Bitcoin Forum
July 18, 2018, 06:57:31 PM *
News: Latest stable version of Bitcoin Core: 0.16.1  [Torrent]. (New!)
 
   Home   Help Search Donate Login Register  
Pages: 1 2 [All]
  Print  
Author Topic: What's the situation with Bitcoins privacy/anonymity?  (Read 342 times)
justone123
Sr. Member
****
Offline Offline

Activity: 420
Merit: 254


View Profile
February 26, 2018, 12:11:57 AM
Merited by DannyHamilton (2), malevolent (1)
 #1

So yeah i've read some things about confidentional transactions to enhance privacy in Bitcoin, but i don't really know what it means.

Will Bitcoin enable anonymous transactions&addresses? So you could have an address and nobody knows how much Bitcoins you have/nobody can see your transactions/worth of transactions...?

What level of privacy/anonymity will these implementations provide?
1531940251
Hero Member
*
Offline Offline

Posts: 1531940251

View Profile Personal Message (Offline)

Ignore
1531940251
Reply with quote  #2

1531940251
Report to moderator
fair bitcoin games | pvp - pve - solo pve games | faucet |
Free satoshi code btcoon500
Advertised sites are not endorsed by the Bitcoin Forum. They may be unsafe, untrustworthy, or illegal in your jurisdiction. Advertise here.
1531940251
Hero Member
*
Offline Offline

Posts: 1531940251

View Profile Personal Message (Offline)

Ignore
1531940251
Reply with quote  #2

1531940251
Report to moderator
1531940251
Hero Member
*
Offline Offline

Posts: 1531940251

View Profile Personal Message (Offline)

Ignore
1531940251
Reply with quote  #2

1531940251
Report to moderator
1531940251
Hero Member
*
Offline Offline

Posts: 1531940251

View Profile Personal Message (Offline)

Ignore
1531940251
Reply with quote  #2

1531940251
Report to moderator
Colorblind
Member
**
Offline Offline

Activity: 196
Merit: 31

This text is irrelevant


View Profile
February 26, 2018, 07:40:41 AM
 #2

So yeah i've read some things about confidentional transactions to enhance privacy in Bitcoin, but i don't really know what it means.

Will Bitcoin enable anonymous transactions&addresses? So you could have an address and nobody knows how much Bitcoins you have/nobody can see your transactions/worth of transactions...?

What level of privacy/anonymity will these implementations provide?

For people to be able to answer those questions we need first to make some definitions:

Define Anonimity?
Define "levels" of anonymity?

Bitcoin in itself is pretty anonymous i.e. you don't really need to identify yourself (by any other means besides you bitcoin address) to send or receive bitcoins (unless you want to). However being anonymous does not mean untraceable.  I.e. anyone can see the your transaction can follow the funds. So in order to deanonymyze you investigator need to deanonimyze people you sent transaction to first and then it will still be tough to get to you (unless you gave away your privacy at a transaction step it will be hard to bind your identity to your address). In most cases this gives pretty good "level" of anonymity. If you are looking to have more then that you may be want to check Zcash or Monero - coins that provide additional layers of anonymity to transactions, making it harder to track back to you.

Blockchain architecture won't allow complete anonymity in trustless system because of how it's designed to function. All it can offer is a way to use network without need to actually identify yourself - so biggest chunk of your anonymity is your own responsibility.
btchump
Newbie
*
Offline Offline

Activity: 11
Merit: 3


View Profile
February 26, 2018, 08:53:47 AM
Merited by DannyHamilton (2)
 #3

So yeah i've read some things about confidentional transactions to enhance privacy in Bitcoin, but i don't really know what it means.

Will Bitcoin enable anonymous transactions&addresses? So you could have an address and nobody knows how much Bitcoins you have/nobody can see your transactions/worth of transactions...?

What level of privacy/anonymity will these implementations provide?

When the dev's are asked this question the response is 'we don't care'

Most ppl just want to pump&dump btc to the moon, and don't consider privacy as means to the end of 'getting rich quick & easy'

As to the nature of your question, there is MONERO ( which claims to be secure ), and there is the z-cash coin family which have z-obfuscated addressses to backup the public address scheme, the thing with MONERO is its choice of ECDSA is known to be weak and have a back-door, while MONERO may be 'secure', its not secure from the ppl you should fear ( NSA wrote the ecdsa curves for monero ), like NSA wrote Secp256k1 for btc, like NSA wrote sha-256 for btc, ... THE ONLY real privacy is a coin that has no link to NSA, I think zen-cash fits that case Smiley

Again, over the years when dev's have been asked its always "We don't care about privacy"

That's ok, it opens the market up for other coins that DO CARE ABOUT PRIVACY
Mr. Net
Hero Member
*****
Offline Offline

Activity: 518
Merit: 502



View Profile
February 26, 2018, 10:41:24 AM
 #4

We are going to see different blockchains for different use cases this also applies to anonymity / confidentiality.

Something we might see are dedicated decentralised services designed to mix Bitcoins. We have had existing ones but these have been centralised and often shut down by governments. BTC-e for example was involved in these kinds of activities and have been taken down by the FBI some time ago.

justone123
Sr. Member
****
Offline Offline

Activity: 420
Merit: 254


View Profile
February 26, 2018, 01:34:20 PM
 #5

You are not even answering my questions... I am asking for bitcoin and bulletproofs, confidential transactions and not other coins.
HeRetiK
Hero Member
*****
Offline Offline

Activity: 812
Merit: 652


the forkings will continue until morale improves


View Profile
February 26, 2018, 05:15:18 PM
Merited by Welsh (1)
 #6

You are not even answering my questions... I am asking for bitcoin and bulletproofs, confidential transactions and not other coins.

The idea behind bulletproof transactions is that the content of the transaction is encoded in a way that only the sender and the receiver know the amount being sent, with an external observer merely being able to verify that no money has been generated out of thin air (ie. input minus output equals zero). Since the balances are only the sum of inbound and outgoing transactions it follows that the balance of addresses that receive / send bulletproof transactions will not be known to an external observer.

For MimbleWimble, which uses a similar technique, not even the sending and receiving addresses are visible to external observers. To be honest I'm not sure if that's the case with Bitcoin bulletproofs as well. Either way it will probably still take a while until we see bulletproof transactions coming to Bitcoin, if this approach will actually be pursued at all.

A bit closer to real life usage is the privacy that comes with Lightning Network. In this case it's more of a side-effect and the settlement balances of each respective address is still public, but at least the transactions that lead to the final state are not. Given enough data an adversary could probably correlate at least part of the transactions that are happening, but it at least gives slightly more privacy than mere on-chain transactions.

There's also CoinJoin btw, which is basically a built-in tumbler / mixer for Bitcoin transactions. Not sure what the state on that front is though.

ETFbitcoin
Legendary
*
Offline Offline

Activity: 1372
Merit: 1055



View Profile
February 26, 2018, 05:42:29 PM
 #7

You're talking about Bulletproof which is more efficient than confidentional transactions (size and confirmation speed), but it's still prototype. More info : https://blockstream.com/2018/02/21/bulletproofs-faster-rangeproofs-and-much-more.html

Most likely users won't be forced to use Bulletproof (if it's implanted to Bitcoin) and exchanges/services don't bother to support it,  so i think it will be useless just like optional privacy features in Zcash. As far as i know, you could get privacy/anonymity level similar with Monero (unknown output, unknown receiver and unknown amount sent) if both sender and receiver use Bulletproof.
So in reality, there won't be any significant privacy/anonymity in real life usage.

.
PLAY
               ▄▄▄██████▄▄▄▄▄
          ▄▄███████████    █████▄
      ▄▄███████    ████▄▄▄▄███████
  ▄▄███    ████▄▄▄▄███████████████▌
▄██████▄▄▄▄███████████████████████
█████████████████████████████████▌
▐████████████████████▀█  ███████████
 ▐█████████████████▄  ▀     ▀██████▌
  ████████████████▀    ▄▄▄   ███████
  ▐███████████████▄ ▄  ▐███   ▀██████▌
   ▐████████████████   ▀▀      ██████
    ███  ▀███████████▌   ▄▄██   ▐█████▌
    ▐██▄  ███████████   ▐███   ███████
     ████████████████▌   ▀   ▄███████
     ▐██████████████▀    ▄ ▀██████▀
      ▀███████████████  ▄ ▀█▄████▀
        ▀████████████████▄███▀▀
          ▀███████████████▀▀
            ▀██████████▀▀
              ▀████▀▀
.
ITCOIN
G   A   M   E   S
       ▄██▄
      ▐████▄▄▄██
  ▄   █████████▀
   ▀▄ ▀█████▀▀
  ▄▄▀▀▀▄▄▄▄▄▀▀
 ▀ ▄▄██▄▄▄▄▄███▄
 ▄███████  ██████▄
▄█████▀      ▀█████
██████  ▀  █▄▄██████
███████▄▄    ▀██████
 █████  ▀  ▀  █████▀
  ▀████▄▄  ▄▄█████▀
    ▀▀███▄▄█████▀
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
▄▄█ ▄▀▄           █
▄▄▄▀▀▀  █ █▀█           █
█  ▄▄    █      ▄█▄      █
▀▄ █▄▀▄  █    ▄█████▄    █
█ ▀     █  ▄█████████▄  █
█      █  ███████████  █
▀▄     █   ▀▀▀ █ ▀▀▀   █
█     █      ▀▀▀      █
█    █               █
▀▄   ▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀
█       ▄▄▄▀▀       
▀▄▄▄▀▀▀             
           ▄▄▄   
          █   ▀▀▀▄▄▄
         █  ▄▄▄     ▀▀▀▄▄▄
        █   ███    ▄▄▄   ▐▌
 ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄   ███   █
█               █       █
█          ███  █ ▄    █
█          ▀▀▀  █ ██  █
█      ███      █ ▀  █
█      ▀▀▀      █   █
█  ███          █ ▀▀
█  ▀▀▀          █
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀
.........FACEBOOK.........
.......ANN THREAD.......

.[/url]
   REFERRAL PROGRAM   
bitbunnny
Legendary
*
Offline Offline

Activity: 1400
Merit: 1035



View Profile
February 26, 2018, 06:31:42 PM
 #8

Over the years Bitcoin has lost a great deal of privacy and anonimity. I would dare to say that it isn't almost anonimous at all. Therefore the need for bulletproof transactions has emerged. But at the moment I'm not sure how efficient this will function if it will at all. And if you want to trade and use exchanges you can't stay anonimous because exchanges are legaly obliged to collect users data in order to keep legitimate business.
But for some deal of anonimity you can always try to use Bitcoin mixers.

.BITSLER.                 ▄███
               ▄████▀
             ▄████▀
           ▄████▀  ▄██▄
         ▄████▀    ▀████▄
       ▄████▀        ▀████▄
     ▄████▀            ▀████▄
   ▄████▀                ▀████▄
 ▄████▀ ▄████▄      ▄████▄ ▀████▄
█████   ██████      ██████   █████
 ▀████▄ ▀████▀      ▀████▀ ▄████▀
   ▀████▄                ▄████▀
     ▀████▄            ▄████▀
       ▀████▄        ▄████▀
         ▀████▄    ▄████▀
           ▀████▄▄████▀
             ▀██████▀
               ▀▀▀▀
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄            
▄▄▄▄▀▀▀▀    ▄▄█▄▄ ▀▀▄         
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄      
█  ▀▄▄  ▀█▀▀ ▄      ▀████   ▀▀▄   
█ █▄  ▀▄   ▀████       ▀▀ ▄██▄ ▀▀▄
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
█  ▀▀       ▀▄▄ ▀████      ▄▄▄▀▀▀  █
█            ▄ ▀▄    ▄▄▄▀▀▀   ▄▄  █
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀
█ ▄▄   ███   ▀██  █           ▀▀  █ 
█ ███  ▀██       █        ▄▄      █ 
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀  
▀▄            █        ▀▀      █  
▀▀▄   ███▄  █   ▄▄          █   
▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀    
▀▀▄   █   ▀▀▄▄▄▀▀▀         
▄▄▄▄▄▄▄▄▄▄▄█▄▄▀▀▀▀              
              ▄▄▄██████▄▄▄
          ▄▄████████████████▄▄
        ▄██████▀▀▀▀▀▀▀▀▀▀██████▄
▄     ▄█████▀             ▀█████▄
██▄▄ █████▀                ▀█████
 ████████            ▄██      █████
  ████████▄         ███▀       ████▄
  █████████▀▀     ▄███▀        █████
   █▀▀▀          █████         █████
     ▄▄▄         ████          █████
   █████          ▀▀           ████▀
    █████                     █████
     █████▄                 ▄█████
      ▀█████▄             ▄█████▀
        ▀██████▄▄▄▄▄▄▄▄▄▄██████▀
          ▀▀████████████████▀▀
              ▀▀▀██████▀▀▀
            ▄▄▄███████▄▄▄
         ▄█▀▀▀ ▄▄▄▄▄▄▄ ▀▀▀█▄
       █▀▀ ▄█████████████▄ ▀▀█
     █▀▀ ███████████████████ ▀▀█
    █▀ ███████████████████████ ▀█
   █▀ ███████████████▀▀ ███████ ▀█
 ▄█▀ ██████████████▀      ▀█████ ▀█▄
███ ███████████▀▀            ▀▀██ ███
███ ███████▀▀                     ███
███ ▀▀▀▀                          ███
▀██▄                             ▄██▀
  ▀█▄                            ▀▀
    █▄       █▄▄▄▄▄▄▄▄▄█
     █▄      ▀█████████▀
      ▀█▄      ▀▀▀▀▀▀▀
        ▀▀█▄▄  ▄▄▄
            ▀▀█████
[]
RGBKey
Hero Member
*****
Offline Offline

Activity: 784
Merit: 616


rgbkey.github.io/pgp.txt


View Profile WWW
February 27, 2018, 04:43:56 AM
 #9

Over the years Bitcoin has lost a great deal of privacy and anonimity. I would dare to say that it isn't almost anonimous at all. Therefore the need for bulletproof transactions has emerged. But at the moment I'm not sure how efficient this will function if it will at all. And if you want to trade and use exchanges you can't stay anonimous because exchanges are legaly obliged to collect users data in order to keep legitimate business.
But for some deal of anonimity you can always try to use Bitcoin mixers.

Bitcoin has never been anonymous, only pseudo-anonymous. Addresses are completely traceable identifiers. You could make an argument that Bitcoin may have gained privacy due to changes in wallets (generating a new address for every receipt of coins instead of re-using them). Excluding exchanges, which aren't directly a part of Bitcoin, I think the privacy situation may have gotten slightly better.

However, with the rise of Bitcoin there's been the rise of chain analytics groups trying to trace coins. So I think it's important that privacy improvements to Bitcoin on a protocol level are still being considered.

bob123
Sr. Member
****
Offline Offline

Activity: 630
Merit: 465



View Profile WWW
February 27, 2018, 03:08:02 PM
 #10

You could make an argument that Bitcoin may have gained privacy due to changes in wallets (generating a new address for every receipt of coins instead of re-using them).

The privacy of Bitcoin has nothing to do with updates of wallets.
Addresses technically don't exist in the bitcoin network. Its just a form of representation in an (accepted) human-readable format.

Additionally 'addresses' should be used as a form of invoice number. Thats effectively the best way regarding any possible trade-offs.
The way the bitcoin protocol is used has no influence on the privacy of the technology (and the coin) itself.

pebwindkraft
Full Member
***
Offline Offline

Activity: 238
Merit: 179


View Profile
February 27, 2018, 04:21:51 PM
 #11

...
Addresses technically don't exist in the bitcoin network. Its just a form of representation in an (accepted) human-readable format.

Which is technically correct. The tx leave only hashes and pubkeys in the blockchain. Not addresses. But: the pubkeys can easily be hashed, checksum’d and base58check encoded, to finally have the same thing as the addresses in the wallets. so there is no big distinction between what is in the blockchain, and what is in the wallet. This holds true for P2SH as well.
When forensic analysis is done, what does it matter, if you use the hash, the pubkey or the address.you don‘t even need the addresses, and could work through the tx and create a picture of their relationship(s). To see how bitcoins are assigned from pubkey to pubkey or hash to hash. Essentially it will be the same as saying „address to address“.
Hence I see the need for anonymization or programs/extensions to provide more privacy.
CodeCoinICO
Jr. Member
*
Offline Offline

Activity: 42
Merit: 0

support@codecoinico.com


View Profile WWW
February 27, 2018, 08:57:03 PM
 #12

Well basically bitcoin is not a private coin and your transactions will always be recorded on blockchain with ur address, permanently.

CodingMarket-World's first decentralized coding service marketplace
ICO Live Now!
www.codecoinico.com
monsterer2
Member
**
Offline Offline

Activity: 266
Merit: 97


View Profile
February 27, 2018, 09:20:27 PM
 #13

Privacy/anonymity consists of:

A. unlinkability (can't tell two transactions are to the same recipient): stealth (or just not reusing addresses)
B. untraceability (can't trace paths between tranasctions): ring signatures (or coinjoin, coinswap, though with many complications and hazards, etc.)
C. content privacy (can't see amount being spent): CT (or limited ambiguity of which outputs are change)

I'm not sure if there is any existing crypto which satisfies all three of these requirements.

sjyi
Jr. Member
*
Offline Offline

Activity: 154
Merit: 1


View Profile
February 28, 2018, 04:00:02 AM
 #14

Privacy/anonymity consists of:

A. unlinkability (can't tell two transactions are to the same recipient): stealth (or just not reusing addresses)
B. untraceability (can't trace paths between tranasctions): ring signatures (or coinjoin, coinswap, though with many complications and hazards, etc.)
C. content privacy (can't see amount being spent): CT (or limited ambiguity of which outputs are change)

I'm not sure if there is any existing crypto which satisfies all three of these requirements.

DeepOnion (DO) provides all three.
The contents are obfuscated with obfs4 on top of Tor.
The transactions are obfuscated through coinjoin and multi-sig.

❍ E t h e r a f f l e ❍ The worlds first & only decentralized charitable lottery ❍ ICO Live Now! ❍ (https://etheraffle.com)
ETFbitcoin
Legendary
*
Offline Offline

Activity: 1372
Merit: 1055



View Profile
February 28, 2018, 04:39:31 PM
 #15

Privacy/anonymity consists of:

A. unlinkability (can't tell two transactions are to the same recipient): stealth (or just not reusing addresses)
B. untraceability (can't trace paths between tranasctions): ring signatures (or coinjoin, coinswap, though with many complications and hazards, etc.)
C. content privacy (can't see amount being spent): CT (or limited ambiguity of which outputs are change)

I'm not sure if there is any existing crypto which satisfies all three of these requirements.

You just mentioned what Monero can do. But you need to do proper full nodes configuration and use secure connection for maximum privacy/anonymity.

Privacy/anonymity consists of:

A. unlinkability (can't tell two transactions are to the same recipient): stealth (or just not reusing addresses)
B. untraceability (can't trace paths between tranasctions): ring signatures (or coinjoin, coinswap, though with many complications and hazards, etc.)
C. content privacy (can't see amount being spent): CT (or limited ambiguity of which outputs are change)

I'm not sure if there is any existing crypto which satisfies all three of these requirements.

DeepOnion (DO) provides all three.
The contents are obfuscated with obfs4 on top of Tor.
The transactions are obfuscated through coinjoin and multi-sig.


You have no idea what you're talking about, DeepOnion blockchain is public and everyone can see the sender, the receiver and the amount send. Most coins with right full nodes configuration, use secure connection and use one-time address are more private/secure than DeepOnion.
I've no idea about obfs4, but CoinJoin require trust and multi0sig have no correlation with anonymity.

.
PLAY
               ▄▄▄██████▄▄▄▄▄
          ▄▄███████████    █████▄
      ▄▄███████    ████▄▄▄▄███████
  ▄▄███    ████▄▄▄▄███████████████▌
▄██████▄▄▄▄███████████████████████
█████████████████████████████████▌
▐████████████████████▀█  ███████████
 ▐█████████████████▄  ▀     ▀██████▌
  ████████████████▀    ▄▄▄   ███████
  ▐███████████████▄ ▄  ▐███   ▀██████▌
   ▐████████████████   ▀▀      ██████
    ███  ▀███████████▌   ▄▄██   ▐█████▌
    ▐██▄  ███████████   ▐███   ███████
     ████████████████▌   ▀   ▄███████
     ▐██████████████▀    ▄ ▀██████▀
      ▀███████████████  ▄ ▀█▄████▀
        ▀████████████████▄███▀▀
          ▀███████████████▀▀
            ▀██████████▀▀
              ▀████▀▀
.
ITCOIN
G   A   M   E   S
       ▄██▄
      ▐████▄▄▄██
  ▄   █████████▀
   ▀▄ ▀█████▀▀
  ▄▄▀▀▀▄▄▄▄▄▀▀
 ▀ ▄▄██▄▄▄▄▄███▄
 ▄███████  ██████▄
▄█████▀      ▀█████
██████  ▀  █▄▄██████
███████▄▄    ▀██████
 █████  ▀  ▀  █████▀
  ▀████▄▄  ▄▄█████▀
    ▀▀███▄▄█████▀
▄▀▀▀▀▀▀▀▀▀▀▀▀▀▀▀▄
▄▄█ ▄▀▄           █
▄▄▄▀▀▀  █ █▀█           █
█  ▄▄    █      ▄█▄      █
▀▄ █▄▀▄  █    ▄█████▄    █
█ ▀     █  ▄█████████▄  █
█      █  ███████████  █
▀▄     █   ▀▀▀ █ ▀▀▀   █
█     █      ▀▀▀      █
█    █               █
▀▄   ▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀
█       ▄▄▄▀▀       
▀▄▄▄▀▀▀             
           ▄▄▄   
          █   ▀▀▀▄▄▄
         █  ▄▄▄     ▀▀▀▄▄▄
        █   ███    ▄▄▄   ▐▌
 ▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄   ███   █
█               █       █
█          ███  █ ▄    █
█          ▀▀▀  █ ██  █
█      ███      █ ▀  █
█      ▀▀▀      █   █
█  ███          █ ▀▀
█  ▀▀▀          █
▀▄▄▄▄▄▄▄▄▄▄▄▄▄▄▄▀
.........FACEBOOK.........
.......ANN THREAD.......

.[/url]
   REFERRAL PROGRAM   
LeGaulois
Copper Member
Hero Member
*****
Offline Offline

Activity: 770
Merit: 782

Bitcoin Ninja | Unregulated Banker


View Profile
February 28, 2018, 11:29:01 PM
 #16

is its choice of ECDSA is known to be weak and have a back-door, while MONERO may be 'secure', its not secure from the ppl you should fear ( NSA wrote the ecdsa curves for monero )

Can you elaborate what you mean?
ECDSA is maybe 25 years old and the cryptographer who offered ECDSA solution passed away years back...
And from I have read I quote: "a large number of brains have studied the possibility of designing a quantum computer to attack the security of algorithms such as RSA or ECDSA. In the case of ECDSA on 256 bits however, it seems that the laws of thermodynamics do not make it possible, in the current state of knowledge" translated from here

monsterer2
Member
**
Offline Offline

Activity: 266
Merit: 97


View Profile
March 01, 2018, 09:03:03 AM
 #17

You just mentioned what Monero can do. But you need to do proper full nodes configuration and use secure connection for maximum privacy/anonymity.

Monero has made good strides towards proper privacy. I thought there were some lingering questions around the ring signatures, though?

Can the receiver of a private transaction prove a link to the sender? That's another biggy.

pebwindkraft
Full Member
***
Offline Offline

Activity: 238
Merit: 179


View Profile
March 01, 2018, 10:57:06 AM
Merited by DooMAD (2), LeGaulois (2)
 #18

...
As to the nature of your question, there is MONERO ( which claims to be secure ), and there is the z-cash coin family which have z-obfuscated addressses to backup the public address scheme, the thing with MONERO is its choice of ECDSA is known to be weak and have a back-door, while MONERO may be 'secure', its not secure from the ppl you should fear ( NSA wrote the ecdsa curves for monero ), like NSA wrote Secp256k1 for btc, like NSA wrote sha-256 for btc, ...

These are quite blunt statements without any reference to its origin. Also it is posted by a new member in the forum, where it is difficult to understand his level of reputation. Looking at his others post, there is no single reference, rude wording, and "look it up yourself". So credibility is low, very low.
I am wondering why @Danny Hamilton gave it some merits (probably to start a discussion on it, maybe I did not understand his merit policy correctly).

secp256k1
I skimmed through some older posts, which talk about security of secp256k1, and it is not recognizable, that NSA wrote the curves for bitcoin. The NIST recommends usage of secp256r1 (see the "r" for random), and NIST provides recommendations to NSA. The randomness is the factor, where people think, it is not "random" enough and includes the backdoor (implemented by the NSA). It looks like the "k1" curve has been chosen, becuase it was known, that "r1" is used by NSA. This is quite a complex theme, and these two links might provide more inside view:

https://bitcointalk.org/index.php?topic=937058.0
https://bitcointalk.org/index.php?topic=151120.0
https://bitcointalk.org/?topic=2699.0

From what I can read (or even understand), secp256k1 was used for performance reasons, knowing it will loose a bit of security.

SHA256
There is this thread (https://bitcointalk.org/index.php?topic=2680267.0), which is also full of statements, but without any proof or link. Already the OP choose a name, which make the content doubtful, and the headline doesn't count at all for scientific proofs. It is good to start a discussion, but luckily this post remained unanswered.
This thread (https://bitcointalk.org/index.php?topic=288545.0) has many links to SHA256 and NSA, but it doesn't become obvious, if there is a backdoor or not. It also looks more like speculation.
And then one can search vor NSA [secp256k1|sha256|ripemd|ECC|ECDSA] in the forum, just to find an overwhelmingly amount of non scientific comments and speculation.

This doesn't withstand scientific proofs. So I can sit more or less comfortably back, happy to know that at current point in time bitcoin is fairly secure, for the following 3 reasons:

1.) to break bitcoin, you need to crack sha256 and ripemed and ECDSA - if NSA had only one of them broken, bitcoin would be the smallest problem
2.) there is only speculation by newbies with low reputation, that NSA has hacked things. Good for bollywood movies and entertainment (and newbies), but doesn't reflect reality.
3.) Maybe there will be no mathematical proof, "only" empirical proof. A bitcoin blockchain with values in the billion dollar range gives me more trust than any centralized system that we are dependant on nowadays. It is based on hashing and signing algos, which are publicly verifiable. And you can't do this with organizations in the FIAT world...


Fantastic33
Member
**
Offline Offline

Activity: 210
Merit: 12


View Profile
March 01, 2018, 11:27:50 AM
 #19

Bitcoin transactions is not completely anonymous, rather a pseudo anonymous one. Personal information about the sender or receiver are kept confidential. Within every transactions, only the btc address and the amount of btc that was transferred or received can be seen, and no one knows whose the owner of that address unless someone knows your btc address. Every transactions are also listed on a ledger called blockchain and is publicized.
When talking about bitcoin bulletproof, it is a technology which is designed to enable efficient confidential transactions wherein amount that was tranferred is kept hidden. These confidential transactions contains cryptographic proof that the transaction that was made was valid.

https://news.bitcoin.com/stanfords-applied-cryptography-group-aims-to-bulletproof-bitcoin/
Spendulus
Legendary
*
Online Online

Activity: 1946
Merit: 1011



View Profile
March 01, 2018, 12:49:55 PM
Merited by diwataluna (1)
 #20

So yeah i've read some things about confidentional transactions to enhance privacy in Bitcoin, but i don't really know what it means.

Will Bitcoin enable anonymous transactions&addresses? So you could have an address and nobody knows how much Bitcoins you have/nobody can see your transactions/worth of transactions...?

What level of privacy/anonymity will these implementations provide?

When the dev's are asked this question the response is 'we don't care'

Most ppl just want to pump&dump btc to the moon, and don't consider privacy as means to the end of 'getting rich quick & easy'

As to the nature of your question, there is MONERO ( which claims to be secure ), and there is the z-cash coin family which have z-obfuscated addressses to backup the public address scheme, the thing with MONERO is its choice of ECDSA is known to be weak and have a back-door, while MONERO may be 'secure', its not secure from the ppl you should fear ( NSA wrote the ecdsa curves for monero ), like NSA wrote Secp256k1 for btc, like NSA wrote sha-256 for btc, ... THE ONLY real privacy is a coin that has no link to NSA, I think zen-cash fits that case Smiley

Again, over the years when dev's have been asked its always "We don't care about privacy"

That's ok, it opens the market up for other coins that DO CARE ABOUT PRIVACY
You have several inaccurate statements.

First, I have never once seen a Dev say "We don't care about privacy." However if your assertion was taken figuratively, privacy may indeed rank low on the list of Core changes because it would be a change from Satoshi's pseudo-anonymous design.

Second, no, the NSA is not "the people you should fear." There are similar agencies all over the world. There are commercial companies and operations that in my opinion, offer a greater threat. Facebook for example.

Third, there is no evidence for the assertion that "the only real privacy is a coin that has no link to NSA." How about the crypto-currency the Venezuelan government is deploying? How about a crypto by Goldman-Sachs?

These statements are wrong for important historical reasons, in which the NSA has actively worked with and assisted in better crypto. Other countries such as Russia kept their crypto secret, which meant it was not criticized, which meant it was quite easily broken. Therefore, having the NSA openly assist with crypto seems a good thing, not a bad thing.

I hope that makes sense...

LeGaulois
Copper Member
Hero Member
*****
Offline Offline

Activity: 770
Merit: 782

Bitcoin Ninja | Unregulated Banker


View Profile
March 01, 2018, 09:57:55 PM
Merited by pebwindkraft (1)
 #21


There is this thread (https://bitcointalk.org/index.php?topic=2680267.0), which is also full of statements, but without any proof or link. Already the OP choose a name, which make the content doubtful, and the headline doesn't count at all for scientific proofs. It is good to start a discussion, but luckily this post remained unanswered.
This thread (https://bitcointalk.org/index.php?topic=288545.0) has many links to SHA256 and NSA, but it doesn't become obvious, if there is a backdoor or not. It also looks more like speculation.

In the first topic, the guy was just giving his own opinion. It's a conspiracy theory that is around for a long time now. Maybe a friend of Alex Jones. You can read conspiracies about anything on the web. As for the document the member was talking about, this is the report from 1996.
http://groups.csail.mit.edu/mac/classes/6.805/articles/money/nsamint/nsamint.htm

In the second topic, i would say nobody here has enough knowledge to give us a proof. I don't say it's impossible Big Brothers NSA has broken already bitcoin, but if a single proof existed, it would be public all over the web

george888055
Sr. Member
****
Offline Offline

Activity: 490
Merit: 250


The Future Of Work


View Profile
March 02, 2018, 12:13:54 PM
 #22

Technically  TumbleBit can work like, it makes a round in every hour. These transactions are leaving specific clues on the blockchain, so someone might can identify which addresses are participating in a round, but no way to tell which addresses sent to which one.



███████████████████████████████████████
███████████████████████████████████████
███████████████████████████████████████
███████████████████████████████████████
███████░░░░░░░░░░░░░░░░████████████████
███████░░░░░░░░░░░░░░░░████████████████
███████░░░░░░░░░░░░░░░▄████████████████
███████░░░░░░░░░░░░░▄██████████████████
███████░░░░░░░░░░░▄█████▀░░░░░░░███████
███████░░░░░░░░░▄█████▀░░░░░░░░░███████
███████░░░░░░░▄█████▀░░░░░░░░░░░███████
███████░░░░░▄█████▀░░░░░░░░░░░░░███████
███████░░░▄█████▀░░░░░░░░░░░░░░░███████
███████░▄█████▀░░░░░░░░░░░░░░░░░███████
████████████▀░░░░░░░░░░░░░░░░░░░███████
███████████████████████████████████████
███████████████████████████████████████
███████████████████████████████████████
███████████████████████████████████████

BLACKBOX OS
The Future of Work. Decentralized.
███████████████████
███████████████████
████████████▀▀█████
███████▀▀▀    █████
███▀    ▄▄▀  ▐█████
█████▄▄█     ██████
██████▌ ▄█▄  ██████
███████████████████
███████████████████




█ ANN THREAD █
ganlianshifu1
Member
**
Offline Offline

Activity: 252
Merit: 10


View Profile
March 02, 2018, 10:59:34 PM
 #23

Bitcoin is often used as an anonymous currency because bitcoin can be sent and accepted without providing any personal identity information. However, bitcoin itself is not completely anonymous in most cases. Bitcoin transactions are never truly anonymous and can be searched through the block chain!

Spendulus
Legendary
*
Online Online

Activity: 1946
Merit: 1011



View Profile
March 03, 2018, 03:06:04 AM
 #24

Bitcoin is often used as an anonymous currency because bitcoin can be sent and accepted without providing any personal identity information. However, bitcoin itself is not completely anonymous in most cases. Bitcoin transactions are never truly anonymous and can be searched through the block chain!

There are many situations where the weak anonymity of Bitcoin is far preferable to other payment means, such as PayPal, or CC.

A partial list would include such things as political donations and porn site payments. How many things can you think of, where people spend, but where there are issues, problems or outright risks with credit cards?
Kakmakr
Legendary
*
Offline Offline

Activity: 1358
Merit: 1080

★ ChipMixer | Bitcoin mixing service ★


View Profile
March 03, 2018, 06:32:29 AM
 #25

Satoshi did not develop Bitcoin with 100% anonymity for a reason :

1. 100% Anonymity will give 100% protection to scammers/thieves/hackers and criminals.

2. 100% Anonymity will get 100% push back from governments. They would have banned it long ago, if Bitcoin had 100% anonymity.

Satoshi gave it Pseudo-anonymity to place it in the same category as fiat Cash. It is after all a alternative Cash system.  Cool

Lucas Riley
Jr. Member
*
Offline Offline

Activity: 68
Merit: 0


View Profile
March 04, 2018, 12:45:30 AM
 #26

The idea that bitcoin is fully anonymous is a myth. Government with the right resources can track down owners of bitcoin. Look at how Coinbase were just forced to hand over documents of their customers. I'd say bitcoin is semi anonymous or anonymous to anybody not looking for you
Minhxx
Jr. Member
*
Offline Offline

Activity: 202
Merit: 3

CyberMiles


View Profile WWW
March 05, 2018, 03:38:08 AM
 #27

When it comes to bitcoin, we talk about anonymous transactions, bitcoins are not anonymous. Bitcoin hides the identity of the seller and buys only leaving the number of transactions and it's manifest

REME-COIN ● Marketplace with up to 100% Cashback
▬▬ ● ● ICO (PRE-SALE) START: 2 MAY 2018 ● ● ▬▬ (https://www.remecoin.io/)
cellard
Legendary
*
Offline Offline

Activity: 1078
Merit: 1108


View Profile
March 07, 2018, 07:52:40 PM
 #28

I may be wrong, but I believe that it's simply too late to improve bitcoin's privacy/anonymity at a protocol level... if segwit was controversial, then imagine adding that thing. A lot of big companies and exchanges are going to buy miners in order to not give hashrate to approve that update, because big companies im sure are not going to like anonymity at the protocol level since all of them are forced into KYC deals. Imagine people sending transactions into Coinbase in a totally obscured way.. im sure it's not going to be easy to get it done, we'll see a lot of opposition. I would like it to be optional, so if you want you could either do a clean transaction or obscure the amount + use a CoinJoin type of solution to obfuscate ins and outs.

AristoteI
Member
**
Offline Offline

Activity: 280
Merit: 10


View Profile
March 07, 2018, 08:06:39 PM
 #29

When it comes to bitcoin, we talk about anonymous transactions, bitcoins are not anonymous. Bitcoin hides the identity of the seller and buys only leaving the number of transactions and it's manifest
In fact, for a long time already there are services that make it very easy to analyze the blockchain. bitcoin is not anonymous. This is a fact known to many people.

K r y p t o P a l      /     The Platform for Mass Adoption     /   ✓ ERC777 Token
████████████████ [   J O I N   W H I T E L I S T   ] ████████████████
Whitepaper   Bounty   ANN Thread   Facebook   Twitter   Telegram   Youtube   Medium   Instagram
diamondox
Full Member
***
Offline Offline

Activity: 406
Merit: 100



View Profile
March 08, 2018, 07:10:26 PM
 #30

 Bitcoin transactions are never truly anonymous and can be searched through the block chain.

diwataluna
Full Member
***
Offline Offline

Activity: 210
Merit: 103



View Profile
March 10, 2018, 06:08:33 AM
 #31

This was a very interesting thread and as a lay person, aka normie aka non-techie, user of bitcoin, complete anonymity and privacy is low on my list. Security is top. But after reading, I see that all three are intertwined. There are bitcoin forks looking into more privacy. Bitcoin as is was envisioned to be pseudo-anonymous. Having a public ledger is necessary and thus, if by anonymity you mean completely obfuscated and private transactions, there are other coins that try to fill that need as an alternative to bitcoin. There were a couple mentioned. What is interesting for example is that malware and ransoware makers are moving from bitcoin to monero. That's indicative right away about privacy/anonymity of bitcoin versus alts.

╱¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯╲╱¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯╲▂VESTARIN▂╱¯¯¯¯¯¯¯¯¯¯¯¯¯╲╱¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯╲
Website ♦️ Whitepaper ♦️ TelegramMarketplace of goods and services for cryptocurrencyFacebook ♦️ Twitter ♦️ GitHub
╲____________________________╱╲_______________________________________________╱╲________________________╱
Shenzou
Sr. Member
****
Online Online

Activity: 616
Merit: 271



View Profile
March 10, 2018, 09:18:58 PM
 #32

So yeah i've read some things about confidentional transactions to enhance privacy in Bitcoin, but i don't really know what it means.

Will Bitcoin enable anonymous transactions&addresses? So you could have an address and nobody knows how much Bitcoins you have/nobody can see your transactions/worth of transactions...?

What level of privacy/anonymity will these implementations provide?
The real question is why ?, the whole ida behiend using the blockchain netowrk is that every transactions is veriefied and made public, it is how the system works, while the transaction information are public, the users are still anonymous because they are hidden behiend their bitcoin address and not their personal information, i don't think that anonymous addreess and transactions would exist because they would still need to be verified by miners.

FORTUNEJACK
      ▄▄███████▄▄
   ▄████▀▀ ▄ ██████▄
  ████ ▄▄███ ████████
 █████▌▐███▌ ▀▄ ▀█████
███████▄██▀▀▀▀▄████████
█████▀▄▄▄▄█████████████
████▄▄▄▄ █████████████
 ██████▌ ███▀████████
  ███████▄▀▄████████
   ▀█████▀▀███████▀
      ▀▀██████▀▀
         
         █
...FortuneJack.com                                             
...THE BIGGEST BITCOIN GAMBLING SITE
       ▄▄█████████▄▄
    ▄█████████████████▄
  ▄█████████████████████▄
 ▄██
█████████▀███████████▄
██████████▀   ▀██████████
█████████▀       ▀█████████
████████           ████████
████████▄   ▄ ▄   ▄████████
██████████▀   ▀██████████
 ▀██
█████████████████████▀
  ▀██
███████████████████▀
    ▀█████████████████▀
       ▀▀█████████▀▀
#JACKMATE
WIN 1 BTC
▄█████████████████████████▄
███████████████████████████
███████████████████████████
██████████▀█████▀██████████
███████▀░░▀░░░░░▀░░▀███████
██████▌░░░░░░░░░░░░░▐██████
██████░░░░██░░░██░░░░██████
█████▌░░░░▀▀░░░▀▀░░░░▐█████
██████▄░░▄▄▄░░░▄▄▄░░▄██████
████████▄▄███████▄▄████████
███████████████████████████
███████████████████████████
▀█████████████████████████▀
seven2smoke1
Full Member
***
Online Online

Activity: 434
Merit: 128


View Profile
March 10, 2018, 10:29:02 PM
 #33

So yeah i've read some things about confidentional transactions to enhance privacy in Bitcoin, but i don't really know what it means.

Will Bitcoin enable anonymous transactions&addresses? So you could have an address and nobody knows how much Bitcoins you have/nobody can see your transactions/worth of transactions...?

What level of privacy/anonymity will these implementations provide?
The real question is why ?, the whole ida behiend using the blockchain netowrk is that every transactions is veriefied and made public, it is how the system works, while the transaction information are public, the users are still anonymous because they are hidden behiend their bitcoin address and not their personal information, i don't think that anonymous addreess and transactions would exist because they would still need to be verified by miners.
I think that I know the reason why the blockchain network is not totally anonymous. People who use bitcoin are always hiding behind their bitcoin address and also their personal information, so no one can know you exactly your location or what is your name or specific details like that, but they know how much do you have in your address and they can see your transactions. I don't think it will be right if you also hidden this thing, so then you can't even make any proof that you are already sending/receiving bitcoins.
buwaytress
Hero Member
*****
Offline Offline

Activity: 686
Merit: 621


I bit, therefore I am


View Profile
March 11, 2018, 09:56:13 AM
 #34

I think that I know the reason why the blockchain network is not totally anonymous. People who use bitcoin are always hiding behind their bitcoin address and also their personal information, so no one can know you exactly your location or what is your name or specific details like that, but they know how much do you have in your address and they can see your transactions. I don't think it will be right if you also hidden this thing, so then you can't even make any proof that you are already sending/receiving bitcoins.


You know, even if you did use a privacy/anonymous coin, the premise of the "system" you mention doesn't change. Transaction with anonymous coins can still be proven and verified, if coins were sent or received - only that in most cases, this information is privileged to parties to the transaction. So yeah, you couldn't look up the balance unless you were given access, but the anonymity features don't remove auditability, they merely restrict it.

cellard
Legendary
*
Offline Offline

Activity: 1078
Merit: 1108


View Profile
March 11, 2018, 01:05:19 PM
 #35

Satoshi did not develop Bitcoin with 100% anonymity for a reason :

1. 100% Anonymity will give 100% protection to scammers/thieves/hackers and criminals.

2. 100% Anonymity will get 100% push back from governments. They would have banned it long ago, if Bitcoin had 100% anonymity.

Satoshi gave it Pseudo-anonymity to place it in the same category as fiat Cash. It is after all a alternative Cash system.  Cool

No, cash is several times more anonymous than bitcoin, or any other cryptocurrency whatsoever. With cryptocurrencies, there's digital traces, no matter what you want to do about it, there will be traces left, this decreases anonymity, because systems can't be perfect, this anonymity can eventually be exploited.

With cash, due it's simplicity, you get simply a piece of paper. These pieces of paper run in the wild with no traces. It does not get more anonymous than that, which is why governments are going to ban cash, and then it's when I predict anonymity features will be pushed into Bitcoin, or else Monero will get an huge pump, since everyone using cash will most likely use Monero.

Pages: 1 2 [All]
  Print  
 
Jump to:  

Sponsored by , a Bitcoin-accepting VPN.
Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!