tikhomirov, Sergei [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC) >]
Publication date :	2019
Journal title :	Proceedings of 2019 IEEE European Symposium on Security and Privacy (EuroS&P)
Peer reviewed :	Yes
Event name :	4th IEEE European Symposium on Security and Privacy (EuroS&P)
Event date :	from 17-06-2019 to 19-06-2019
Event place (city) :	Stockholm
Event country :	Sweden
Keywords :	[en] bitcoin ; blockchain ; cryptocurrency ; privacy ; anonymity
Abstract :	[en] Bitcoin, introduced in 2008 and launched in 2009, is the first digital currency to solve the double spending problem without relying on a trusted third party. Bitcoin provides a way to transact without any trusted intermediary, but its privacy guarantees are questionable. Despite the fact that Bitcoin addresses are not linked to any identity, multiple deanonymization attacks have been proposed. Alternative cryptocurrencies such as Dash, Monero, and Zcash aim to provide stronger privacy by using sophisticated cryptographic techniques to obfuscate transaction data. Previous work in cryptocurrency privacy mostly focused on applying data mining algorithms to the transaction graph extracted from the blockchain. We focus on a less well researched vector for privacy attacks: network analysis. We argue that timings of transaction messages leak information about their origin, which can be exploited by a well connected adversarial node. For the first time, network level attacks on Bitcoin and the three major privacy-focused cryptocurrencies have been examined. We describe the message propagation mechanics and privacy guarantees in Bitcoin, Dash, Monero, and Zcash. We propose a novel technique for linking transactions based on transaction propagation analysis. We also unpack address advertisement messages (ADDR), which under certain assumptions may help in linking transaction clusters to IP addresses of nodes. We implement and evaluate our method, deanonymizing our own transactions in Bitcoin and Zcash with a high level of accuracy. We also show that our technique is applicable to Dash and Monero. We estimate the cost of a full-scale attack on the Bitcoin mainnet at hundreds of US dollars, feasible even for a low budget adversary.
Permalink :	http://hdl.handle.net/10993/39724

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Open access	biryukov-tikhomirov-deanonymization-and-linkability.pdf		Author postprint	2.56 MB	View/Open

Additional material(s):

	File	Commentary	Size	Access
Open access	biryukov-tikhomirov-deanonymization-and-linkability-slides.pdf		2.26 MB	View/Open

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices