{"id":19310,"date":"2019-09-20T14:46:05","date_gmt":"2019-09-20T14:46:05","guid":{"rendered":"http:\/\/ci027cfe77d0012697"},"modified":"2025-01-27T21:22:17","modified_gmt":"2025-01-27T21:22:17","slug":"bitcoin-is-not-anonymous-and-tor-users-are-forgetting-this","status":"publish","type":"post","link":"https:\/\/bitcoinmagazine.com\/culture\/bitcoin-is-not-anonymous-and-tor-users-are-forgetting-this","title":{"rendered":"Bitcoin Is Not Anonymous and Tor Users Are Forgetting This"},"content":{"rendered":"
<\/div>
<\/figure>\n

Bitcoin is not an anonymous payment network<\/a>. However, in practice, many people still appear to be forgetting this, even the most privacy-minded.<\/p>\n

A research paper<\/a> from the University of Qatar reminds us that Bitcoin alone isn\u2019t private. In fact, it can even deanonymize users seeking privacy from the anonymous communication network, Tor. This indicates a clear vulnerability or potential information leakage for people who already take active measures to remain private online. <\/p>\n

\u201cIn a real-world experiment, we were able to link many users of Twitter and the BitcoinTalk forum to various hidden services, including WikiLeaks, Silk Road and The Pirate Bay,\u201d the authors of the paper, \u201cDeanonymizing Tor Hidden Service Users Through Bitcoin Transactions Analysis,\u201d write. \u201cOur results [have] one immediate implication: Bitcoin addresses should always be assumed compromised as they can be used to deanonymize users.\u201d<\/p>\n

Tor Is Anonymous <\/h2>\n

One great implication of this research is that a lot of people seeking and actively using privacy tools might not actually know, now or at least in the past, how they work. To be advocates of open-source technology like Bitcoin or Tor, people have to understand what is true and what is false about these technologies and how they interact.<\/p>\n

First, the onion routing or Tor network is the largest publicly available open-source browsing software, used by people seeking online privacy. Tor\u2019s value is that its routing architecture separates IP routing information from an online user\u2019s identity by scrambling IP addresses<\/a> through a network of servers or nodes. This makes it very difficult for potential adversaries to track a Tor user\u2019s location, though it comes with its own unique set of drawbacks<\/a>, like browsing speed. <\/p>\n

Along with user anonymity, Tor also enables server-side \u201conion services,\u201d sometimes called hidden services. These are destinations inside the onion routing network \u2014 urls ending with the onion suffix \u2014 that make tracking the host or provider of information equally as difficult as tracking the user. <\/p>\n

Essentially, Tor\u2019s onion service protocol is what is meant when people talk about the \u201cdarknet.\u201d The terms \u201cdeep web\u201d is usually an intended reference to the same thing but is more or less misleading given its frequent connection to internet urban legends<\/a> that are usually scams, such as haunted computer games and assassin markets. A true \u201cdarknet market\u201d describes the economy of users and vendors interacting over onion service websites. They come in all shapes and sizes and are often illicit. A somewhat comprehensive list can be found on this wiki<\/a>.<\/p>\n

For more context, here is a slideshow<\/a> that demystifies Tor\u2019s onion services made by Dr. Paul Syverson, a mathematician who was part of the team that created Tor in the U.S. Naval Research Lab (yes, that\u2019s right, the Navy spurred the creation of the world\u2019s leading anonymous web browser).<\/p>\n

<\/figure>\n
<\/figure>\n

Bitcoin Is Pseudonymous and Popular on Tor<\/h2>\n

Layer one Bitcoin is pseudonymous. This is because every bitcoin transaction is available<\/a> at any time to anyone on its public blockchain. Identities aren\u2019t directly attached but they can be linked to bitcoin addresses. In this way, a set of transactions from the same and sometimes multiple bitcoin addresses can be thought of as a trail of breadcrumbs. Most people are well aware of this, but what they might not realize is that, when combined with Tor, Bitcoin\u2019s pseudonymity means that a Tor user posting a Bitcoin address will effectively compromise their own anonymity. <\/p>\n

\u201cIt\u2019s pretty much trivial at this point for blockchain analysis companies and specific law enforcement agencies to connect those [crypto] transactions to specific wallets, and from those specific wallets to an exchange,\u201d says Caleb<\/a>, an independent cryptocurrency and darknet market researcher. \u201cI guess the ultimate goal for law enforcement will be finding someone who sent money directly from an exchange to an illegal service where they can subpoena an exchange or send an information request for the email address(es) associated with that specific bitcoin address, and easily connect the dots.\u201d<\/p>\n

In general, Caleb points out that many darknet buyers could be arrested if law enforcement chose to dedicate the time and resources. And, it becomes far easier when Bitcoin users post their addresses on social media!<\/p>\n

Nonetheless, Caleb says that although onion service websites recommend monero or other privacy coins, people prefer bitcoin. According to a 2019 report<\/a> by Chainalysis, darknet markets have averaged about $2 million per day in bitcoin over the last two years. That\u2019s less than 1 percent of bitcoin\u2019s economic activity within the same time period but by far the most popular currency for Tor users. <\/p>\n

(Immutability + Social Media) = No Privacy<\/h2>\n

The research paper states that Tor users are de-anonymized \u201c<\/strong>mainly due to the lack of retroactive operational security present in Bitcoin.\u201d This means that because historical transaction information is always available through the blockchain, an adversary can link a user\u2019s Bitcoin address or addresses with addresses shared over onion service pages to anywhere on the internet, most often on social media networks, where the same user\u2019s identity might exist. Bitcoin addresses are permanent breadcrumbs that might one day be linked to a user\u2019s personal identity. In short, privacy users need to remember this \u2014 if they don\u2019t, the consequences will be permanent.<\/p>\n

According to the research, here\u2019s how this could happen. If a person accepts payments over onion services (address P), but lists another over social media (address A), and then eventually transfers funds in some relation between those two accounts, that person\u2019s identity is compromised. <\/p>\n

    \n
  1. Alice uses a browser and creates an online identity @alice with a public profile on social network public.com.<\/li>\n
  2. Alice uses @alice to make a public post asking for donations on Bitcoin address A.<\/li>\n
  3. Alice receives donations through a number of Bitcoin transactions, where A is used as an output address. <\/li>\n
  4. Alice uses Tor browser to visit hidden service private.onion that has public Bitcoin address P. <\/li>\n
  5. Alice makes a payment A \u2192 P to private.onion using A as an input address and P as an output address.<\/li>\n<\/ol>\n

    Alice\u2019s fifth step leaks a key piece of information that can be found by anyone, including her snoopy, less-popular friend, Trudy. Here\u2019s how Trudy does it:<\/p>\n

      \n
    1. Trudy crawls public.com on a regular basis, storing public user profiles and posts. <\/li>\n
    2. Trudy crawls hidden services on a regular basis, storing accessible onion pages. <\/li>\n
    3. Trudy parses crawled data on a regular basis, searching for Bitcoin addresses. <\/li>\n
    4. Trudy parses the blockchain on a regular basis, searching for transactions between user and hidden service addresses. <\/li>\n
    5. Trudy finds Bitcoin address A on public.com, associated with online identity @alice. <\/li>\n
    6. Trudy finds Bitcoin address P on private.onion. <\/li>\n
    7. Trudy finds transaction A \u2192 P and accordingly links @alice to private.onion.<\/li>\n<\/ol>\n

      On its own, the data leakage that Alice creates in her fifth step is minor. It becomes increasingly major when correlated with other public information about Alice that might reaffirm that she owns a particular Bitcoin address. <\/p>\n

      Another study<\/a> cited in this paper even proposes a technique to determine a Bitcoin user\u2019s physical location by examining their spending habits and linking it to a specific time zone. It is difficult to outright prove the effectiveness of these techniques, especially the last one, but it is reasonable to believe that even if they are too costly or ineffective now, these techniques will improve in the future.<\/p>\n

      The paper also points out that de-anonymizing online users becomes far easier with more data. For example, a web search engine like Google or Facebook could \u201cexploit a significantly larger amount of leaked information about users\u201d with far less difficulty.<\/p>\n

      Again, research from the study stresses that it only collected Bitcoin addresses readily available to the public and in no way obtained Bitcoin addresses which required payment, verification or email exchange. To that end, preemptively adding some kind of verification step would be the easiest way to mitigate at least some of Bitcoin\u2019s de-anonymizing problems for Tor. <\/p>\n

      CoinJoin Made the Methodology \u201cNoisy\u201d<\/h2>\n

      The research team came to these conclusions after crawling 1,500 onion services pages then linking 88 different Bitcoin addresses to Bitcoin addresses available over Twitter and the BitcoinTalk forum. For each of these collected addresses, the team identified other addresses belonging to the same user through a more sophisticated blockchain analysis technique called wallet-closure analysis. <\/p>\n

      If wallet-closure analysis has limitations, the paper indicates that it tends to be a \u201cnoisy\u201d way to link Bitcoin addresses. This means it can over-approximate the size of a user wallet or sometimes link multiple wallets incorrectly as belonging to the same user due to the efforts of mixing services such as CoinJoin. To account for this over-approximation, the team \u201cexcluded closures that have common addresses from the analysis.\u201d From this information, it sounds less likely that the research team cracked CoinJoined Bitcoin addresses; rather, they somehow circumnavigated them as deadends and removed them from the study. This means that Bitcoin users who may have made the same operational security mistake over Tor could better secure their anonymity by using mixing services like CoinJoin. <\/p>\n

      In the past, law enforcement agencies have claimed that they can unmix coins. Although it\u2019s not clear how proficient law enforcement is at unmixing bitcoin that has undergone a CoinJoin, it is clear that mixing services come with their own unique set of risks<\/a>. To learn more about this topic, an extensive compilation of CoinJoin research can be found on this Github page<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

      A research paper from the University of Qatar serves as a reminder that Bitcoin is not private and that it can negate the privacy of Tor users.<\/p>\n","protected":false},"author":3410,"featured_media":6653,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[33],"tags":[623,291,2610,1472],"class_list":{"0":"post-19310","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-culture","8":"tag-anonymity","9":"tag-coinjoin","10":"tag-psuedonymity","11":"tag-tor"},"author_data":{"id":3410,"name":"David Hollerith","nicename":"david-hollerith","avatar_url":"https:\/\/bitcoinmagazine.com\/wp-content\/uploads\/2024\/12\/david-hollerith-promo-image-96x96.jpg"},"featured_image_url":"https:\/\/bitcoinmagazine.com\/wp-content\/uploads\/2024\/11\/tor-users-forget-bitcoin-is-not-anonymous.jpg","_links":{"self":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/posts\/19310","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/users\/3410"}],"replies":[{"embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/comments?post=19310"}],"version-history":[{"count":0,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/posts\/19310\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/media\/6653"}],"wp:attachment":[{"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/media?parent=19310"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/categories?post=19310"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitcoinmagazine.com\/wp-json\/wp\/v2\/tags?post=19310"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}