scoresvideos
Blockchain and Cryptocurrency
Table of Contents
Unit 12 Overview: Blockchain Security & Crypto Attacks
12.1 Common Blockchain Security Vulnerabilities
12.2 Cryptographic Attacks and Countermeasures
12.3 Smart Contract Security and Auditing
12.4 Privacy-Enhancing Technologies in Blockchain

Privacy in blockchain is crucial, and various techniques have been developed to enhance it. Zero-knowledge proofs, ring signatures, and homomorphic encryption allow users to prove ownership, sign messages, and compute on encrypted data without revealing sensitive information.

Transaction privacy is further improved through stealth addresses, confidential transactions, and mixer protocols. These methods hide recipient addresses, transaction amounts, and obscure the trail of funds, making it harder to trace and link transactions to specific individuals.

Privacy-Preserving Cryptographic Techniques

Zero-Knowledge Proofs and Ring Signatures

  • Zero-Knowledge Proofs enable proving knowledge of a secret without revealing the secret itself
    • Prover convinces the verifier of a statement's truth without disclosing additional information
    • Commonly used in blockchain to prove ownership of assets or validity of transactions while maintaining privacy
    • Examples include zk-SNARKs (Zcash) and Bulletproofs (Monero)
  • Ring Signatures allow signing messages on behalf of a group without revealing the signer's identity
    • Signature is generated using the private key of one member in a group, but it's computationally infeasible to determine which member signed it
    • Provides signer ambiguity and enhances transaction privacy in cryptocurrencies like Monero
    • Ring size determines the anonymity set, with larger rings offering higher privacy at the cost of increased transaction size and verification time

Homomorphic Encryption and Secure Multi-Party Computation

  • Homomorphic Encryption enables computation on encrypted data without decrypting it first
    • Allows performing mathematical operations (addition, multiplication) on ciphertexts, with the results matching those performed on the underlying plaintexts
    • Partially Homomorphic Encryption (PHE) supports a limited set of operations, while Fully Homomorphic Encryption (FHE) allows arbitrary computation
    • Potential applications in blockchain include privacy-preserving smart contracts and confidential data aggregation
  • Secure Multi-Party Computation (MPC) allows multiple parties to jointly compute a function over their private inputs without revealing the inputs to each other
    • Parties engage in a protocol to evaluate the function, only learning the output and nothing else about the other parties' inputs
    • Can be used for privacy-preserving voting, auctions, and data sharing in blockchain systems
    • Examples include Shamir's Secret Sharing and Yao's Garbled Circuits

Differential Privacy

  • Differential Privacy is a mathematical framework for protecting individual privacy in statistical databases
    • Ensures that the presence or absence of an individual in a dataset has a negligible effect on the output of any query
    • Achieved by adding carefully calibrated noise to the query results, making it difficult to infer sensitive information about specific individuals
    • Offers a robust privacy guarantee and allows for data analysis while mitigating the risk of re-identification attacks
    • Can be applied to blockchain analytics, allowing insights to be derived from transaction data without compromising user privacy

Transaction Privacy Enhancements

Stealth Addresses and Confidential Transactions

  • Stealth Addresses provide recipient privacy by generating unique one-time addresses for each transaction
    • Sender derives a stealth address from the recipient's public address using a shared secret and a one-time public key
    • Only the recipient can identify and spend the funds sent to the stealth address using their private view key
    • Implemented in privacy-focused cryptocurrencies like Monero and Zcash to hide the receiving addresses on the blockchain
  • Confidential Transactions hide the amounts being transferred in a transaction
    • Amounts are encrypted using homomorphic commitments (Pedersen commitments) and range proofs
    • Allows for transaction validation without revealing the actual values, enhancing privacy
    • Used in cryptocurrencies like Monero and the Liquid sidechain for Bitcoin to conceal transaction amounts

Mixer Protocols

  • Mixer Protocols allow users to obfuscate the trail of their transactions by pooling funds with other users
    • Users deposit funds into a mixing pool and later withdraw them to a new address, severing the link between the input and output addresses
    • Centralized mixers (Bestmixer, Helix) rely on a trusted third party to perform the mixing, introducing counterparty risk
    • Decentralized mixers (CoinJoin, CoinShuffle) coordinate the mixing process among users without a central authority, enhancing privacy and resilience
    • Offers plausible deniability for users, making it difficult to trace the flow of funds and link transactions to specific individuals