English

Cross-Layer Deanonymization Methods in the Lightning Protocol

Cryptography and Security 2021-02-11 v3

Abstract

Bitcoin (BTC) pseudonyms (layer 1) can effectively be deanonymized using heuristic clustering techniques. However, while performing transactions off-chain (layer 2) in the Lightning Network (LN) seems to enhance privacy, a systematic analysis of the anonymity and privacy leakages due to the interaction between the two layers is missing. We present clustering heuristics that group BTC addresses, based on their interaction with the LN, as well as LN nodes, based on shared naming and hosting information. We also present linking heuristics that link 45.97% of all LN nodes to 29.61% BTC addresses interacting with the LN. These links allow us to attribute information (e.g., aliases, IP addresses) to 21.19% of the BTC addresses contributing to their deanonymization. Further, these deanonymization results suggest that the security and privacy of LN payments are weaker than commonly believed, with LN users being at the mercy of as few as five actors that control 36 nodes and over 33% of the total capacity. Overall, this is the first paper to present a method for linking LN nodes with BTC addresses across layers and to discuss privacy and security implications.

Keywords

Cite

@article{arxiv.2007.00764,
  title  = {Cross-Layer Deanonymization Methods in the Lightning Protocol},
  author = {Matteo Romiti and Friedhelm Victor and Pedro Moreno-Sanchez and Peter Sebastian Nordholt and Bernhard Haslhofer and Matteo Maffei},
  journal= {arXiv preprint arXiv:2007.00764},
  year   = {2021}
}

Comments

30 pages, 9 figures, Financial Cryptography and Data Security 2021 https://fc21.ifca.ai/

R2 v1 2026-06-23T16:47:02.277Z