Replying to Avatar Juraj

Thought experiment. Samourai whirlpool coinjoin is five inputs and five outputs. I guess the participants are selected by the coordinator, which is open source, but there's no way to tell which coordinator they are actually running.

Imagine if they were adversarial. We know they send xpubs to their server if you don't run your own dojo node. How can we be sure they don't let four participants that they know xpub for and one that runs their own node? If every coinjoin is made like this (which it could well be), whole whirpool is a total placebo.

Where am I wrong in this thought? (Excerpt trusting that they are the good guys)?

Could this be happening?

Of course two people who run their own nodes could coordinate and see if they are ever part of one coinjoin. But then the next question is - what if they do this only for "interesting" utxos?

If the coordinator is adversarial, the combination of xpubs and small sets makes this attack easy and very hard to see from the transactions themselves.

I'm just thinking "loud", not accusing anyone, I mainly want to see if I understand this correctly.
Avatar
Thomas Paine 2y ago

Depending on your level of paranoia, you cannot assume that your xpub is safe anywhere.

A xpub is easy to spot if stored in plain file, so as long as a malicious OS process has read-access and can connect to the internet, all coinjoins are pointless.

Reply to this note

Please Login to reply.

Discussion

Avatar
Juraj 2y ago

The problem is not your xpub in this case, but coordinator choosing other participants in a way that they know the xpubs. You could be safe and yet not really mixed.

Avatar
Thomas Paine 2y ago

I agree. The issue you're referring to is the degrading 'quality' of the mix.

I just wanted to point out that mixing quality goes straight to zero if the xpub gets into wrong hands. Obviously such a wallet should no longer be used.

Avatar
Juraj 2y ago

The attack i mentioned does not degrade the quality of the mix. It also goes to zero immediately.

So you can do everything right, don't share xpub and you are not mixed either - at all.