Unnecessary Input Heuristics and PayJoin Transactions

Unnecessary Input Heuristics and PayJoin Transactions

Abstract

Over the years, several privacy attacks targeted at UTXO-based cryptocurrencies such as Bitcoin have been proposed. This has led to an arms race between increasingly sophisticated analysis approaches and a continuous stream of proposals that seek to counter such attacks against users' privacy. Recently, PayJoin was presented as a new technique for mitigating one of the most prominent heuristics, namely common input ownership. This heuristic assumes that the inputs of a transaction, and thus the associated addresses, belong to the same entity. However, a problem with PayJoin is that implementations can accidentally reveal such transactions if the corresponding inputs from involved parties are not chosen carefully. Specifically, if a transaction is formed in a way such that it contains seemingly unnecessary inputs, it can be identified through so-called unnecessary input heuristic (UIH). What is not yet clear is the impact of naive coin selection algorithms within PayJoin implementations that may flag such transactions as PayJoin. This paper investigates the resemblance of PayJoin transactions to ordinary payment transactions by examining the significance of the unnecessary input heuristic in transactions with more than one input and exactly two outputs which is the common template of recent PayJoin transactions.

Grafik Top
Authors
  • Ghesmati, Simin
  • Kern, Andreas
  • Judmayer, Aljosha
  • Stifter, Nicholas
  • Weippl, Edgar
Grafik Top
Shortfacts
Category
Paper in Conference Proceedings or in Workshop Proceedings (Paper)
Event Title
HCI International 2021 - Posters
Divisions
Security and Privacy
Subjects
Computersicherheit
Angewandte Informatik
Event Location
Virtual Event
Event Type
Conference
Event Dates
24-29 July 2021
Publisher
Springer International Publishing
Page Range
pp. 416-424
Date
2021
Export
Grafik Top