# An Empirical Analysis of Traceability in the Monero Blockchain

**Authors:** Malte M\"oser, Kyle Soska, Ethan Heilman, Kevin Lee, Henry Heffan,, Shashvat Srivastava, Kyle Hogan, Jason Hennessey, Andrew Miller, Arvind, Narayanan, and Nicolas Christin

arXiv: 1704.04299 · 2018-04-24

## TL;DR

This paper empirically analyzes weaknesses in Monero's privacy features, revealing vulnerabilities in mixin sampling and their impact on transaction privacy, and proposes countermeasures to enhance privacy.

## Contribution

It identifies specific weaknesses in Monero's mixin sampling strategy and evaluates their implications, offering potential solutions to improve transaction privacy.

## Key findings

- 62% of inputs vulnerable to chain-reaction analysis
- 80% accuracy in guessing real input using age heuristic
- Significant privacy-sensitive transactions remain after removing mining pool activity

## Abstract

Monero is a privacy-centric cryptocurrency that allows users to obscure their transactions by including chaff coins, called "mixins," along with the actual coins they spend. In this paper, we empirically evaluate two weaknesses in Monero's mixin sampling strategy. First, about 62% of transaction inputs with one or more mixins are vulnerable to "chain-reaction" analysis -- that is, the real input can be deduced by elimination. Second, Monero mixins are sampled in such a way that they can be easily distinguished from the real coins by their age distribution; in short, the real input is usually the "newest" input. We estimate that this heuristic can be used to guess the real input with 80% accuracy over all transactions with 1 or more mixins. Next, we turn to the Monero ecosystem and study the importance of mining pools and the former anonymous marketplace AlphaBay on the transaction volume. We find that after removing mining pool activity, there remains a large amount of potentially privacy-sensitive transactions that are affected by these weaknesses. We propose and evaluate two countermeasures that can improve the privacy of future transactions.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1704.04299/full.md

---
Source: https://tomesphere.com/paper/1704.04299