Skip to main content
SpringerLink
Log in

Longitudinal Analysis of Misuse of Bitcoin

  • Conference paper
  • First Online:
Applied Cryptography and Network Security (ACNS 2019)

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 11464))

Included in the following conference series:

Abstract

We conducted a longitudinal study to analyze the misuse of Bitcoin. We first investigated usage characteristics of Bitcoin by analyzing how many addresses each address transacts with (from January 2009 to May 2018). To obtain a quantitative estimate of the malicious activity that Bitcoin is associated with, we collected over 2.3 million candidate Bitcoin addresses, harvested from the dark web between June 2016 and December 2017. The Bitcoin addresses found on the dark web were labeled with tags that classified the activities associated with the onions that these addresses were collected from. The tags covered a wide range of activities, from suspicious to outright malicious or illegal. Of these addresses, only 47,697 have tags we consider indicative of suspicious or malicious activities.

We saw a clear decline in the monthly number of Bitcoin addresses seen on the dark web in the periods coinciding with takedowns of known dark web markets. We also found interesting behavior that distinguishes the Bitcoin addresses collected from the dark web when compared to activity of a random address on the Bitcoin blockchain. For example, we found that Bitcoin addresses used on the dark web are more likely to be involved in mixing transactions. To identify mixing transactions, we developed a new heuristic that extends previously known ones. We found that Bitcoin addresses found on the dark web are significantly more active, they engage in transactions with 20 times the neighbors and 4 times the Bitcoin amounts when compared to random addresses. We also found that just 2,828 Bitcoin addresses are responsible for 99% of the Bitcoin value used on the dark web.

This material is based upon work supported by the National Science Foundation (NSF) under Grant ACI-1547467. Any opinions, findings, and conclusions or recommendations expressed in this material are those of the authors and do not necessarily reflect the views of NSF.

A. Matton—Research performed while visiting SRI.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 69.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 89.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Androulaki, E., Karame, G.O., Roeschlin, M., Scherer, T., Capkun, S.: Evaluating user privacy in Bitcoin. In: Sadeghi, A.-R. (ed.) FC 2013. LNCS, vol. 7859, pp. 34–51. Springer, Heidelberg (2013). https://doi.org/10.1007/978-3-642-39884-1_4

    Chapter  Google Scholar 

  2. Blockchain.info Bitcoin explorer. https://www.blockchain.com/explorer

  3. Blockchain Intelligence Group. https://blockchaingroup.io/

  4. Bohr, J., Bashir, M.: Who uses Bitcoin? An exploration of the Bitcoin community. In: 12th International Conference on Privacy, Security, and Trust (2014)

    Google Scholar 

  5. Breitner, J., Heninger, N.: Biased nonce sense: lattice attacks against weak ECDSA signatures in cryptocurrencies. In: 23rd International Conference on Financial Cryptography and Data Security (2019)

    Google Scholar 

  6. Version 1 Bitcoin Addresses. https://en.bitcoin.it/wiki/Technical_background_of_version_1_Bitcoin_addresses

  7. Bitcoin forum: Validating Bitcoin addresses. https://bitcointalk.org/index.php?topic=1026.0

  8. Largest bitcoin holdings. https://bitinfocharts.com/top-100-richest-bitcoin-addresses.html

  9. Chainanalysis Platform. https://www.chainalysis.com/

  10. CipherTrace Platform. https://ciphertrace.com/

  11. Elliptic Platform. https://www.elliptic.co/

  12. Ghosh, S., Das, A., Porras, P., Yegneswaran, V., Gehani, A.: Automated categorization of onion sites for analyzing the darkweb ecosystem. In: 23rd ACM International Conference on Knowledge Discovery and Data Mining (2017)

    Google Scholar 

  13. Goldfeder, S., Kalodner, H., Reisman, D., Narayanan, A.: When the cookie meets the blockchain: privacy risks of web payments via cryptocurrencies. In: 18th Privacy Enhancing Technologies Symposium (2018)

    Google Scholar 

  14. Greenberg, A.: Global police spring a trap on thousands of dark web users. Wired, https://www.wired.com/story/alphabay-hansa-takedown-dark-web-trap/. Accessed 20 July 2019

  15. Lee, S., et al.: Cybercriminal minds: an investigative study of cryptocurrency abuses in the Dark Web. In: 26th Annual Network and Distributed System Security Symposium (NDSS) (2019)

    Google Scholar 

  16. Meiklejohn, S., et al.: A fistful of bitcoins: characterizing payments among men with no names. In: 13th ACM Internet Measurement Conference (IMC) (2013)

    Google Scholar 

  17. Miller, A., Moser, M., Lee, K., Narayanan, A.: An empirical analysis of linkability in the Monero blockchain. arXiv:1704.04299 (2017)

  18. Monero. https://getmonero.org/

  19. Neudecker, T., Hartenstein, H.: Could network information facilitate address clustering in Bitcoin? In: Brenner, M., et al. (eds.) FC 2017. LNCS, vol. 10323, pp. 155–169. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-70278-0_9

    Chapter  Google Scholar 

  20. Ranshous, S., et al.: Exchange pattern mining in the Bitcoin transaction directed hypergraph. In: Brenner, M., et al. (eds.) FC 2017. LNCS, vol. 10323, pp. 248–263. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-70278-0_16

    Chapter  Google Scholar 

  21. Ron, D., Shamir, A.: Quantitative analysis of the full Bitcoin transaction graph. In: Sadeghi, A.-R. (ed.) FC 2013. LNCS, vol. 7859, pp. 6–24. Springer, Heidelberg (2013). https://doi.org/10.1007/978-3-642-39884-1_2

    Chapter  Google Scholar 

  22. Ruffing, T., Moreno-Sanchez, P., Kate, A.: CoinShuffle: practical decentralized coin mixing for Bitcoin. In: Kutyłowski, M., Vaidya, J. (eds.) ESORICS 2014. LNCS, vol. 8713, pp. 345–364. Springer, Cham (2014). https://doi.org/10.1007/978-3-319-11212-1_20

    Chapter  Google Scholar 

  23. Spagnuolo, M., Maggi, F., Zanero, S.: BitIodine: extracting intelligence from the bitcoin network. In: Christin, N., Safavi-Naini, R. (eds.) FC 2014. LNCS, vol. 8437, pp. 457–468. Springer, Heidelberg (2014). https://doi.org/10.1007/978-3-662-45472-5_29

    Chapter  Google Scholar 

  24. Zcash: Privacy-protecting Digital Currency. https://z.cash/

Download references

Author information

Authors and Affiliations

  1. SRI International, Menlo Park, USA

    Karim Eldefrawy & Ashish Gehani

  2. Stanford University, Stanford, USA

    Alexandre Matton

Authors
  1. Karim Eldefrawy
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ashish Gehani
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Alexandre Matton
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Karim Eldefrawy .

Editor information

Editors and Affiliations

  1. Singapore Management University, Singapore, Singapore

    Robert H. Deng

  2. Universidad del Rosario, Bogota, Colombia

    Valérie Gauthier-Umaña

  3. Cyxtera Technologies, Bogota, Colombia

    Martín Ochoa

  4. Columbia University, New York, NY, USA

    Moti Yung

Rights and permissions

Reprints and permissions

Copyright information

© 2019 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Eldefrawy, K., Gehani, A., Matton, A. (2019). Longitudinal Analysis of Misuse of Bitcoin. In: Deng, R., Gauthier-Umaña, V., Ochoa, M., Yung, M. (eds) Applied Cryptography and Network Security. ACNS 2019. Lecture Notes in Computer Science(), vol 11464. Springer, Cham. https://doi.org/10.1007/978-3-030-21568-2_13

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-21568-2_13

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-21567-5

  • Online ISBN: 978-3-030-21568-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation