【Author】
Kumar, Amrit; Fischer, Clement; Tople, Shruti; Saxena, Prateek
【Source】COMPUTER SECURITY - ESORICS 2017, PT II
【Abstract】Privacy and anonymity are important desiderata in the use of cryptocurrencies. Monero-a privacy centric cryptocurrency has rapidly gained popularity due to its unlinkability and untraceablity guarantees. It has a market capitalization of USD 290M. In this work, we quantify the efficacy of three attacks on Monero's untraceability guarantee, which promises to make it hard to trace the origin of a received fund, by analyzing its blockchain data. To this end, we develop three attack routines and evaluate them on the Monero blockchain. Our results show that in 88% of cases, the origin of the funds can be easily determined with certainty. Moreover, we have compelling evidence that two of the attack routines also extend to Monero RingCTs-the second generation Monero that even hides the transaction amount. We further observe that over 98% of the results can in fact be obtained by a simple temporal analysis. In light of our findings, we discuss mitigations to strengthen Monero against these attacks. We shared our findings with the Monero development team and the general community. This has resulted into several discussions and proposals for fixes.
【Keywords】Monero; Cryptocurrency; Blockchain; Traceability; Anonymity
【摘要】门罗币是一种加密货币,自2014年4月推出以来,迅速获得了人们的青睐。门罗币的业务的主要增长源为独特的隐私属性,其匿名性远远超出了比特币等加密货币的假名性。在这项工作中,我们对门罗币区块链进行了取证分析。我们的主要目标是研究门罗币的不可追踪性保证,即,给定一个交易输入,其中被兑换的真实输出应该在一组其他输出中匿名。为此,我们开发了三种启发式方法,设计了简单易行的攻击程序。我们在门罗币区块链上评估了我们的攻击,并发现在87%的情况下,交易中的真实输出可以很容易地被确定下来。此外,我们有令人信服的证据表明,我们的两种攻击也延伸到了门罗币RingCTs,即隐藏了交易币值的第二代门罗币中。此外,我们注意到,在我们能够追踪到的超过98%的输入中,其对应的真实输出是在区块链上停留时间最短的。这一结果表明,门罗币目前采用的对抗措施不足以防止时间分析。基于我们的发现,我们还提出了一个新的对抗策略以应对时间分析。我们的对抗策略利用了门罗币用户的真实消费习惯。
【关键词】门罗币;加密货币;区块链;可追踪性;匿名性
评论