Centralization of XMR market and tracking every transaction : Monero | Torhoo darknet markets

Honestly, I find it ironic that you criticize liquidity providers when, in reality, even the worst ones are still safer than a blockchain service that logs all your swaps on-chain. The thing is, those centralized swap services might not keep backend logs forever, but when a haveno or retoswap transaction is recorded unencrypted on the blockchain, it’s permanent and accessible to anyone. (it cannot be deleted easily) That’s pretty terrible!

And let’s not forget, you wouldn’t even be able to use your own liquidity without those liquidity providers you’re now trashing. It’s obvious you’ve made enough fees from your 81 swaps and now suddenly call them honeypots. Are you seriously implying that your own service used to be a honeypot? Since you relied on those liquidity providers yourself, you’re essentially admitting you were complicit all along.

Hey, first off, I appreciate that you are allowing free speech and open discussion without censorship, especially when it comes to harm reduction. That is really important.

That said, I am a bit confused why Woodser or Retoswap have not posted any warnings on their official websites since the paper came out two months ago (back in May 12). Seems kinda shady and not very transparent, especially since they promote their platform as privacy-focused.

Retoswap transaction details are not really secure because they can be easily deobfuscated, which means Chainalysis (running malicious monero nodes) could perform even more accurate timing attacks. As for haveno.markets, their timestamp obfuscation (just a 0-24h window) and the small amount variation (+/- 5%) are pretty much pointless since they use the same high fee for BTC/XMR and broadcast the trade completion right away on their P2P network (see diagram on page 11 of the PDF). Plus, the exchange rate stays accurate, so someone could basically extract all Bitcoin transactions.

Quote from the paper on page 11:
Haveno by default uses the same high fee for both transactions, obfuscates the reported trade amount, but broadcasts the completion of the trade immediately via the P2P network.
during the obfuscation the exchange rate stays accurate. Therefore, by reversing the heuristic, we can extract every Bitcoin transaction that fits into the range of the obfuscation time window. As the Haveno interface allows the XMR to include a decimal number with a maximum of four digits after the point the number of potential Bitcoin transactions is already greatly reduced.
TradeLogger: A second obfuscation in the trade statistics happens on the trade timestamp. The timestamp is shifted by some time between zero and 24 hours. However, the Haveno application immediately broadcasts the trade to the statistics once the trade is successfully completed. There might be delays in the network which unintentionally obfuscate the timestamp but typically, this notification in the network gives us the time when a trade has been completed.
Combined with our trade protocol, this gives us roughly the timestamp of the XMR spend transaction, the payout. Therefore, we can narrow down external transactions from a 24 hours window to the time frame we get of the observed on-chain pattern.

4.2 Results
To test our findings, we logged Haveno trades for two weeks and executed five test trades within the observation period. For all five transactions, we successfully identified all XMR transactions. Furthermore, our analysis correctly isolated a subset of BTC transactions including the real BTC payment transaction.

Quote from woodser (dev of Haveno):

thinking to address this paper, increasing trade statistic randomization to +-10%, and adding a random delay to when trade stats are published. using higher fees to discern trades is already addressed

Do you have an official link to the woodser reponse? Is there an official issue discussion on github?

You should not trust coinswap services to not disclose to anyone.

I believe trusting one person or admin with my transaction details is better than leaving them on-chain on a public node network for anyone to access.

That's not something you can fix except finding another system for escrow (rewrite most of the trade logic)) or having more independent arbitrators to prevent being the one attributed to the same trade.

Independent arbiters do not matter at all, since the network operator will ban all human arbiters and replace them with arbiter bots before they carry out the exit scam attack. There is no doubt that centralized noKYC swappers like exch.cx have provided more privacy since they never publicly shared the latest on-chain trades unencrypted, in plain text on a p2p network.

There is still no official warning (on haveno.exchange or retoswap.com) that transaction details can be easily deobfuscated by anyone? That is a serious transparency gap. Anyone can track these transactions (no need to even run malicious nodes like Chainalysis) and even worse, if Chainalysis can already log IP addresses from deposits made into haveno, they can still follow transactions eventough haveno is routing them with tor, simply because they can deobfuscate all crypto transactions on haveno.markets. So, using Tor for routing on haveno/retoswap does not really help. It is a huge privacy flaw, and honestly, it is unacceptable for a platform that claims to be privacy-focused.

Why obfuscation is useless?

- during the obfuscation the retoswap exchange rate stays accurate
- retoswap by default uses the same high fee for both transactions
- retoswap broadcasts the completion of the trade immediately via the haveno P2P network (see diagram in pdf on page 11)
- the XMR amount with a decimal number of 4 digits is shared on haveno.markets