Return-Path: Received: from smtp1.linuxfoundation.org (smtp1.linux-foundation.org [172.17.192.35]) by mail.linuxfoundation.org (Postfix) with ESMTPS id 825D8407 for ; Fri, 24 Jul 2015 09:38:49 +0000 (UTC) X-Greylist: from auto-whitelisted by SQLgrey-1.7.6 Received: from mout.gmx.net (mout.gmx.net [212.227.15.19]) by smtp1.linuxfoundation.org (Postfix) with ESMTPS id 9CC49172 for ; Fri, 24 Jul 2015 09:38:48 +0000 (UTC) Received: from [115.187.143.132] by 3capp-mailcom-bs01.server.lan (via HTTP); Fri, 24 Jul 2015 11:38:44 +0200 MIME-Version: 1.0 Message-ID: From: "Slurms MacKenzie" To: "Eric Voskuil" Content-Type: text/plain; charset=UTF-8 Date: Fri, 24 Jul 2015 11:38:44 +0200 Importance: normal Sensitivity: Normal In-Reply-To: <55B1C2A2.6020704@voskuil.org> References: =?UTF-8?Q?<55AFBBE6.3060702@electrum.org>=20<1437606706.2688.0.camel@yahoo.com>=09<114b2a76-ebc7-461a-b4bc-10873574d6c4@HUB2.rwth-ad.de>=09, =09<55B1A254.6070806@voskuil.org>=20, =20<55B1C2A2.6020704@voskuil.org>?= X-UI-Message-Type: mail X-Priority: 3 X-Provags-ID: V03:K0:h4rThA+9fsfb5VcgdKFkWVyU5Z7cx7/jyrX83WS/9qS 080/ItNKIS1JoRtQVsbpmTVFWwnxsqdkXW6I5KyCALcsIx63B9 LbqstxLyFJynwlA94Zi4BberXcl+bPQQeYSBLsEHgxNxaRRQpC POKoj6F1pAGK6jFjc51XnpgfbStlGFYBPKU4cZcgqutAjYPPdD l5tmUPhVPCvZFVXLbkQ2WQnzh2v0oB/TytQUbkXx5zMUOuDs8P 8yUR/MqyeBxdxw0bybpWdLQr2eKsdVGsYeq7+W/BLuqA23g82a sO9aT+i9JZYR2mHWRRwdkqITE0r X-UI-Out-Filterresults: notjunk:1;V01:K0:0Z9a3xPdfNs=:g9ZdK3m5bhHbIoOioqjICp 1Lfbk6EfH0W1nNXJwMjUN3CdpjbpM2gtibxjvuB0JLOyZGwCe7ahWtDFzep5+eLZpQNTNMNxt jQ5azPb+1qdOU10tLjZRj03lpxfSUEB7Ii2f1w5yE5i6ANsp9x9UtcKqChQguyJWb0e6xt6YM z0gxjEF4MyKNzK4GfQVVWJV4nVhlNS2qi9lwHRUber/FWLc9V2BIf4Nes/hYOgHhnAItVbMQH vre2cM59c3dAQr1ovAiY2TJdN+WU+IFtKVK1uRDNmancOsd7jJd42S8xiCn72nVP5KJMezOe8 pqvHXBYqK2dIQpiNrcS9GviN49IAaau7X6QjfvBL+ExJuIFf5wnhqguLqJbGrIxe0LqonG30u Hg0tHV5h31M+0Z2Y2wm7gbcdapn48dXj8xfkEkYu1We9iZnmSocaFM1VzTjCpf+X5oOC+xxqE UhW5Yue68g== X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,FREEMAIL_FROM, RCVD_IN_DNSWL_NONE autolearn=ham version=3.3.1 X-Spam-Checker-Version: SpamAssassin 3.3.1 (2010-03-16) on smtp1.linux-foundation.org Cc: bitcoin-dev@lists.linuxfoundation.org Subject: Re: [bitcoin-dev] Making Electrum more anonymous X-BeenThere: bitcoin-dev@lists.linuxfoundation.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: Bitcoin Development Discussion List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Jul 2015 09:38:49 -0000 > Sent: Friday, July 24, 2015 at 6:44 AM > From: "Eric Voskuil" > To: "Slurms MacKenzie" , bitcoin-dev@lists.linuxfoundation.org > Subject: Re: [bitcoin-dev] Making Electrum more anonymous > > This is why privacy remains a significant issue. Privacy is an essential > aspect of fungibility. This is a central problem for Bitcoin. Somewhat under discussed too, really. Peoples money doesn't fly out the window when their privacy is ripped out from under them, as such discussing it seems a little meaningless. As some of the most popular wallets don't even use change addresses, for the comfort of the developers and at the cost of the user. > Solving the latter two problems can go a long way to reducing the impact > of the former. But currently the only solution is to run a full chain > wallet. This is not a viable solution for many scenarios, and getting > less so. Which makes the general clambering for demise of the full node wallet all the more baffling. > Well because of presumed relationship in time these are not actually > separated requests. Which is why even the (performance-unrealistic) > option of a distinct Tor route for each independent address request is > *still* problematic. Yep, any leak is a useful leak. Even if you only expose one single address request to me, I now have an idea of what timezone you are in and can eliminate it from other implausible ones. Onion routing is not a solution in my mind, you're just asking for people to sybil attack Electrum clients to capture as much timing data as possible. There's no defending against that. > Introducing truly-random timing variations into the mixnet solutions can > mitigate timing attacks, but yes, this just makes the already > intolerable performance problem much worse. Realistically this is all too broken to be building wallets on top of. SPV clients are neither secure nor private, we should feel guilty for ever promoting them.