IKP WG 2025 Thread

Hi all,

I am making a new thread for 2025 IKP WG activities on forum.

Here is a summary of today’s call + the links to key documents for the working items

Agenda: IKP-WG Meeting Agenda (2025-01-30) - Google Docs

Forensic vs Analysis : BGIN IKP Working Group Distinguishing Blockchain Forensics from Analytics - Google Docs

Wallet Governance: BGIN_WD_SR00**_ Wallet Governance and Policy Study Report - Google Docs

BGIN IKP Working Group Meeting Notes

Date: January 30, 2025 Topic: Blockchain Forensics vs Analytics Research Paper

Key Discussion Points

Cross-Jurisdictional Considerations

• Current case studies are US-centric (e.g., Bitcoin Fog case) with specific legal standards
• Need to expand analysis to include other jurisdictions’ approaches to blockchain analysis
• Identified Canadian cases for potential inclusion:
  • Dark web narcotrafficking case
  • $1.4M Bitcoin wallet seizure case
• Need input from law enforcement officials across jurisdictions regarding:
  • Methodological differences
  • Resource and tool access variations
  • Capacity constraints

Standards and Guidelines

• Goal to develop cross-jurisdictional standardization framework
• BGIN identified as potential facilitator for global jurisdictional analysis
• Need to engage crown prosecutors and similar authorities in different regions

Technical Analysis Framework

1. Forensic Techniques vs Attribution Data

• Attribution data identified as proprietary technology
• Importance of combining on-chain and off-chain data
• Need for proper contextualization

2. Data Science Fundamentals

• Need to establish “blockchain science” fundamentals
• Industry standards discussion (e.g., CoinJoin analysis)
• Service/product categorization from organizations

Interview Strategy Refinement

Current challenges:

• Questions may be too broad (e.g., “what is forensic vs analysis”)
• Need for better context setting

Proposed improvements:

• Develop educational material for interviewees
• Create fact file for concrete discussion points
• [Action Item] Mitchell to produce contextual information package

Quality Assurance Framework

Need to establish standards for:

• Technical (data science) methodology
• Practitioner qualifications
• Data quality and verification

Next Steps

1. Create brief (one-page) technical resource document covering:

• Core chain-based fundamentals
• High-level concepts
• Key definitions

2. Develop interview framework that will:

• Provide clarity on core concepts
• Address fact vs inference derivation
• Cover behavioral analysis methodology

3. Expand jurisdictional research beyond US cases

Action Items

• Develop educational materials for interviewees
• Create fact file for structured discussions
• Research additional jurisdictional case studies
• Draft technical resource document

Hey everyone,

I wanted to share some updates from our recent discussions on the Bybit hack response and upcoming BGIN workshop preparations.

Bybit Hack Intelligence Update

The response to the Bybit hack has been remarkably swift with impressive industry collaboration. Analytics teams are actively tracking all affected addresses, with Bybit serving as an intermediary proxy between various intelligence sources. The FBI has attributed this to the “Trader Trader” group, there are around 50 OG addresses that received initial hacked funds.

What’s particularly notable:

• A public API is being created to track all addresses at risk from the hack, offered as a free public good (potential implications for on-chain credentials!)
• This is being characterized as “one of the most technical” major hacks due to its smart contract-based exploit
• The transparent nature of blockchain is actually working in our favor - “we should be daring people to use blockchain” as the tracking capability demonstrates its strength - is still an open question
• Cashout attempts may occur soon, but the hackers will face significant challenges given the coordinated tracking - but do they even need to cash out if an informal economy using cryptocurrency has just received a 1b injection.

The speed of information sharing and coordinated response represents a significant maturation in the ecosystem’s approach. There’s a GitHub repo from Tay documenting all incidents if we’d like to use a comparison of big hacks vs all the individuals

BGIN Workshop Preparations

We’re making progress on our key focus areas for the upcoming workshop:

• Layer 2 governance framework
• Wallet key management governance standards
• Developing clearer distinctions between forensics methodologies vs. analytics approaches

If anyone has input on these topics or wants to contribute to the preparations for our in person meeting and workshops early next week let me know.