Comprehensive Formal Modeling and Automatic Vulnerability Detection for a Bitcoin-Compatible Mixing Protocol

Abstract

Blindcoin applies a Bitcoin-compatible mixing protocol with a blind signature scheme to improve the design of the popular Mixcoin. Given the openness of Bitcoin and the decentralization of the P2P network, it is imperative to formally analyze whether the malicious can break the security goals of the Blindcoin protocol. This work proposes a symbolic model for Blindcoin and conducts comprehensive formal verification. Fine-grained security goals of Blindcoin are formalized and subsequently encoded as model lemmas. However, it is challenging to verify the Blindcoin in a formal and automatic way. To tackle the challenges, we propose a tool-friendly symbolic model that can capture the semantics of multi-layers of Bitcoin and the features of Blindcoin. Our formal verification covers real-world security scenarios and discovers the Blindcoin vulnerabilities without human interaction. Furthermore, we offer several suggestions to fix the detected Blindcoin vulnerabilities and discuss the generalization of the proposed model.