Remote Side-Channel Attacks on Anonymous Transactions

OPEN ACCESS

Downloads

Full text (accepted version) (PDF, 1.15 MB)

Author / Producer

Tramèr, Florian Boneh, Dan Paterson, Kenneth G.

Date

2020

Publication Type

Conference Paper

ETH Bibliography

yes

Citations

Altmetric
OPEN ACCESS

Downloads

Full text (accepted version) (PDF, 1.15 MB)

Data

Rights / License

In Copyright - Non-Commercial Use Permitted north_east

Abstract

Privacy-focused crypto-currencies, such as Zcash or Monero, aim to provide strong cryptographic guarantees for transaction confidentiality and unlinkability. In this paper, we describe side-channel attacks that let remote adversaries bypass these protections. We present a general class of timing side-channel and traffic-analysis attacks on receiver privacy. These attacks enable an active remote adversary to identify the (secret) payee of any transaction in Zcash or Monero. The attacks violate the privacy goals of these crypto-currencies by exploiting side-channel information leaked by the implementation of different system components. Specifically, we show that a remote party can link all transactions that send funds to a user, by measuring the response time of that user’s P2P node to certain requests. The timing differences are large enough that the attacks can be mounted remotely over a WAN. We responsibly disclosed the issues to the affected projects, and they have patched the vulnerabilities. We further study the impact of timing side-channels on the zero-knowledge proof systems used in these crypto-currencies. We observe that in Zcash’s implementation, the time to generate a zero-knowledge proof depends on secret transaction data, and in particular on the amount of transacted funds. Hence, an adversary capable of measuring proof generation time could break transaction confidentiality, despite the proof system’s zero-knowledge property. Our attacks highlight the dangers of side-channel leakage in anonymous crypto-currencies, and the need to systematically protect them against such attacks.

Permanent link

https://doi.org/10.3929/ethz-b-000421905

Publication status

published

External links

https://www.usenix.org/conference/usenixsecurity20/presentation/tramer north_east

Editor

Capkun, Srdjan north_east Roesner, Franziska north_east

Book title

Proceedings of the 29th USENIX Security Symposium

Journal / series

Volume

Pages / Article No.

2739 - 2756

Publisher

USENIX Association

Event

29th USENIX Security Symposium (USENIX Security 2020) (virtual)

Edition / version

Methods

Software

Geographic location

Date collected

Date created

Subject

Cryptography and Security (cs.CR)

Organisational unit

09653 - Paterson, Kenneth / Paterson, Kenneth check_circle

Notes

Due to the Corona virus (COVID-19) the conference was conducted virtually.

Funding

Related publications and datasets

More

Show all metadata