bsips icon indicating copy to clipboard operation
bsips copied to clipboard

Published 20 hours ago verified publisher icon bitshares

New BSIP 0055: Metadata hiding via Garlic Routing and other means

Open christophersanborn opened this issue 6 years ago • 2 comments

(From: https://github.com/Agorise/bsips/blob/master/bsip-1205.md)

BSIP: 1205 (unassigned)
Title: Metadata hiding via Garlic Routing and other means
Authors: Christopher J. Sanborn
Status: Draft
Type: Informational
Created: 2018-01-29
Discussion: <url>

Abstract

To provide an overview of strategies that can be used by wallets to prevent leaking of sensitive metadata, e.g. your interest in particular balances on the blockchain, to third parties that may be monitoring network traffic, or to potentially compromised nodes on the BitShares p2p network.

Motivation

Querying a p2p node to check your confidential balances reveals your interest in particular commitments and threatens anonymity by establishing a link between an IP address and a commitment set. New anonymity technologies such as Garlic routing and i2p can be used to ensure that neither network monitoring nor a compromised p2p node can determine the origin of a request regarding a particular set of commitments, thus protecting anonymity.

Additionally, querying a discrete set of commitments undermines confidential unlinkability. Unlinkability is the inability to determine that multiple independent commitments are controlled by the same party. Although not perfect, a partial solution to this is to use Bloom filters to query a superset of commitments, so that the p2p node will return a mix of linked commitments as well as random commitments, making it difficult for an external observer to establish which commitments are actually of interest to the querying party and which are included by the filter serendipitously.

There may also exist other strategies of merit to protect unlinkability and privacy generally.

Rationale

Specifications

Discussion

Summary for Shareholders

Copyright

This document is placed in the public domain.

See Also

christophersanborn avatar Aug 06 '18 22:08 christophersanborn

Two ways that appear easier to solve this would be:

  • setup your own trusted node (which became super easy with docker)
  • use blooming (as done by bitcoin wallets too) that query for more information that actually needed making it difficult to obtain accurate data.

xeroc avatar Aug 13 '18 12:08 xeroc

Draft merged.

abitmore avatar Apr 21 '20 13:04 abitmore