Deanonymizing Ethereum Validators: The P2P Network Has a Privacy Issue
read the original abstract
Many blockchain networks aim to preserve the anonymity of validators in the peer-to-peer (P2P) network, ensuring that no adversary can link a validator's identifier to the IP address of a peer due to associated privacy and security concerns. This work demonstrates that the Ethereum P2P network does not offer this anonymity. We present a methodology that enables any node in the network to identify validators hosted on connected peers and empirically verify the feasibility of our proposed method. Using data collected from four nodes over three days, we locate more than 15% of Ethereum validators in the P2P network. The insights gained from our deanonymization technique provide valuable information on the distribution of validators across peers, their geographic locations, and hosting organizations. We further discuss the implications and risks associated with the lack of anonymity in the P2P network and propose methods to help validators protect their privacy. The Ethereum Foundation has awarded us a bug bounty, acknowledging the impact of our results.
This paper has not been read by Pith yet.
Forward citations
Cited by 3 Pith papers
-
Your Loss is My Gain: Low Stake Attacks on Liquid Staking Pools
A low-stake adversary can degrade a liquid staking pool's performance via consensus manipulation and profit from the resulting drop in its LST value through application-layer financial positions.
-
Routing Attacks in Ethereum PoS: A Systematic Exploration
A new framework to locate Ethereum validators enables demonstration of practical routing attacks that can cause hundreds of ETH in losses or boost MEV by 44% in the PoS consensus.
-
Wonderboom -- Efficient, and Censorship-Resilient Signature Aggregation for Million Scale Consensus
Wonderboom aggregates signatures from over two million validators in one Ethereum slot with stronger security guarantees against stake-shifting attacks than the existing protocol.
discussion (0)
Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.