Tag Archives: security

Silk Road 2.0 Launches, Government Authorities and Users React

Like this? Share it.TwitterFacebookGoogle+LinkedInReddittumblrbufferEmail

Silk Road is Reborn With Stronger Security Measures, Senate Responds Immediately

A so-called Silk Road 2.0 has been launched, just one month after the original Silk Road was seized and its operator, Ross William Ulbricht, was arrested. Silk Road was an anonymous online marketplace that mainly enabled the buying and selling of drugs for Bitcoin. Over 2 years, the marketplace generated $1.2 billion in transaction revenue.

Read: The Fall of Silk Road

“It is with great joy that I announce the next chapter of our journey. Silk Road has risen from the ashes, and is now ready and waiting for you all to return home,” wrote a user in a launch announcement on Reddit. “Over the last 4 weeks, we have implemented a complete security overhaul. This overhaul marks the dawn of a brand new era for hidden services.”

In response to the unearthing of a new Senator Tom Carper (D-Del.), Chairman of the Senate Homeland Security and Governmental Affairs Committee, released a statement on the launch of the Silk Road 2.0:

This new website – launched barely a month after Federal agents shut down the original Silk Road — underscores the inescapable reality that technology is dynamic and ever-evolving and that government policy needs to adapt accordingly. Rather than play ‘whack-a-mole’ with the latest website,  currency, or other method criminals are using in an effort to evade the law, we need to develop thoughtful, nimble and sensible federal policies that protect the public without stifling innovation and economic growth. Our committee intends to have that conversation – among others – at our hearing this month on virtual currency.

Chairman Carper and Dr. Coburn’s committee on Homeland Security and Governmental Affairs began a formal inquiry into virtual currencies in April 2013. In August 2013 Chairman Carper and Dr. Coburn wrote to the Departments of Treasury, Homeland Security, and Justice, as well as the Securities and Exchange Commission, Commodities Futures Trading Commission, and the Federal Reserve.

Here’s a screenshot of the homepage. Note the tongue-and-cheek use of the Federal seizure notice.

Silk Road 2.0 Homepage

Silk Road 2.0 uses the Tor protocol to provide anonymous access to the site. That’s why you see the .onion at the end of the URL.

Reaction from Users: Excitement and Caution

The reaction for users of the original Silk Road is best understood by reading Reddit threads on the topic.

Immediately after the demise of the original Silk Road, users on Reddit began discussing the development of a Silk Road 2.0, one that would be more protected from the pitfalls that caused the collapse of the original marketplace. Users discussed having stricter requirements around using Tor, 2-factor authentication, and Bitcoin laundering.

With the launch of Silk Road, some users are jubilant. “DPR is dead, long live DPR!” wrote one Reddit user. DPR refers to the Dread Pirate Roberts, the alias used by Ulbricht during his reign over the original Silk Road.

Other users are cautious. “Does anyone know if it tumbles coins?” asked one user in a forum. Tumbling coins refers to the process of laundering Bitcoin. Since every Bitcoin transaction is stored in a public ledger, you have to run Bitcoin through a series of wallets before cashing them out to distance yourself from the original transaction. “This is important. Bitcoins can be tracked,” replied one user. Another added, “Bitcoinfog. Don’t trust others to tumble for you.” Bitcoinfog is a Bitcoin laundering service that takes a 1-3% fee.

Some users went right to conspiracy theory, suggesting that the new site was a honeypot, or trap set by the federal authorities. Here was one elaborate idea:

My prediction – Ulbricht was offered a deal where if he cooperated, he’d get a reduced sentence. Some # of the former admins were ID’d and flipped as well. The new PGP key addition is to be able to more closely tie a specific person to an online account making for easier convictions.

They’ll let this run for 1-2yrs, logging and tracking everything, maybe making incidental arrests where they can get away with it, without letting on that the site is compromised. At the end of the run, they’ll coordinate a massive global arrest of everyone involved to prevent tipoffs, then we’ll see a big news story after the fact bragging about the operation and how they pulled it off.

Impact to Bitcoin

There was no noticeable negative impact to Bitcoin following this announcement. In fact, the price of Bitcoin continued to soar past $300 in all-time high this week.

But longer term, if Bitcoin is part and parcel to anonymous drug marketplaces and anti-government sentiment, the digital could come under further regulatory scrutiny.

Silk Road 2.0 Launch Announcement

In an extensive post, a user on Reddit announced the launch of Silk Road 2.0 with the title “We rise again” which we have syndicated here.

Dear Community

It is with great joy that I announce the next chapter of our journey. Silk Road has risen from the ashes, and is now ready and waiting for you all to return home: http://silkroad6ownowfk.onion

Welcome back to freedom.

Over the last 4 weeks, we have implemented a complete security overhaul. This overhaul marks the dawn of a brand new era for hidden services, and it would not have been possible without the patient support of this community. So for waiting patiently; for offering encouragement; for keeping the community spirit alive in Silk Road’s temporary absence; for all of this and more, each of you has my deepest and most sincere gratitude.

It took the FBI two and a half years to do what they did. Divide, conquer and eliminate was their strategy… but four weeks of temporary silence is all they got. And as our resilient community bounces back even stronger than ever before, never forget that they can only ever seize assets – they can never arrest our spirit, our ideas or our passion, unless we let them.

We will not let them.

Please enjoy the marketplace, but be aware – although the site is both functional and stable, we are still in the early phases of development. Despite us having worked through any major bugs that might prevent full-functionality or compromise security, you may notice minor bugs. Please bring these to our attention. More so, even though security has been our top priority over the last few weeks, we encourage you to continue reporting both theoretical and even proven exploits. You will be rewarded for doing so.

Please also be aware, that because we expect a large surge in Bitcoin deposits when we open up our transaction system, there may be delays with account withdrawals and deposits initially. These delays should become less as the marketplace settles, but at least for the earlier stages, please do not report coins as missing unless 12 hours or more have elapsed.

You might also notice that the re-launched marketplace lacks a number of features from the original marketplace – we will be working hard over the next few weeks to implement improvements, and we continue to study each and every post made in the Feature Requests forum. Your opinions matter to us, and we will not neglect the thoughts of the community.

We are proud to announce though, that our new security measures include emergency strategies to ensure that, in the event of Silk Road’s demise once more, no member will lose their coins. We have learned hard lessons from the unfortunate events of recent weeks, and the man hours that have gone into this new release are phenomenal. We look forward to helping Silk Road grow on the back of these lessons, and look forward to helping this community flourish even more beautifully than before.

We have already committed a large percentage of our revenues to good causes, charities, and organizations who support our cause or have similar interests. We are also contributing back to the Tor network with our relay fund.

But without a doubt, the re-launch of our beloved marketplace will create a ripple throughout the world’s various media channels, and not all of these channels will see our cause as positive. You don’t need telling that there are very powerful media outlets controlled by various world governments, who will seek to muddy our name and reputation. But it is up to us to embrace this newfound exposure in mainstream media, rather than hide from it – and for this reason, I have chosen to speak briefly with a number of journalists who I am confident will report this memorable day without the pull of governmental strings. I have also conducted an exclusive interview with Mashable. In light of the FBI’s recent ‘victory’, it would be impossible for Silk Road to stay off the radar – it is therefore our responsibility to make sure that our mark on the radar is the right one. So I would advise you all to prepare yourself for a spike in media attention, and to review your personal security measures to ensure your anonymity is protected.

We will be hiring staff to handle Silk Road’s marketing shortly – formal offers may be made to members who have already demonstrated their marketing prowess.

And it goes without saying that if you are in touch with anybody who may not be aware that Silk Road has risen once more, now is the time to spread the word. Open communication with your old suppliers and customers; let this wonderful news be taken to all corners of the Tor network and beyond.

Let us never forget this recent hurdle in our battle for freedom. But let us not allow it to stop our fight, either – it is now time to simply pick ourselves back up, dust ourselves off, and continue fighting this revolution like we’ve never fought it before.

I’m proud to have you all at my side.

Yours Loyally

Dread Pirate Roberts

Like this? Share it.TwitterFacebookGoogle+LinkedInReddittumblrbufferEmail

Bitcoin Cloud Wallets Comparison: Security and Liquidity

Like this? Share it.TwitterFacebookGoogle+LinkedInReddittumblrbufferEmail

This question originally appeared on Quora, and was answered by Will O’Brien, owner of On Bitcoin.

Q: Which site is best for keeping a cloud bitcoin account? Specifically I want to: 1) keep my balance secure, and 2) change in and out of USD easily.

Sadly, the answer is none of them at this time. But there are some exciting new companies on the horizon.

First, some background. You can hold your Bitcoins in a wallet (cloud or desktop), at an exchange, or in cold storage. Each has its own profile for security and liquidity.

Security: There is a trade-off. Wallets and exchanges that are easier to use are often less secure. This is not a rule, just the current state of affairs. The biggest risk to Bitcoin is theft. If someone gets your private key, you will be robbed. See Bitcoin Theft: Mt. Gox Attack Pillages Investor’s Bitcoin Account as an example of how a Java chat applet was used to pillage a Mt.Gox user’s account.

Liquidity: Many exchanges have difficult account creation (to ensure security) and a prolonged wait to exchange to/from BTC, both as a hedge on currency volatility and because other institutions have delays, e.g., bank transfers. There is also regulatory risk and perceived regulatory risk. For example, Tradehill recently suspended its exchange due to regulatory concerns, Mt.Gox froze USD withdrawals, and Dwolla cut off Bitcoin users.

Bitcoin Cloud Wallet Security Liquidity

The general rules of thumb for both security and liquidity are:

  1. Never keep a large amount of money in an single Bitcoin wallet. Some Bitcoiners would say a single wallet should be used only once and not hold more money than you would be comfortable losing in a theft.
  2. If you are amassing BTC as an investment rather than day trading or buying and spending, consider cold storage.
  3. Keep on top of your account security like you would at your bank. There will be new Bitcoin wallet services that do everything for you that BofA does today, but those are in the future, not the present.
  4. Keep on top of your service provider. If they get impacted by regulation or attacks, so will you.

With that in mind, below are the major players to consider.

Coinbase - SF-based Bitcoin wallet startup
Pros:

  • Probably the most user-friendly site available. It’s a simple, intuitive, web interface for buying and selling.
  • Uses ACH transfer for buying/selling from USD.
  • Real-time charts and exchange rates.
  • VC-backed and reputable amongst the competition.
  • Android app and iPhone app available.

Cons:

  • Account setup is not trivial. Requires adding a bank account, verifying phone number, installing 2-factor authentication, etc.
  • Transaction delays: BTC-to-BTC transactions take 1 hour to clear. BTC-to-USD and USD-to-BTC transaction take days.

Bitcoin Block Explorer – Blockchain.info - web and mobile Bitcoin wallet
Pros:

  • iPhone app!
  • You can buy BTC with SMS payments.

Cons:

  • Very techie user interface, not intuitive.
  • No services. Very basic buy/sell functionality.

Mt.Gox - Japan-based Bitcoin exchange
Pros:

  • In the early days, Mt.Gox had a large amount of volume and liquidity.
  • Still considered a leading exchange.

Cons:

CampBX Bitcoin Trading Platform - US-based Bitcoin trading platform
Pros:

  • Reviewed as better than Mt.Gox.
  • Based in USA.

Cons:

  • Delays in initial trading after placing funds.
  • May be impacted by Dwolla decision to cut off Bitcoin exchanges.

BitGo - Startup with promise of most secure wallet (note: this is a relatively new startup with interesting technology that is coming to market soon)
Pros:

  • Innovative security implementation enables most secure wallet.
  • User-friendly site, easy to execute transactions.
  • Best account creation flow.

Cons:

  • New to market.

Companies no longer providing Bitcoin liquidity:

Companies not profiled in this answer:

CC image by by 401(K) 2013

Like this? Share it.TwitterFacebookGoogle+LinkedInReddittumblrbufferEmail