Researcher Breaks Grin’s ‘Privacy’ Spending Just $60 Per Week

Published at: Nov. 18, 2019

Mimblewimble, a privacy-focused blockchain protocol, is allegedly not private at all. According to an expert at blockchain research firm Dragonfly Research, Mimblewimble's privacy is fundamentally flawed, which he reportedly proved by discovering the exact addresses of senders and recipients for 96% transactions of Mimblewimble’s privacy-centric coin Grin (GRIN).

Ivan Bogatyy, a researcher at United States-based Dragonfly Capital Partners, published a Medium post on Nov. 18 in which he claimed that he was able to break Grin’s purported privacy while spending just $60 per week on Amazon Web Services (AWS).

Mimblewimble should no longer be treated as an alternative to Zcash or Monero

According to the researcher, the problem is inherent to Mimblewimble, and there is no way to fix it. Based on new findings, Mimblewimble should no longer be considered as a “viable alternative to Zcash or Monero when it comes to privacy,” Bogatyy declared.

The expert added that Mimblewimble developers have been aware of the technical feasibility of such an attack since he posted a Reddit thread on the issue a year ago.

Bogatyy lists three approaches to privacy in crypto

In the analysis, Bogatyy referred to anonymity sets, which are patterns that aggregate multiple transactions into a set, such that they can no longer be distinguished. Based on anonymity sets, Bogatyy pointed out three major approaches to privacy in cryptocurrencies such as Zcash, Monero and Mimblewimble.

According to the researcher, Zcash purportedly provides the maximum possible anonymity as its anonymity set includes all the shielded transactions. In Monero, users should pick their own anonymity set of size 10-25 for any existing on-chain unspent output from Bitcoin transactions (UTXO). In Mimblewimble, all transactions in a block are aggregated into one big CoinJoin, purportedly ensuring that an anonymity set is all the transactions that ended up in the same block.

However, Bogatyy says he has managed to catch 96% transactions before they could be aggregated with others for anonymity. “So in reality, there is no one in their anonymity set,” the expert claimed, adding that he was not able to hack all 100% transactions because there was a small minority of transactions that merged before most nodes could see them.

Following Bogatyy’s tweet, Ethereum co-founder Vitalik Buterin replied to emphasize that Zero-Knowledge Succinct Non-Interactive Argument of Knowledge (zk-SNARK) is an example of the only global anonymity sets that are secure. He tweeted:

“If your privacy model has a medium anonymity set, it really has a small anonymity set. If your privacy model has a small anonymity set, it has an anonymity set of 1. Only global anonymity sets (eg. as done with ZK-SNARKs) are truly robustly secure.”

Zcash is reportedly the first widespread application of zk-SNARKs, according to the firm.

Amid the news, Grin token has seen a sharp drop of price. With a market share of 12.7 million, the token is down more than 11% over the past 24 hours at press time and trades at $1.34, according to Coin360.

Grin 24-hour price chart. Source: Coin360

Tags
Blockchain
Privacy
Monero
Zcash
Mimblewimble
Related Posts
Litecoin-Funded Grin Developer Challenges Mimblewimble’s Privacy Issue
A Grin (GRIN) developer funded by the Litecoin Foundation has suggested a solution for fixing the “Achilles heel of Mimblewimble privacy.” David Burkett, a developer at Mimblewimble’s (MW) privacy-centric coin Grin, started a thread on monthly updates detailing progress on both Grin’s development and the integration of MW’s privacy-focused technology into Litecoin (LTC). The developer announced the news on Twitter on Dec. 1: “I'll be posting monthly status updates detailing progress on the LTC MW EB (YAY acronyms). This is geared toward those interested in LTC development, but will also talk a lot about Grin++ changes, so it may be …
Blockchain / Dec. 2, 2019
What are privacy coins and how do they differ from Bitcoin?
Cryptocurrencies are typically pseudonymous, but not necessarily private. Bitcoin (BTC) and other assets run on blockchains, with each transaction posted publicly online. During a transaction between two or more parties, assets move to different wallets, each represented by a string of characters. With these addresses and transactions visible to all, however, a certain level of trackability exists, especially if a wallet transfers funds to an exchange requiring Know Your Customer verification. Certain crypto assets, which are often referred to as privacy coins, private coins or anonymous coins, attempt to hide information about transactions, giving users more privacy. Why might someone …
Blockchain / Feb. 17, 2021
New Privacy Coin Says It Solves Problem With Monero and Zcash
A new coin is hoping to provide stiff competition to rivals such as Monero and Zcash by delivering “the first fully private hybrid chain with staking.” DAPS, which stands for Decentralized Anonymous Payment System, says it has developed ground-breaking technology that properly addresses the issues seen in other privacy coins, resulting in a truly trustless setup. A trustless setup occurs when a user can create a wallet or node without any exchange of information with another user or node. Some privacy coins require you to “trust” the setup information given to you — and trust that the giver of that …
Blockchain / March 11, 2020
Why ‘Setup’ Matters for Cryptocurrency Privacy
Privacy is a core characteristic of cryptocurrencies. Despite mainstream conception, however, it is not the primary goal of cryptocurrencies like Bitcoin (BTC) or Ether (ETH), and is more of an ancillary benefit of using cryptography. The situation is altogether different for cryptocurrencies that seek to maximize anonymity when transacting on the network. Networks like Monero (XMR) and ZCash (ZEC) have soared in popularity, making up part of the handful of leading cryptocurrencies by market cap based on strong guarantees of privacy. Both blockchains offer users virtually complete privacy assurances — Monero with the CryptoNote technology suite, and ZCash deploying the …
Blockchain / March 17, 2020
‘Tracers in the Dark’ presents a fun crime story — and lesson in privacy
On its surface, Andy Greenburg’s new book, Tracers in the Dark: The Global Hunt for the Crime Lords of Cryptocurrency, is a standard crime story. Fans of true crime podcasts will enjoy the crypto version and get a seat in the Federal Bureau of Investigation van as United States federal agents track down criminals through their crypto transactions. The first story recounted is that of a crooked Drug Enforcement Agency agent who stole funds from the online drug market Silk Road. It also addresses the hunt for Dread Pirate Roberts, aka Ross Ulbricht — Silk Road’s founder. Ross’ operational security …
Blockchain / Jan. 2, 2023