A post on Wasabi Wallet and their new protocol, WabiSabi after more digging/research:

First off, please do not connect my joining their Space last week or researching their protocol as lending *any* credence or support for their approach or wallet. I still do not recommend using it in any way.

Digging into WabiSabi has revealed some core issues that should prevent you from considering using it. Note this list is not in any particular order.

1) Wasabi's funding and willing usage of chain surveillance companies puts your on-chain data at risk when you use them.

This usage of CA could not only lead to harming your privacy directly, but could also easily be turned into a honeypot where "bad inputs" automatically get sent to mix with only Sybil inputs, providing 0 privacy but not showing that in your client.

Easy surveillance.

2) WabiSabi as a protocol is only a tool for aggregating inputs where each input/output is blinded from the coordinator, and is not in any way a Coinjoin protocol - it is merely the input aggregation portion of one.

As such, the specifics of the WW2 protocol are unclear.

3) There is currently *zero* way to verify the privacy provided by a given mixing round in WW2, and even Wasabi themselves don't seem to understand how their "anon score" metric works.

If you can't verify the privacy you get, you *should not trust it*.

4) "Lonely whales" (i.e. those with larger amounts of Bitcoin) can often gain *zero* privacy in mixes and have 100% deterministic links between their inputs and outputs.

Have seen as little as 6 BTC gaining no privacy from mixing rounds.

5) Due to the client + coordinator not learning amounts chosen by participants in rounds before mixing, you can never be sure that a mixing round provides you with any privacy, as it's always possible no one selects the same amounts as you, providing an anon set of 1 (your input/output).

6) The usage of "big TX = good privacy" in Wasabi marketing is BS, as the only thing that matters for privacy in a transaction is the potential outputs to match your inputs.

That is really only the outputs that share a denomination with your output, not all outputs in a TX.

7) If the creators of this purported privacy tool don't know how to measure the privacy provided by their protocol, it should raise red flags for you.

Not knowing how your own protocol actually provides privacy opens up so many potential implementation flaws.

8) There is a *long* history of tracing of Wasabi's previous implementation due to flaws in protocol and flaws in implementation, so we should be incredibly wary of trusting privacy claims until 100% proven over time.

9) There remain *zero* post-mix spending tools in Wasabi, something that is absolutely vital to actually gaining privacy from Coinjoin's when spending Bitcoin. Even if the protocol was perfect this would lead to many privacy issues and "foot guns".

This post comes after spending many hours digging into the WabiSabi protocol, their documentation, and speaking with them at length.

I have no personal beef with Wasabi but try to remain open to learning from new approaches and wanted to give WabiSabi a fair shake.

As a note to Thibaud and others I spoke with on the Space last week, that was not merely recon or similar, I genuinely wanted to learn and thought that would be a good place.

Unfortunately I didn't really get much mic time or many questions answered and it felt like marketing.

I don't write this thread to incite more hateful rhetoric between "camps," but because I care about *your* privacy above all and do not want to accidentally push people to use a tool I don't deem sufficient for privacy in Bitcoin.

Just as I love and recommend Monero widely while working on Bitcoin, I love and recommend Samourai Wallet as a proven tool for privacy that I have used successfully over the years and seen proven time and again to work and provide solid privacy on-chain.

If I saw Wasabi Wallet as a workable and useful privacy tool today without core issues I wouldn't hesitate to recommend it, as I'm not an anything maximalist or tied to any camps.

But that is not the case today, and I can't recommend anyone use Wasabi Wallet (still).

I'm sure this will piss a lot of people off (I seem good at that recently 🙃) I want to always be sure that people know where I stand in relation to privacy tools, and that stance hasn't changed despite spending a good amount of time digging into Wasabi.

tl;dr: Keep using Samourai Wallet or Sparrow Wallet for Bitcoin privacy, the holistic toolkit they've built is beyond compare and has a proven track record of efficacy.

Easy takeaway is here:

> tl;dr: Keep using Samourai Wallet or Sparrow Wallet for Bitcoin privacy, the holistic toolkit they've built is beyond compare and has a proven track record of efficacy.

Longer form is that Wasabi Wallet has critical issues and should (still) be avoided IMO.

What's everyone's preferred hot wallet?? I just booted up a samourai and I'm liking it a lot so far.

Bitcoin mixing with Wabisabi vs RoninDojo Whirlpool. Opinions? Anyone have really deep knowledge on this?

Merging your post mix coins can create a near deterministic link since the input amounts vary (easy to do if you're using the wallet for mixing before sending on to cold storage)

Previously I was impressed with Wasabi's user-friendliness, but now I would say it's actually too user-friendly.

It's very easy to take actions that largely undo the benefits of mixing and the user is left unaware and with a false sense of privacy.

Cool, so there’s Tor tech built into the Wasabi application? i.e. someone could use wasabi over Tor without downloading Tor?

Monero is just so easy to use.

- No need to manage UTXOs or worry about consolidation

- Receiver privacy is excellent

- Cheap to use,

- Payments are as reliable as on-chain bitcoin.

I don't keep much, but it's a great way for me to get rid of doxxic change from whirlpool

There's no privacy advantages of Whirlpool over Wasabi 1.0. The only difference between those implementations is the tx0 transaction that Whirlpool creates prior to coinjoining.

The privacy sacrifice of the tx0 transaction is a tradeoff to "speed up" registration so a user can participate in multiple rounds simultaneously since tx0 creates all their outputs immediately. Here's a very simplified MSPaint example of how WW1 can make change more private than Whirlpool:

Appreciate the engagement and honesty. Going to mull this over.

In your opinion would this be correct:

Whirlpool > Wasabi 1.0

Wasabi 2.0 > Whirlpool

Or would it be fair to say Whirlpool prioritizes uniformity/pool size above any efficiency, cost, and speed gains. While Wasabi 2.0 protocol will take a big efficiency, cost, and speed gain for a small uniformity/pool size loss?

But isn't there only one centralized coordinator atm? That is essentially blacklisting coins which is pretty ridiculous for a privacy protocol. Assuming guilt with no evidence, only that a chain analysis company has flagged it (no conflict of interest for the chain analysis company to do so /s) in an industry based on probabilities. But I guess they are free to do that as I am free to avoid them.

What is the trade-off for this in your opinion? (if any, but I suspect there is)