Závěrečná práce: Bc. David Rajnoha: Security analysis of JoinMarket CoinJoin protocol
Diplomová práce
Security analysis of JoinMarket CoinJoin protocol
Anotace
Bitcoin nabízí pouze omezené záruky anonymity ve své výchozí konfiguraci. JoinMarket, decentralizovaný protokol coinjoin fungující již více než deset let, usiluje o posílení soukromí transakcí prostřednictvím kolaborativního míchání. Přestože byly různé útoky proti JoinMarketu teoreticky diskutovány a některá protiopatření implementována, důkladné empirické hodnocení jeho bezpečnostních záruk zůstává …více
Abstract
Bitcoin offers only limited anonymity guarantees in its default configuration. JoinMarket, a decentralized coinjoin protocol, aims to enhance transaction privacy through collaborative mixing. While various attacks against JoinMarket have been theoretically discussed and some countermeasures implemented, rigorous empirical evaluation of its security guarantees remains limited in academic literature …více
Zadání práce
The goal of this thesis is to study security properties of the JoinMarket CoinJoin protocol [1] for Bitcoin privacy mixing and its practical implementation. In the theoretical part, the current protocol concepts and implemented features will be described based on the (limited) documentation and available open-source code. Known methods for anonymity estimation and applicable anonymity-decreasing attacks will be researched and summarized, including the so-called CoinJoin Sudoku attack [2]. In the practical part, a combination of real data analysis (JoinMarket orderbook and mainnet transactions) and a working Dockerized setup with modified JoinMarket clients [3] for large-scale emulation will be used. An extensive emulations with known ground truth will be executed and analyzed to evaluate expected anonymity gain as well as the impact of the attacks considered. A discussion of results, together with recommendations for attack mitigations, will be provided.
The following practical outputs shall be covered:
- Adaptation of JoinMarket clients and coordination for the emulation of a Dockerized setup.
- At least three large-scale scenarios will be emulated with relevant data collected and analyzed.
- Evaluation of CoinJoin Sudoku attack impact on relevant privacy metrics using emulation on the regtest network.
- Capture and analysis of real JoinMarket orderbook data.
- Analysis of real JoinMarket transactions extracted from the Bitcoin mainnet blockchain with a discussion of the implications of findings from the emulation setup.
Literature:
[1] JoinMarket design, https://github.com/JoinMarket-Org/JoinMarket-Docs/blob/master/High-level-design.md
[2] K. Atlas, CoinJoin Sudoku, https://github.com/ARLM-Attic/coinjoin-sudoku
[3] JoinMarket client software, https://github.com/JoinMarket-Org/joinmarket-clientserver
17. 12. 2025 06:48, doc. RNDr. Petr Švenda, Ph.D., učo 4085
Přílohy
Práce na příbuzné téma
Seznam prací, které mají shodná klíčová slova.
-
CoinJoin protocols and implementations analysis
Mgr. Denis Varga -
Simulation-based analysis of Whirlpool CoinJoin protocol
Mgr. Dominik Hluštík -
BlockSci-based methods for Bitcoin on-chain analysis with focus on CoinJoin
Mgr. Stanislav Boboň -
Ethereum: encryption and deanonymization
Mgr. Andrej Hulina -
Technické a etické aspekty onion routingu
Bc. Eva Johana Šteinigerová -
Operating systems for privacy and anonymity: a survey
Mgr. Andrej Hulina -
Vývoj elektronických plateb
Ing. Mgr. Lucia Moťková, učo 257119 -
Význam soukromí pro mladé aktivní YouTubery a YouTuberky
Mgr. Lukáš Slavík, učo 414778




