CISPA
Browse
2023-321.pdf (1.02 MB)

A Holistic Security Analysis of Monero Transactions.

Download (1.02 MB)
journal contribution
posted on 2024-02-19, 09:35 authored by Cas CremersCas Cremers, Julian LossJulian Loss, Benedikt WagnerBenedikt Wagner
Monero is a popular cryptocurrency with strong privacy guarantees for users' transactions. At the heart of Monero's privacy claims lies a complex transaction system called RingCT, which combines several building blocks such as linkable ring signatures, homomorphic commitments, and range proofs, in a unique fashion. In this work, we provide the first rigorous security analysis for RingCT (as given in Zero to Monero, v2.0.0, 2020) in its entirety. This is in contrast to prior works that provided security arguments for only parts of RingCT. To this end, we provide the first holistic security model for Monero's RingCT. In our model, we then prove the security of RingCT. Our framework is modular in that it allows to view RingCT as a combination of various different sub-protocols. This has the benefit that these components can be easily updated in future versions of RingCT with only minor modifications to our analysis. At a technical level, we introduce several new techniques that we believe to be of independent interest. First, we need to make several subtle modifications to the syntax and security properties of existing building blocks (e.g., linkable ring signatures), which result from the unusual way in which they are combined within RingCT. Then, we show how these building blocks can be combined in order to argue security of the top level transaction scheme. As a technical highlight of our proof, we show that our security goals can be mapped to a suitable graph problem. This allows us to take advantage of ideas from the theory of network flows in our analysis.

History

Primary Research Area

  • Algorithmic Foundations and Cryptography

Journal

Cryptology ePrint Archive

Volume

2023

Page Range

321-321

Sub Type

  • Article

BibTeX

@article{Cremers:Loss:Wagner:2023, title = "A Holistic Security Analysis of Monero Transactions.", author = "Cremers, Cas" AND "Loss, Julian" AND "Wagner, Benedikt", year = 2023, month = 3, journal = "Cryptology ePrint Archive", pages = "321--321" }

Usage metrics

    Categories

    No categories selected

    Licence

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC