Donors to Canada’s Freedom Convoy should have used Whirlpool-mixed bitcoin to break deterministic links and provide forward-looking anonymity.
All Bitcoin transactions are public, anyone can look at them. There is nothing special required to view every Bitcoin transaction that has ever occured — they are all publicly available on the blockchain. You don’t need a node, just a simple block explorer website will do, such as Mempool.space, KYCP.org or Blockstream Explorer. Lahko domnevate, da vas nasprotniki gledajo.
What isn’t stored on the blockchain are your personally-identifying details such as your name, address, phone number, etc. That information is cataloged externally by third parties such as your employer, your brokerage/exchange or possibly a fundraiser that you donated to and volunteered that information to. If your employer paid you in bitcoin, then they would be able to follow your public transactions and see that you made a donation to a fundraiser, for example. Likewise, the organizer of the fundraiser would be able to see the history of your Bitcoin transactions and they would know how much bitcoin you had going into the transaction where you sliced off a small portion to donate.
Furthermore, any external observer who knew what the Bitcoin donation address was, would be able to monitor all incoming donations and then see where the remaining change from those donations was sent. These external observers could also see where the donations went after the initial deposit. If there was any personally-identifying information held by a trusted third party where fiat was traded for bitcoin or where bitcoin was traded for fiat, then the custodian of that information will be compelled to turn over those details that personally identify an individual.
“The existing [legacy financial] system has several legislative mechanisms built in that ensure basic privacy (your bank doesn’t share your account balance and transaction history with the barista at the coffee shop for example). The blockchain doesn’t have the luxury of legislative power to solve these problems, therefore software solutions such as CoinJoin are used to obtain these basic protections.”
-Samourajska denarnica blog post, Marec 15, 2022
A Real-World Example Of The Need For Bitcoin Mixing
Let’s dive in and learn to understand the implications of a fully-transparent transaction ledger in the face of an ever-increasingly adversarial environment. This section will provide that background with a real-world example and an explanation of how Bitcoin transactions are scrutinized in such a scenario.
After establishing that, in this real world example, the tracing of Bitcoin transactions could allow authorities opposed to these transactions to crack down on them, this article will explain how Whirlpool, a CoinJoin implementation built by the developers of Samourai Wallet, could have broken the deterministic links between the transactions and could have provided forward-looking anonymity.
Timeline
Here is a timeline of the recent Canadian Freedom Convoy with notable events as they relate to Bitcoin:
- Januar 28, 2022: V Ottawo začnejo prihajati tovornjakarji
- Februar 1, 2022: @HonkHonkHodl receives first bitcoin donation preko @tallycoinapp. Not many people were using Bitcoin to donate to the Freedom Convoy, many more donations were being made with traditional crowdfunding platforms. This would soon change.
- Februar 5, 2022: GoFundMe napoveduje that all donations to the Freedom Convoy would be refunded to the donors, banning any further involvement between the crowdfunding platform and the Freedom Convoy. This was essentially an advertisement for unstoppable money like bitcoin. Donations to the @HonkHonkHodl akcijo zbiranja sredstev @tallycoinapp start to ramp up.
- February 7, 2022: Under an Da izdalo višje sodišče Ontario, še ena platforma za množično financiranje, @GiveSendGo, Je prisiljen zamrzniti dostop do milijonov dolarjev, podarjenih Konvoju svobode. This further escalated fundraising via Bitcoin through the @HonkHonkHodl fundraising campaign.
- February 11, 2022: Ontario izjavi a state of emergency. This declaration explicitly made it “illegal and punishable to block and impede the movement of goods, people and services along critical infrastructure.” Ontario Premier Doug Ford further clarifies that, “Fines for non-compliance will be severe, with a maximum penalty of $100,000 and up to a year imprisonment. We will also provide additional authority to consider taking away the personal and commercial licenses of anyone who doesn’t comply with these orders.”
- February 14, 2022: Canadian Prime Minister Justin Trudeau sklican the Emergencies Act. Among expanding the powers and reach of the Canadian government beyond that which may be appropriate in normal times, the Emergencies Act has two specific and sweeping financial implications: First, it would capture crowdfunding platforms and payment service providers under the Proceeds of Crime and Terrorist Financing Act. Second, crowdfunding platforms and the payment service providers they use have to register with and report large and/or suspicious transactions to the Financial Transactions and Reports Analysis Centre of Canada (FINTRAC), the national financial intelligence agency. Financial accounts would be frozen without court order for individuals identified as being associated with the Freedom Convoy.
- February 14, 2022: On the same day that the Canadian government invokes the Emergencies Act, @HonkHonkHodl zaključi akcijo zbiranja sredstev na @tallycoinapp, having exceeded the original goal, reaching nearly 21 bitcoin in total donations.
- February 15, 2022: The Ontario Superior Court of Justice enacted the Prepoved Mareva, a $306,000,000 class action lawsuit. This injunction names 17 individuals, two organizations and 62 anonymous entities as defendants further stipulating that “Any other person who knows of this order and does anything which helps or permits the Defendant to breach the terms of this Order may also be held to be in contempt of court and may be fined or imprisoned.” Essentially, anyone who did so much as postrežemo kavo to a Freedom Convoy suspect will now face fines and imprisonment. This injunction goes as far as to include several Bitcoin addresses, so if one of these ends up in connection with your identity, then you would be in violation of this injunction.
- Februar 16, 2022: Novice that the Royal Canadian Mounted Police (RCMP) published a blacklist of cryptocurrency addresses related to the Freedom Convoy donations. Essentially, this means that any funds connected to any of these addresses hitting a bitcoin-to-fiat off ramp would trigger seizure and immediate reporting to authorities based on the emergency measures put in place just days prior.
Povzetek
V bistvu se je v zgornji časovnici izkazalo, da je kanadski vladi v manj kot dveh tednih uspelo spremeniti del prebivalstva v kriminalce in potem ni nič preprečilo vladi, da ne bi upoštevala pravic te ogromne skupine ljudi.
This is what this author refers to as the “pendulum swinging.” One day, you are leading a perfectly normal and legal life, the next you are a criminal and face severe consequences for doing what was once inconsequential. If you value being able to communicate with your friends and family, the freedom of movement and being able to access financial services or spend your money on the things you choose, then it would benefit you to start taking small, incremental steps to guard these freedoms.
Tistim, ki želijo izvedeti več o orodjih, ki so vam na voljo v tem boju, je na voljo veliko virov:
Sledite denarju
This section will follow the flow of a donation on the Bitcoin blockchain to the Freedom Convoy Bitcoin address, then beyond to the disbursed payments to the truckers. At points along this path, it will be pointed out where Whirlpool could have been used and how it would have helped prevent the targeting of specific individuals who allowed their identities to be linked with their on-chain activity. The transaction IDs (txids), bitcoin addresses and dates have been obfuscated, but these are actual transactions surrounding the @HonkHonkHodl donacije.
This demonstration follows the transactions of an entity named Alice. Alice has about 28 bitcoin in her wallet, in a single unspent transaction output (UTXO). One day, Alice decides to use the UTXO to make a 0.3 BTC deposit to a Coinbase account. On-chain heuristics would make the reasonable assumption that the Coinbase account is owned by Alice. In that transaction, the 28 BTC is used as the only input and there are two outputs. The first output is the 0.3 BTC to her assumed Coinbase account. The second output is her remaining 28 BTC.
As time goes on, Alice makes three more transactions with this 28 BTC, each time providing the 28 BTC as an input with a small amount being spent and the remainder being returned to her as change. This kind of spending pattern on-chain is known as a “peel chain,” and Whirlpool helps break this cycle by breaking the deterministic links.
Pri četrti transakciji je Alice dala donacijo Konvoju svobode.
Each time Alice made a transaction, the 28 BTC UTXO was used as an input and a little bit was spent, returning the bulk of that 28 BTC to Alice as the change. Then that change was spent as an input to the next transaction with a little bit peeled off as the spend and the remainder returned to Alice again. Because of this peel chain pattern of simple transactions, the 0.3 BTC spent to Coinbase in the first transaction makes the assumption that Coinbase is aware of Alice’s true identity and aware that she owns the 28 BTC that she continued spending downstream. Coinbase can also see every transaction related to that bitcoin.
By the time Alice made a donation to the Freedom Convoy, she used what was left of that original 28 BTC. In the donation transaction, Alice provided a 24.07 BTC input. The transaction had two outputs, a 0.25 BTC donation to the known Freedom Convoy Bitcoin donation address hosted on the Tallycoin website. The other output was 23.82 BTC being returned to Alice as change.
Assuming Coinbase knows Alice’s true identity and her on-chain activity is directly linked to her Coinbase account, her true identity can be revealed as a donor to the Freedom Convoy if authorities investigate the matter. After Alice made her donation, more bitcoin was consolidated and moved downstream by the Freedom Convoy Bitcoin donation organizer(s).
The entity in control of the Freedom Convoy donations makes several transactions that consolidate bitcoin and move the new balances to new addresses. Throughout the entirety of the Tallycoin fundraising campaign, the same Bitcoin donation address was used.
In order to disburse donations to Freedom Convoy truckers, the entity in control of the bitcoin established 100 different wallets for the truckers. They made three deposits to each wallet. Unfortunately, they used the same address in each wallet for each of the three deposits instead of using a new address each time. Address reuse is bad for privacy because then all transactions involving that one address are known to be controlled by the entity that possesses the signing key for that address. The Whirlpool coordinator enforces strict rules that do not allow address reuse in CoinJoin transactions.
This graph shows many donations being made to the known Tallycoin Bitcoin donation address. Then those donations are consolidated and moved to new addresses in three transactions leading up to the transaction where the bitcoin was disbursed to 100 wallets in what seems to be a test transaction. Each deposit was only 4,800 sats.
Nekaj ulic pozneje je bil na 100 denarnic za tovornjakarje naložen nov depozit. Ta transakcija je bila financirana s konsolidacijo donacij Freedom Convoy v višini 14.67 BTC. Bilo je 100 enakih izhodov po 0.004 BTC, od katerih je vsak šel na isti naslov kot 4,800 sat depozita v vsaki od 100 denarnic. Iz te transakcije je bilo tudi izhoda 14.27 BTC.
Izhod 14.27 BTC je bil nekaj blokov pozneje uporabljen kot vhod v tretji depozit denarnice tovornjakarjev. Ta transakcija je naložila 100 enakih izhodov po 0.14 BTC, od katerih je vsak šel na isti naslov kot depozit 4,800 sat in depozit 0.004 BTC v vsaki od 100 denarnic.
Večina depozitov tovornjakov je ostala neporabljena. Tisti, ki so bili porabljeni, so šli na borze KYC, kot so Coinbase, Crypto.com in Kraken.
Unfortunately, the Canadian government has blacklisted several if not all of these addresses, ready to impose strict penalties on anyone who is associated with these donations. For the trucker who sent their deposits to Coinbase, this means that they will be identified as guilty parties. The exchanges will seize and report any activity on their platforms related to any of these donations. For Alice, it is now possible to directly tie her identity to some of the donated bitcoin, because of her deposit to her Coinbase account several transactions prior to the donation. This means that Alice will be reported and possibly face penalties in relation to supporting the Freedom Convoy.
Kako Whirlpool to popravi
To understand how the Whirlpool CoinJoin implementation can be used as a tool for breaking on-chain heuristics and gaining forward-looking anonymity, it is important to first understand the issues with simple Bitcoin transactions that have one input and two outputs. In the real-world example above, you can see how an individual making these kinds of simple transactions can leave traces on chain that irrevocably connect them to activity which authorities are actively trying to punish. Here is a visual example to help elaborate the point, this is Alice’s transaction that spent one output to her assumed Coinbase account.
You can see that there is only one way to interpret this transaction, Alice owned the entire 28.49 BTC input, sent 0.3 BTC to Coinbase and received 28.18 BTC back in change. Then, further heuristics can be made to extrapolate information that is not embedded in the transaction, such as it being more likely than not that Alice owns the Coinbase account that the 0.3 BTC were deposited to. Going further then, it is possible to reasonably attach Alice’s real identity with the 28.18 BTC change from the KYC records kept by Coinbase.
Takole izgleda transakcija Whirlpool v verigi. Vedno je pet vhodov in pet izhodov. Vsi izhodi so enake vrednosti, v tem primeru 0.05 BTC. To transakcijo si lahko sami ogledate na spletni strani KYCP.org tukaj.
Obstajajo stroga pravila, ki jih določa implementacija ZeroLink CoinJoin v Whirlpoolu, ki jih uveljavlja koordinator. Koordinator je slepi strežnik, ki olajša transakcije CoinJoin. Nekatera pravila, ki jih izvaja koordinator, so:
- Each CoinJoin transaction will have five inputs.
- Each CoinJoin transaction will have five outputs.
- No address reuse.
- All of the outputs from a CoinJoin transaction will be the same denomination.
- UTXOs do not cross from one pool to another — 0.05 BTC UTXOs do not get used as inputs in 0.01-BTC-sized Whirlpool CoinJoin transactions, for example.
- Nobena denarnica ne sme imeti več kot enega vnosa v transakcijo. Torej mora vseh pet vnosov prihajati iz različnih denarnic.
- Nobena dva izhoda iz transakcije CoinJoin se ne smeta uporabljati skupaj v prihodnji transakciji CoinJoin.
- Every CoinJoin transaction will have a minimum of two fresh participants to the liquidity pool and a maximum of three.
- Vsaka transakcija CoinJoin bo imela najmanj dva udeleženca ponovnega mešanja in največ tri. Ti udeleženci se lahko imenujejo "free riders".
- Fresh participants cover the miners fee.
- Udeleženci ponovnega mešanja nadaljujejo z mešanjem brez dodatnega plačila.
- Kot vhodi bodo dovoljeni samo UTXO iz prejšnje transakcije CoinJoin (brezplačni udeleženci) ali UTXO iz transakcije nič (TX0) (novi udeleženci).
S temi pravili Whirlpool prekine deterministične povezave in zagotavlja v prihodnost usmerjeno anonimnost. V nobenem posameznem transakcijskem izhodu Whirlpool CoinJoin ni ničesar, kar bi ga razlikovalo od katerega koli od ostalih štirih izhodov. Vsak rezultat ima enako verjetnost, da bo povezan s katerim koli danim vložkom, zato ni mogoče sprejeti nobenih dokončnih zaključkov o lastništvu katerega koli danega rezultata.
Another important feature of Whirlpool is this TX0 concept mentioned above. TX0 is what creates the UTXOs that can be used as fresh participants to a Whirlpool CoinJoin transaction. Every UTXO used as an input to a Whirlpool CoinJoin transaction must first come from a TX0. Very simply, TX0 will take for an input some bitcoin from your deposit wallet. This can be a single input or it can be several inputs. In the example below, the TX0 input was 0.81 BTC.
In ta poseben primer, je bila izbrana velikost bazena 0.05 BTC, kar pomeni, da bodo vsi UTXO iz tega bazena 0.05 BTC. Vidite lahko, da je bil en sam vhod 0.81 BTC uporabljen za ustvarjanje naslednjih izhodov:
- 18 0.0501 BTC outputs: These will be fresh participants available for new Whirlpool CoinJoin transactions. They carry a little extra bitcoin so that they can cover the miners fee of the Whirlpool CoinJoin transaction that they will participate in.
- One 0.0134 BTC output: This is called “Doxxic Change,” it is separated from the other UTXOs and the Samourai Wallet application will prompt you to label this UTXO as Doxxic Change and to change the spending status of this UTXO to “un-spendable.” More details about Doxxic Change will follow.
- One 0.0025 BTC output: This is the fee paid to the Samourai Wallet developers for this service.
Na tej stopnji je kakršna koli zgodovina v verigi, vezana na vhod 0.81 BTC, še vedno povezana z vsakim od zgoraj omenjenih izhodov. Vendar, ko je vsak od 0.0501 BTC UTXO vključen v novo transakcijo Whirlpool CoinJoin, se deterministična povezava s to zgodovino pretrga. Po tem hevristike v verigi ni mogoče uporabiti za domneve o lastništvu Whirlpool CoinJoin UTXO. Tako je dosežena v prihodnost usmerjena anonimnost, vsi UTXO-ji so enake velikosti in imajo enako verjetnost, da bodo povezani s katerim koli določenim vhodom. Ti UTXO se tako rekoč zlijejo v množico.
Da bi prikazali to mešanje v učinek množice, naslednjih nekaj slik ponazarja, koliko možnosti je, ko poskušate povezati enega od vhodov iz te prve transakcije z enim od izhodov. Če se eden od izhodov katere koli tekoče transakcije uporabi kot vhod v drugo transakcijo Whirlpool CoinJoin, so ti izhodi označeni z rdečo in poti se vedno znova razširijo. Na koncu vsaka modra pika ali nerazširjena rdeča pika predstavlja transakcijo, katere lastnik bi lahko bil sumljivi subjekt.
V tej transakciji je bilo uporabljenih pet vhodov, ki so poskušali slediti možni sledi sumljivega subjekta, kateri koli izhod bi lahko pripadal njim. Trije izhodi so bili uporabljeni v drugem Whirlpool CoinJoin. Obstaja ena od petih možnosti.
Dva izhoda vodita do nadaljnjih transakcij Whirlpool CoinJoin. Sledi ena od 16 možnih transakcij.
Trije izhodi vodijo do nadaljnjih transakcij Whirlpool CoinJoin. Sledi ena od 24 možnih transakcij.
Šest izhodov vodi do nadaljnjih transakcij Whirlpool CoinJoin. Sledi ena od 34 možnih transakcij.
Deset izhodov vodi do nadaljnjih transakcij Whirlpool CoinJoin. Sledi ena od 55 možnih transakcij.
Devetnajst rezultatov vodi do nadaljnjih transakcij Whirlpool CoinJoin. Sledi ena od 87 možnih transakcij in en neporabljen rezultat.
Dvainštirideset izhodov vodi do nadaljnjih transakcij Whirlpool CoinJoin. Sledi ena od 133 možnih transakcij in dva neporabljena izhoda.
Na tej točki postaja pretežko ročno šteti in ideja je do zdaj dobro ilustrirana. Vsaka rdeča pika predstavlja drugo transakcijo Whirlpool CoinJoin, ki bo vodila do petih dodatnih izhodov, ki bi lahko pripadali subjektu, ki je imel v lasti prvotni vnos. Vsaka modra pika predstavlja transakcijo, ki ni Whirlpool CoinJoin, lahko pa vsebuje izhod, ki vas zanima.
To se kar nadaljuje. To je asimetrična prednost, ki jo ima prekinitev determinističnih povezav, ko si zunanji opazovalec ogleda podatke o transakcijah blockchain in poskuša nekomu slediti.
If Alice had donated to the Canadian Freedom Convoy with bitcoin from a Whirlpool output, then there would have been no deterministic way to link that donation back to Alice’s prior transaction history. Any investigation of the matter going backwards through the transaction history would have led to a cloud-looking transaction graph, as demonstrated above.
Likewise, if any of the Canadian Freedom Convoy donation recipients would use Whirlpool to CoinJoin their bitcoin, then there would not be a deterministic way for a KYC exchange to link their deposit to the donations in question. Also, if the organizer of the donations had been Whirlpooling donations as they came in, then the trail of those funds on chain would have been obfuscated. Additionally, deposits to the truckers’ 100 wallets could have been made using privacy-preserving collaborative transactions instead of batch spends.
Če želite izvedeti več o anonimnosti Whirlpool, preberite ta članek. Preberite ta članek če želite izvedeti več o raziskovalcu blockchain, uporabljenem v tej predstavitvi, KYCP.org. Oglejte si to Podcast Stephan Livera z @ErgoBTC na temo odvijanja CoinJoins, tumblers, Wasabi in JoinMarket.
To je gostujoča objava Ekonoalkemika. Izražena mnenja so v celoti njihova in ne odražajo nujno mnenj družbe BTC Inc. Bitcoin Magazine.
- "
- 000
- 100
- 11
- 2022
- 28
- 67
- 7
- O meni
- dostop
- Račun
- doseže
- Zakon
- Ukrep
- dejavnost
- Dodatne
- Naslov
- naslovi
- Prednost
- oglas
- agencija
- vsi
- Vse transakcije
- med
- znesek
- Analiza
- anonimnost
- Še ena
- kdo
- uporaba
- članek
- organ
- Na voljo
- ozadje
- Banka
- počutje
- koristi
- Bit
- Bitcoin
- transakcije z bitcoini
- Block
- blockchain
- kršitev
- BTC
- BTC Inc.
- Akcija
- Kanada
- Kanadski
- zajemanje
- verige
- spremenite
- Izberite
- razred
- Razredna akcija
- razredna tožba
- Kava
- coinbase
- Pridružite se skupaj
- kako
- komercialna
- Koncept
- povezane
- povezava
- konsolidacijo
- naprej
- nadzor
- bi
- Sodišče
- ustvari
- Kriminal
- kazenska
- Kriminalci
- kritično
- Crowdfunding
- kripto
- Crypto.com
- cryptocurrency
- datum
- Termini
- dan
- izkazati
- Dokazano
- Razvijalci
- DID
- drugačen
- težko
- neposredno
- Ne
- dolarjev
- darovati
- darovanje
- donacije
- navzdol
- učinek
- Izdelati
- konča
- subjekti
- okolje
- ustanovljena
- dogodki
- Primer
- Izmenjava
- Izmenjave
- širi
- Obraz
- družina
- Feature
- Fiat
- finančna
- finančne storitve
- FINTRAC
- prva
- Pretok
- sledi
- po
- v prihodnost
- brezplačno
- Svoboda
- Zamrzne
- sveže
- stvarno
- fundraiser
- Zbiranje sredstev
- Skladi
- nadalje
- Prihodnost
- Cilj
- dogaja
- blago
- vlada
- skupina
- Gost
- Gost Prispevek
- ob
- pomoč
- Pomaga
- tukaj
- zgodovina
- Kako
- HTTPS
- Ideja
- identificirati
- identiteta
- nezakonito
- Takojšen
- Izvajanje
- Pomembno
- vključujejo
- vključeno
- individualna
- Podatki
- Infrastruktura
- vhod
- Intelligence
- obresti
- razišče
- preiskava
- Vprašanja
- IT
- Justice
- Ključne
- znano
- Kraken
- KYC
- velika
- Tožbo
- vodi
- vodi
- UČITE
- pustite
- Led
- Ledger
- Legacy
- Pravne informacije
- Licence
- Verjeten
- LINK
- Povezave
- likvidnostno
- malo
- je
- Večina
- IZDELA
- Izdelava
- upravlja
- ročno
- marec
- ogromen
- Matter
- kar pomeni,
- milijoni
- Rudarji
- minimalna
- Denar
- monitor
- več
- premikanje
- Gibanje
- Imena
- nacionalni
- nujno
- normalno
- Številka
- Komentarji
- Da
- naročila
- organizacije
- Ostalo
- lastne
- v lasti
- Lastnik
- lastništvo
- plačana
- Udeleženci
- sodelovanje
- Vzorec
- Plačilo
- Plačila
- ljudje
- oseba
- Osebni
- platforma
- Platforme
- Točka
- policija
- bazen
- prebivalstvo
- možnosti
- mogoče
- moč
- premier
- zasebnost
- Težave
- izkupiček
- zaščiteni
- zagotavljajo
- zagotavlja
- zagotavljanje
- javnega
- vprašanje
- Ramp
- dosežejo
- resnični svet
- razumno
- prejemnikov
- evidence
- odražajo
- Registracija
- ostalo
- Preostalih
- poročilo
- Poročila
- predstavlja
- obvezna
- viri
- Razkrito
- pravila
- Izkoristite
- izbran
- Storitev
- Storitve
- Delite s prijatelji, znanci, družino in partnerji :-)
- Enostavno
- Velikosti
- majhna
- So
- Software
- rešitve
- SOLVE
- nekaj
- nekdo
- preživeti
- Poraba
- Stage
- Začetek
- Država
- Izredno stanje
- Status
- superior
- Podpora
- sistem
- Test
- tretje osebe
- skozi
- vsej
- KRAVATA
- vezana
- čas
- skupaj
- orodje
- orodja
- Sledenje
- tradicionalna
- transakcija
- Transakcije
- razumeli
- uporaba
- vrednost
- Poglej
- denarnica
- Denarnice
- Spletna stran
- Kaj
- WHO
- brez
- svet
- bi
- leto
- nič