pull down to refresh

DoS in MimbleWimble Blockchains: "..the adversary can prevent over 45% of all transactions from ending up in the blockchain"arxiv.org/abs/2112.13009
42 sats \ 2 comments \ @benthecarman 24 Feb 2022 bitcoin
write
preview
related posts
1 sat \ 0 replies \ @k00b 25 Feb 2022
The critical vulnerability is here
To improve content privacy, MimbleWimble allows for the aggregation of transactions. However, the adversary can exploit this feature to launch a denial of service attack. Among different aggregations that have a transaction in common, at most one can end up in the blockchain. Therefore, by aggregating different incoming transactions with a newly generated transaction, the adversary can perform a denial of service attack on the incoming transactions.
Basically, tx aggregations are malleable and an adversary can create malicious aggregations. It kind of underscores why it's important to disallow relaying nodes from from being able to detrimentally maleate the packages/txs it's relaying. It also highlights how important the mempool is.
reply
0 sats \ 0 replies \ @cozy 25 Feb 2022
Fantastic link, thanks. I've been really curious about MimbleWimble since it came out, good to see some real adversarial research. Thanks again.
reply