[bisq-network/bisq] High privacy problem (Discussion #6158)

[Ersuin]

Visible onion addresses are a big privacy issue: as long as onion address-based tags can be set or simply viewed, different offers taken or made by users can be interconnected. For example, if a user wants to exchange F2F without giving any personal data, an attacker could take that offer and then analyze all the new offers that this user could create (this is very easy if he only has to put a label). In this way, if the user creates a SEPA order, the attacker could have the face, first name, last name, the bank and the meeting city. The same happens if a bizum offer is created.
This destroys all the privacy of a regular Bisq user, because over time, a malicious attacker could interrelate the different offers that a user takes and thus create a profile with all his information.

My idea is to keep the possibility of tagging a payment account, but nothing further than that. This label will not be maintained in any case between new payment accounts, nor will the onion address be displayed. Ideally, no one could relate that 2 payment accounts belong to the same user.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/bisq-network/bisq/discussions/6158
You are receiving this because you are subscribed to this thread.

Message ID: <bisq-network/bisq/repo-discussions/6158 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bisq.network/pipermail/bisq-github/attachments/20220424/b0d2b230/attachment.htm>