The Arrest of Samourai Wallet Developers Shows the US Government Hates Privacy and Freedom – Andrea Togni 5/9/24


On April 24, two lead developers of Samourai Wallet (SW), the most-advanced privacy-centric wallet in the bitcoin ecosystem, were arrested and charged with money laundering and money transmitters offenses by order of the United States Department of Justice (DOJ). This is just the latest assault of an escalating war waged by US regulators on financial privacy and freedom.

Other examples are the arrest of Tornado Cash developers—a privacy protocol developed for Ethereum and other blockchains—and the pressure exerted by three-letter agencies on centralized exchanges to delist privacy-centric cryptocurrencies such as monero. Regulation by arrest and intimidation is the strategy deployed by the US government to drain liquidity from privacy-preserving money, which is perceived as a threat to the hypersurveilled fiat monetary system.

Regulation by Arrest: The Case of Samourai Wallet

Bitcoin is a transparent monetary system because the sender, the receiver, and the amount of any transaction are visible on-chain. Pseudonymity is the most basic privacy protection available to bitcoiners: addresses and transactions are strings of alphanumeric characters that are not directly related to real-world persons. Traditional finance practices such as Know Your Customer (KYC) requirements destroy bitcoin privacy because they tie pseudonymous on-chain information to actual identities, making on-chain activity traceable. It comes as no surprise, then, that governments worldwide are exerting pressure on centralized intermediaries to enforce these practices on their customers.

To maintain pseudonymity, privacy-conscious cryptocurrency users should avoid interacting with regulated intermediaries and with anyone who enforces KYC measures. Moreover, a number of privacy techniques have been developed to help individuals keep their possessions private. One of the most effective privacy techniques is coinjoin, which “is a trustless method for combining multiple Bitcoin payments from multiple spenders into a single transaction to make it more difficult for outside parties to determine which spender paid which recipient or recipients.” SW developed Whirlpool, which “is the only true zerolink coinjoin implementation in existence. Each Whirlpool mix is a 5 person coinjoin facilitated by our chaumian blinded co-ordinator. Every transaction has 1496 possible interpretations and breaks all deterministic links between inputs and outputs, providing the user with market leading transaction level privacy.” The US DOJ sees the development of Whirlpool and other privacy techniques as an attack against the surveillance apparatus of the fiat system: the arrest of the SW developers is a message to anyone who dares to threaten it.

The arguments outlined in the indictment sound like sophistry. First, SW developers are charged with conspiracy to operate an unlicensed money transmission business because they did not register their software with the Financial Crimes Enforcement Network (FinCEN). However, FinCEN guidance FIN-2019-G001 states unequivocally that “suppliers of tools (communications, hardware, or software) that may be utilized in money transmission, like anonymizing software, are engaged in trade and not money transmission.”

Given that all SW tools are noncustodial and that users at no point give up control over their funds, these tools are just software and not a centralized service that must be granted a license. It is true that users pay fees to SW to coinjoin their funds and that the SW blind coordinator constructs coinjoin transactions; nevertheless, users alone—not SW developers—control their coins and transmit them.

Second, the indictment claims that $100 million in criminal proceedings were laundered through SW privacy tools; however, it also claims that SW “incentivizes users to keep their crypto in the Whirlpool (and therefore generate additional liquidity in the pool) by making subsequent remixes free.” This explains why criminals rarely use Whirlpool to launder funds: they usually want to cash out their money as soon possible, but Whirlpool incentivizes users to do just the opposite so that their privacy is increased. In fact, if the numbers mentioned in the indictment are correct, 95 percent of the $2 billion that went through SW privacy tools are licit. By taking Whirlpool down, the DOJ is forbidding a significant number of law-abiding individuals from protecting their financial privacy. Moreover, the indictment does not take into account the obvious fact that money laundering is committed by money launderers and not by developers who write software.

Third, the US government’s position on the nature of bitcoin is obscure. On the one hand, the Internal Revenue Service claims that bitcoin is not money but a speculative asset; this is why US citizens must pay capital gains taxes on their cryptocurrency holdings. On the other hand, the DOJ claims that coinjoin software makes it possible to launder money. It is important to note that Whirlpool allows individuals to pseudonymize their coins but not to convert them to dollars. How can coinjoins constitute money laundering if bitcoin is not money and is never converted to fiat…?

Read More…