Topic: Consolidating UTXOs and maintaining privacy (Read 418 times)

No, that's something a bit more complicated. This is just incrementing the "account" level of the derivation path as defined in BIP44.

It does. To ensure that all your public keys are completely different and you don't reuse any of them across both wallets, then you would need to perform whatever action you are taking to all three of your seed phrases. So you would either need to add a passphrase to each seed phrase (it can be the same passphrase for all three if you wanted), or generate at a new derivation path for each seed phrase, and then create a new 2-of-3 multi-sig from those three new wallets.

This is a very good point. It's BIP85, right? But does it work with multisig?

Well, as long as you have considered the risks and taken steps to mitigate against them, which it sounds like you have.

Just a quick point though - if the stumbling block is multiple wallets or multiple backups, then you can always just use the same seed phrase with a passphrase like "KYC" to create a new wallet which you will know is for KYCed coins only. Alternatively, you don't even need to do that and can use the same seed phrase and just increment the account number of your derivation path. So your main wallet would be at m/84'/0'/0', and your KYCed wallet would be at m/84'/0'/1'.

Planning ahead can reduce your transaction fees later on.

I was thinking of something like this:

I have thought about all of that. But in the end, I don't feel like being able to take care of multiple wallets and multiple backups. I prefer simplicity. The KYCed coins are consolidated into a small amount of UTXOs, all of ~same size. It will just help me remember which ones are KYCed. Additionally, I have kept a note that the first N coins are KYCed. Finally, I don't plan to buy KYC coins anymore, so I "know" that the KYC coins are only in between the first transactions of my wallet.

I would agree with Charles-Tim here. If it is vitally important to you to not mix your KYCed and non-KYCed coins, then storing them in the same wallet and relying on the wallet freezing certain UTXOs is pretty risky. What if a simple bug in the wallet means it freezes the wrong ones? What if you lose your wallet file, have to recover from your seed phrase, and lose all your UTXO labels and which ones are frozen? What if you simply misclick and unfreeze a UTXO without realizing it? And what if you accidentally sync your wallet via a third party server, therefore revealing that all your KYCed and non-KYCed are owned by the same wallet?

I also have various subsets of coins which I would not want to mingle with each other since each subset comes from a separate source, will be spent in a separate manner, has a different anonymity set, and so on, but I keep each subset in its own wallet.

Yeap! If you read my initial post, I have said that my main savings wallet is multisig. And then I said I was thinking of creating one more wallet for KYC and one for non KYC. But, I finally decided to stick to a Multisig and follow the "freeze" option to not blend my KYCed UTXOs with the non-KYC. So, MultiSig is totally irrelevant to the privacy question, but I just said it to add more details in regards to my previous posts.

edit: If I didn't mention it anywhere in the thread, then sorry for the misunderstanding.

Sparrow and Spectre also have coin control but I have only used it on Electrum.

Why multisig wallet? It has nothing to do with this. Instead of freezing the KYCed UTXO, I will prefer to transfer only the KYCed UTXO to a newly created wallet on another device entirely and name it KYCed UTXO which will make me not to forget about it. I will also transfer the remaining non KYC to another wallet which I will name non KYCed, using different VPN address for.

You can use multisig to increase your security, not privacy.

Yes but for the time being it only has incoming transactions (apart from the first ones which I used for testing purposes).


Sure, I just didn't know about it.

Note that multisig increases transaction fees, which is especially important when you're dealing with dust inputs.

Many wallets can do that, I use it in Electrum and Bitcoin Core.

After a lot of thought, I decided to use a feature that Sparrow offers, in order to make my life simpler.

I have only one MultiSig (2-of-3) wallet.

My initial KYCed UTXOs are now frozen (this is the feature). So I need to unfreeze them if I want to use them. All the other UTXOs will never be combined with the KYCed ones.

THANKS!

No, not at all.

You can close down Sparrow at any point during the process, and it will pick up where it left off whenever you open it again. For example, once you select coins in the "Deposit" account to coinjoin and have broadcast the initial Tx0, you can shut down Sparrow while you wait for it to confirm if you want. When you come back, you'll have your outputs in the "Premix" account ready to be coinjoined. These will automatically be enrolled in to different coinjoins over the next few minutes, depending on the available liquidity from other users. If you shut down Sparrow, then any which have not yet had that first coinjoin will simply be enrolled when you next open it. Once an output has had its first coinjoin, it will move to the "Postmix"  account. At this point it will be enrolled in to free remixes whenever Sparrow is open, as I explained above.

There is even a button at the bottom of the Whirlpool accounts to start and stop the process as you please, so you can have Sparrow open but not mixing if you want.

Being enrolled in to free remixes is essentially a random lottery between all the liquidity in the pool. Each Samourai or Sparrow wallet will have a maximum of one output of each size chosen at random be eligible for a free remix (so you will never remix with yourself). The frequency at which free remixes happen is obviously dependent on the frequency of new liquidity entering the pool. Given all this, then the higher uptime you have on your wallet then the faster you will get free remixes, but as explained, you are free to shutdown Sparrow, even for months at a time, and then open it back up again and continue where you left off.

Oups. Great...


I thought I had to leave my PC open all day. I mean I thought that once I close Sparrow and re-open it, it would have to restart all over again.

For what it's worth: at one point in 2017, 100k sats wasn't enough to pay for the transaction fee. It really depends on circumstances. As an example: this transaction with 33 inputs of 100k sats each resulted in only 800k sats being sent, the rest went to miners.

Here's a link to get you started: https://sparrowwallet.com/docs/mixing-whirlpool.html#mixing-with-sparrow-terminal

Note that you don't have to leave Sparrow open all the time when your coins are in Whirlpool. While Sparrow is open, your coins are available for free remixes. When you shut down Sparrow, they are not. When you open Sparrow again, it will pick right back up from where you were and they are once again made available for free remixes.

If you have a separate device already running your node, then loading Sparrow on to that would be ideal because it will be connected 24/7. But if you can't do that, then simply having Sparrow open whenever you are using your computer will still get you free remixes, just not as quickly as if it was running 24/7.

And of course make sure you are connecting to the coordinator through Tor!

I don't want to sell, I don't really want to trust an exchange at this point.

Regarding Sparrow whirlpool, I heard a podcast lately where Craig Raw (the main dev) said that Sparrow can run without GUI, as a service in the background and stay permanently open. I will check this, since leaving my computer and the application open for such a big time period is inconvenient. If I could run whirlpool as a terminal service it would be a great idea.



Yes, exactly!


I get that, but I can't really find an "optimal" UTXO size... Some say the larger the better. Some say something around 100k sats is the best... Anyway

If you combine everything into one large UTXO of say 0.1BTC or something like that then either you're going to have to sacrifice privacy as all funds will be in one address at any given time, making tracing easier, or you're going to have to make a ton of change addresses inside the transaction which will cost a premium in transaction fees and kinda goes against the point of consolidating in the first place.

You'll want to spend those coins at some point though, no? If you are using Sparrow anyway, then why not just fire those coins in to Whirlpool? You can ignore them for months or even years if you want and get 100s of free remixes. Good luck to anyone trying to trace them through that. Or as I mentioned above, if they are going to stay untouched then just sell them for fiat and then use that fiat somewhere else to buy back non-KYCed coins.

The most important thing for you going forward then will be to ensure permanent separation of any unmixed KYC coins and your non-KYC coins, and make sure never to send coins directly between your two wallets.

No, I only use Sparrow which is connected to my own node. And no, I will not move coins between my wallets. Wallet A (KYC) will stay untouched (no incoming - no outgoing txs).

Thanks though, cause these things used to feel obscure, but thanks to this forum, I have learnt a lot.


Super cool! Haha

Thanks. I have done multiple mistakes in the past. I just noticed I had reused an address 13 times. Pretty cool