Understanding the Foundation: UTXOs and Bitcoin Transactions
Before diving into CoinJoin, it's essential to grasp the basics of Bitcoin transactions and UTXOs (Unspent Transaction Outputs). If you're already familiar, feel free to skip ahead, but a quick review never hurts.
How Bitcoin Transactions Work
A Bitcoin transaction consists of inputs and outputs (which include amounts of bitcoin) along with a digital signature created using a private key.
Think of a Bitcoin transaction like a bank cheque. A cheque includes:
- A paying account
- A recipient
- An amount
- A signature
Signatures are validated by every node on the network, confirming the transaction's authenticity. The total value of the inputs slightly exceeds the total value of the outputs; the difference is the transaction fee paid to the miner who includes the transaction in a block.
Demystifying UTXOs
"UTXO" can sound intimidating, but it's a fundamental concept. Imagine receiving a physical gold coin weighing 1.2 ounces. To pay someone 0.2 ounces, you must melt down the entire coin and recast it into a new 0.2-ounce coin and a separate 1-ounce coin. One is for payment, the other is your change.
Bitcoin operates similarly. When your wallet receives 1.2 BTC, you have a UTXO for that amount. To spend 0.2 BTC, you must spend the entire 1.2 BTC UTXO in a transaction. This transaction creates new outputs: one for the payment (0.2 BTC to the recipient) and one for the change (1.0 BTC back to your own wallet).
This introduces the concept of "change." Your wallet automatically handles this process, combining various UTXOs as inputs to create the desired payment output and a change output sent to a new address you control.
What is CoinJoin and How Does It Enhance Privacy?
Many people are unaware that a single Bitcoin transaction can contain digital signatures from multiple people. This functionality is what makes CoinJoin possible.
CoinJoin is a collaborative transaction where two or more users combine their transactions into one. After the transaction is completed, it becomes difficult for outside observers to determine which payment output belongs to which participant. This obfuscation is achieved by matching input or output amounts, as shown in the following example.
Without CoinJoin, blockchain observers can often trace the flow of funds. For instance, if a coin moves from Address A to Addresses B and C, an analyst might deduce that the coin in Address C belongs to the owner of Address A. This is Bitcoin's pseudo-anonymous nature. Since exchange users undergo KYC (Know Your Customer) checks, surveillance companies that obtain this data can potentially link blockchain addresses to real-world identities.
A CoinJoin transaction breaks these pseudo-anonymous links. In a simple example with two participants, Alice and Bob:
- The transaction has two inputs (one from Alice, one from Bob).
- It creates two outputs of an identical amount (e.g., 1 BTC each).
To an external observer, it's impossible to know which 1 BTC output belongs to Alice and which belongs to Bob; each has a 50% probability. To further enhance privacy, participants can perform multiple CoinJoin rounds with different partners.
What Can CoinJoin Actually Do For You?
Can It Hide Your Bitcoin from Governments?
CoinJoin cannot hide the fact that you originally acquired a certain amount of bitcoin through a KYC exchange. If you bought bitcoin on an exchange with your ID, you should assume that the exchange, and by extension governments, know you possess that bitcoin. If laws are passed to tax or confiscate bitcoin, your initial KYC amount is likely known. CoinJoin obfuscates the path of the coins, not the initial ownership.
The "Boating Accident" Myth
Claiming your bitcoin was lost in a hypothetical accident only works if those specific coins are never moved again. Spending them after such a claim would expose the story as a fabrication. Using CoinJoin before making a false claim might help obscure the trail, but this is a high-risk strategy and not advisable.
Spending Privacy: The Real Benefit
The primary practical benefit of CoinJoin is spending privacy. Imagine you have a UTXO containing 10 BTC. If you spend 0.001 BTC from it directly, the recipient can see on the blockchain that the payment came from an address holding a much larger sum.
However, if you first mix your 10 BTC through CoinJoin, the UTXO you spend from will appear to hold a smaller, more common amount with a complex history. This protects the privacy of your total holdings, as the recipient cannot easily discern your overall wealth or link your spending to your identity.
Should You Use CoinJoin?
If your goal is spending privacy and you understand its limitations regarding initial KYC exposure, then CoinJoin can be a valuable tool. For many everyday transactions, the Lightning Network already provides a high degree of privacy.
That said, if CoinJoin were more widely adopted and integrated seamlessly into wallets by default, the overall privacy of the Bitcoin network would be significantly strengthened for everyone.
Is CoinJoin Wrong, Illegal, or Risky?
Some users worry that "mixed" coins could be flagged as "tainted" and rejected by exchanges in the future. While this is a possibility, there are ways to mitigate the risk.
- You can use mixed coins to open Lightning Network channels. Recipients of Lightning payments cannot tell how the channel was funded.
- You can choose to mix only a portion of your holdings, hedging your bets.
Using CoinJoin itself is not illegal in most jurisdictions, as it is simply a privacy-enhancing way to use a public blockchain.
How to Perform a CoinJoin: Option 1 - Automated Services
Several services allow you to mix your bitcoin automatically in large pools. Popular options include Samourai Wallet's Whirlpool, Wasabi Wallet, and JoinMarket. Each has different trade-offs.
Whirlpool and Wasabi
Whirlpool (by Samourai) and Wasabi offer user-friendly, automated mixing. You configure your wallet, and a centralized coordinator matches you with other users. The service runs in the background. Fees are typically around 0.2% of the mixed amount, plus miner fees, though this can vary based on pool settings.
JoinMarket
JoinMarket operates on a different, decentralized model. It creates a marketplace for liquidity:
- Makers: Users offer their bitcoin to be used in others' CoinJoins, earning a small fee for providing this liquidity. This requires keeping bitcoin in a hot wallet, introducing some risk.
- Takers: Users pay a fee to have their bitcoin mixed with the liquidity provided by the Makers.
JoinMarket is powerful but has a steeper technical learning curve, often requiring comfort with command-line tools, and has not yet achieved mainstream adoption.
How to Perform a CoinJoin: Option 2 - The DIY Approach
Manually coordinating a CoinJoin offers complete control and can be less expensive. However, it requires finding a partner, technical knowledge, and a solid understanding of privacy principles to avoid mistakes.
The biggest advantage is the educational value and the ability to explore Bitcoin's capabilities deeply. This guide assumes you have basic knowledge of using the Electrum desktop wallet.
Step 1: Run Your Own Node
This is non-negotiable for serious privacy. If you don't run your own node, your wallet queries third-party servers, potentially leaking your addresses and IP address to surveillance companies. Running a node has many other benefits and is a cornerstone of sovereign Bitcoin use.
Step 2: Create a Private Wallet
If your existing wallet has ever connected to a public node, its addresses may be compromised. For a fresh start, create a new wallet whose keys have never been exposed to any software that might leak information.
- With hardware wallets like Ledger, consider adding a passphrase to create a new, hidden wallet.
- Coldcard hardware wallets are more private by default.
- For maximum purity, you can generate a seed offline using dice or coins.
Step 3: Find a CoinJoin Partner
This can be the hardest part. You need to find a trusted peer in the Bitcoin community who wants to learn and collaborate. As your network grows, so will your opportunities.
Step 4: Plan the Transaction
You and your partner must agree on:
- Which UTXOs to spend
- The amount to be mixed
- The destination addresses for the mixed coins
- The destination addresses for any change
- The miner fee to be paid
The key is to create outputs of identical amounts to maximize ambiguity.
Step 5: Create and Save Your Unsigned Transaction
In Electrum, select your UTXO, create a transaction sending the mixed amount to your new address and the change back to your wallet. Finalize it, set the fee, and instead of signing, choose to export the unsigned transaction to a file.
Step 6: Exchange Transactions with Your Partner
Your partner completes Step 5 and sends you their unsigned transaction file. Use a secure communication method like encrypted email to exchange these files, as they are not highly sensitive but still best kept private.
Step 7: Combine the Transactions in Electrum
Open your unsigned transaction in Electrum. Click the "Combine" button and load your partner's transaction file. Electrum will merge the inputs and outputs into a single, combined CoinJoin transaction. You will see both identical mixed outputs, and Electrum will highlight which addresses it recognizes as yours.
Step 8: Sign and Broadcast the Transaction
The combined transaction now needs signatures from all participants. The transaction file must be passed between all parties for signing. The final signer has the responsibility of broadcasting the completed transaction to the network.
Congratulations!
You've successfully executed a manual CoinJoin! This process provides a deep understanding of Bitcoin's transaction mechanics and privacy features.
Best Practices for Managing Mixed Coins
After a CoinJoin, follow these guidelines to preserve your privacy:
- Avoid Converting to Fiat: Do not send mixed coins directly to a KYC exchange.
- Avoid Merging with KYC Coins: Never combine your mixed UTXOs with UTXOs that came directly from a KYC source, as this will "taint" them.
- Avoid Consolidating Mixed UTXOs: Try not to combine multiple mixed UTXOs into one, as this can reduce privacy.
- Understand Change: Remember, the change output from a mixed transaction may not be private if it originated from a known UTXO.
- Spend Mindfully: When spending, be aware of which UTXOs you are using to avoid accidentally linking your mixed and unmixed coins.
Frequently Asked Questions
Is CoinJoin legal?
Yes, in most countries, using CoinJoin is a legal method for enhancing financial privacy on a public blockchain, similar to using a privacy-focused browser. It is important to comply with your local tax laws regarding cryptocurrency.
Will exchanges reject my mixed coins?
Some exchanges have been known to flag deposits that they can link to known mixing services. This risk exists, but you can mitigate it by using mixed coins within the Bitcoin ecosystem, such as for Lightning channels or peer-to-peer transactions, rather than cashing out on exchanges.
Is running a node necessary for privacy?
Absolutely. Your node validates all transactions independently, ensuring you are following the real Bitcoin blockchain rules. Without your own node, you leak information about your wallet's addresses and balances to whatever server your wallet connects to, fundamentally undermining your privacy efforts.
Can I achieve privacy just by using the Lightning Network?
The Lightning Network provides excellent spending privacy for small, recurring transactions because details are not settled on the public blockchain. For protecting larger amounts stored on-chain (your savings), CoinJoin remains a crucial tool. They serve complementary purposes in a privacy strategy.
How many times should I mix my coins?
There is no magic number. A single mix with a few participants significantly increases privacy. Additional rounds with different partners can further increase the entropy and ambiguity, making chain analysis more difficult. The law of diminishing returns applies.
What's the biggest mistake people make with CoinJoin?
The most common error is accidentally linking mixed and unmixed coins later by using them as inputs in the same transaction or sending them to the same wallet. Always manage your UTXOs carefully and understand the flow of funds. Explore more strategies for advanced UTXO management to avoid these pitfalls.