Oddbean new post about | logout
Brunswick | 24 days ago (raw) | root | parent | reply | flag 
 Its all with lightning
🌊 | 24 days ago (raw) | root | parent | reply | flag +2 
 May not it rather be titled LNproblems, or to include Tumblers and DLCs, L2problems instead?

Btw nostr:nprofile1qqszrqlfgavys8g0zf8mmy79dn92ghn723wwawx49py0nqjn7jtmjagpz4mhxue69uhkummnw3ezummcw3ezuer9wchszyrhwden5te0dehhxarj9ekk7mf0qy88wumn8ghj7mn0wvhxcmmv9uynmh4h did you know the first one? May that be considered analog to xmr poised txs?
Super Testnet | 23 days ago (raw) | root | parent | reply | flag 
 I am aware of the first problem and I note that Rene Pickhardt tried to perform this attack in 2019 with little success. He tried to take a snapshot of the balances of all routing nodes on testnet, and while he did manage to do it, it took him over 9 hours to do so. It would be an even harder task on mainnet due to the larger number of routing nodes.

Since lightning has high volume, I think you wouldn't get good days about the history of transfers on LN unless you could get snapshots of routing node balances every few seconds, rather than once per day or so.

Nonetheless, Rene did find that while it takes a long time to probe the balances of*every node,* each *individual* node only takes about 20 seconds to probe. So if you looked your attack to a single largr routing node you could probably get reasonably good data about what traffic it routes across the network.

Also, the Blinded Paths upgrade mitigates this attack. Part of the plan for Blinded Paths is to remove the distinct error messages revealed by nodes depending on whether the payment made it to its destination or had a routing failure part of the way through. With Blinded Paths, the same error message is displayed for every payment failure, which means Balance Probing as performed by Rene won't work anymore. His technique involved sending multiple fake payments through a routing node and logging whether they failed due to the routing node not having enough capacity or the recipient being unable to finalize the payment. If the latter, it meant the routing node *did* have enough capacity to forward that payment, so Rene would try again and again with larger and larger fake payments until the routing node reported an inability to forward the money, then record the prior amount of the fake payment as their latest balance. This method relies on does not work if all payment failures look the same, so the Blinded Paths upgrade should fix this.
🌊 | 23 days ago (raw) | root | parent | reply | flag 
 Thank you.

1. Is also possible to snapshot individual wallet balances, addresses, transactions?

2. So not an unsolved problem anymore? When Blind Paths then?
Super Testnet | 23 days ago (raw) | root | parent | reply | flag 
 > Is also possible to snapshot individual wallet balances, addresses, transactions?

Unless the wallet is a routing node I don't think this is feasible for third parties to do. But all wallets are connected to at least one routing node, and each of those routing nodes know the balance of your channel with them. Some, like Binance's routing node, also proactively state in their privacy policy that they log this data and share it with law enforcement, including info about any transactions that flow through their node. So be careful who you open channels with.

> So not an unsolved problem anymore?

I'm not sure. The solution is known but I am not sure node devs will upgrade to versions that don't support payment probing. It's a popular feature with native commands for it in LND and Eclair, and they would have to disable that popular feature that many wallets rely on to assess the likelihood of a successful payment before attempting one. It seems unlikely that LND and Eclair will upgrade to a version that disables this. Maybe a new, privacy focused lightning network subnet is what's needed, where participating nodes all announce that they won't allow payment probing.