The major difference between whirlpool and wasabi is that wasabi is not zerolink and whirlpool is 100% entropy, so many of the issues with wasabi's mix composition do not apply to whirlpool.
Wasabi made little effort to stop a user from spending the unmixed change with their mixed outputs. In fact it encouraged this with a "select all" button that spends the entirety of the wallet balance, mixed and unmixed in the same tx, which undoes all the mixing. Unmixed change can also reduce user anonymity sets (toxic recall attack) and de-anonymize users without any user feedback.
Dealing with the different mixed TXO amounts is a nightmare, which is why wasabi purposefully made their coin selection deterministic (predictable), which negates the effects of remixing.
Wasabi also has an address reuse problem. Which comes in various flavors, my favorite of which is the kind where a mixed TXO and unmixed TXO are paid to the same address, which automatically de-anonymizes the user. See YouTube video for explainer.
https://youtube.com/watch?v=alcLdBsoDDg
De-anonymizing users with the above issues does not require "compromised XPUBs", which seems to be the only gripe by The Kliq against Samourai.
Whirlpool, being 100% entropy, does not have the problems discussed above.
Kortik š¦š² /
npub15lā¦z2796
2023-03-04 16:48:59
in reply to nevent1qā¦4vgw
Author Public Key
npub15lmjekxgcl8337n0gnqnrcqatwyv9arhywjkvfh0x0tfjrn2nu2sgz2796Published at
2023-03-04 16:48:59Event JSON
{
"id": "0707d3537ee2bda7c388cd38debbb851b4229d0c30a81cbcdc8c0adddcad310e",
"pubkey": "a7f72cd8c8c7cf18fa6f44c131e01d5b88c2f47723a56626ef33d6990e6a9f15",
"created_at": 1677948539,
"kind": 1,
"tags": [
[
"e",
"3d4b1353a805459d03f76f3dd876bef403a48d7351db592ef74ae3b63aba2673"
],
[
"e",
"e4d32a929d0dc8abf6fd96d1f18a0e5b78d2f4cebfb44cc655667fb321a79c46"
],
[
"p",
"4857c8f167bd474fae0e7b54898d0c187ea9f1adb7ad02a9ff6a86d29abcb7ab"
],
[
"p",
"0b9de7c5e82d26c285690a13cd164149a5a0ee3131b9912e1c0bb36c66b471ab"
],
[
"p",
"0b9de7c5e82d26c285690a13cd164149a5a0ee3131b9912e1c0bb36c66b471ab"
]
],
"content": "The major difference between whirlpool and wasabi is that wasabi is not zerolink and whirlpool is 100% entropy, so many of the issues with wasabi's mix composition do not apply to whirlpool.\n\nWasabi made little effort to stop a user from spending the unmixed change with their mixed outputs. In fact it encouraged this with a \"select all\" button that spends the entirety of the wallet balance, mixed and unmixed in the same tx, which undoes all the mixing. Unmixed change can also reduce user anonymity sets (toxic recall attack) and de-anonymize users without any user feedback.\n\nDealing with the different mixed TXO amounts is a nightmare, which is why wasabi purposefully made their coin selection deterministic (predictable), which negates the effects of remixing.\n\nWasabi also has an address reuse problem. Which comes in various flavors, my favorite of which is the kind where a mixed TXO and unmixed TXO are paid to the same address, which automatically de-anonymizes the user. See YouTube video for explainer. \nhttps://youtube.com/watch?v=alcLdBsoDDg\n\nDe-anonymizing users with the above issues does not require \"compromised XPUBs\", which seems to be the only gripe by The Kliq against Samourai. \n\nWhirlpool, being 100% entropy, does not have the problems discussed above.",
"sig": "cf5ebd8c574587ded49865cb9bc90d640f8bedfc3cd857b3df4a8481bacd1ef059472552d1b4232e7d6dc12b29a4e6a2c249eca0147330d0d3c3f6980920f484"
}