Skip to main content

Watchtower | Bitcoin Glossary | Mapping Bitcoin

Watchtower

Lightning

Also known as: watch tower, LN watchtower

A service that monitors the Bitcoin blockchain on behalf of Lightning Network users to detect and respond to fraudulent channel closure attempts. If a counterparty broadcasts an old commitment transaction, the watchtower submits a penalty transaction to protect the user's funds.

Overview

A watchtower is a service that monitors the Bitcoin blockchain on behalf of Lightning Network users, watching for fraudulent channel closure attempts. When a channel counterparty broadcasts an outdated commitment transaction (attempting to steal funds by reverting to an earlier channel state), the watchtower detects this and submits a penalty transaction that claims all funds in the channel as punishment.

Why Watchtowers Are Needed

Lightning Network channels require both parties to be able to monitor the blockchain for cheating attempts. However, users (especially those on mobile devices) cannot always be online:

Without Watchtower:
  Alice (offline)          Bob (malicious)
       |                        |
       |    Bob broadcasts old  |
       |    commitment tx       |
       |    (favorable to Bob)  |
       |                        |
       |    Timelock expires    |
       |    before Alice sees   |
       |    the fraud           |
       |                        |
       |    Bob steals funds ✗  |

With Watchtower:
  Alice (offline)     Watchtower    Bob (malicious)
       |                  |              |
       |                  |  Bob broadcasts old
       |                  |  commitment tx
       |                  |              |
       |              Detects fraud!     |
       |              Submits penalty tx |
       |                  |              |
       |              All channel funds  |
       |              go to Alice ✓      |

How Watchtowers Work

  1. Pre-authorization: Before going offline, Alice provides the watchtower with encrypted "justice" data for each channel state update. This data contains the information needed to construct a penalty transaction but is encrypted so the watchtower cannot use it unless a specific old commitment transaction appears on-chain.
  2. Monitoring: The watchtower continuously monitors the blockchain for any transactions that match the commitment transaction patterns it is watching.
  3. Response: If a breach is detected, the watchtower decrypts the corresponding justice data and broadcasts the penalty transaction before the timelock on the fraudulent commitment transaction expires.

Privacy Design

Watchtowers are designed to minimize the information they learn:

  • They receive encrypted blobs that are only useful if a specific breach occurs.
  • They do not know the channel balance, the counterparty, or the funding transaction unless a breach actually happens.
  • Multiple watchtowers can be used simultaneously for redundancy without revealing information across them.

Common Misconceptions

Watchtowers are not custodial — they never have access to spend funds under normal circumstances. They can only submit penalty transactions, and the penalty output is controlled by the channel owner's key, not the watchtower's. The watchtower is a defensive service, not a custodian.

Términos Relacionados

Penalty TransactionLightning

A transaction in the Lightning Network that allows a channel partner to claim all funds in a channel if the other party attempts to broadcast an outdated commitment transaction. The penalty mechanism, implemented via revocation keys, deters cheating.

Lightning ChannelLightning

A two-party payment channel on the Lightning Network created by locking bitcoin in a 2-of-2 multisig on-chain transaction. Once open, the channel allows the two parties to make unlimited fast, low-cost payments between each other off-chain.

Lightning NetworkLightning

A Layer 2 payment protocol built on top of Bitcoin that enables instant, low-cost transactions through a network of bidirectional payment channels. Payments are routed through multiple channels using HTLCs, settling on the Bitcoin blockchain only when channels are opened or closed.