Result Details

The Security Reference Architecture for Blockchains: Toward a Standardized Model for Studying Vulnerabilities, Threats, and Defenses

HOMOLIAK, I. The Security Reference Architecture for Blockchains: Toward a Standardized Model for Studying Vulnerabilities, Threats, and Defenses. Sborník příspevků z 54. konference EurOpen.CZ, 28.5.-1.6.2022. Radešín: Czech Open Systems User's Group, 2022. p. 185-210. ISBN: 978-80-86583-34-1.
Type
conference paper
Language
English
Authors
Abstract

Due to their specific features, blockchains have become popular in recent years. Blockchains are layered systems where security is a critical factor for their success. The main focus of this work is to systematize knowledge about security and privacy issues of blockchains. To this end, we propose a security reference architecture based on models that demonstrate the stacked hierarchy of various threats as well as threat-risk assessment using ISO/IEC 15408. In contrast to the previous surveys [1, 2, 3], we focus on the categorization of security vulnerabilities based on their origins and using the proposed architecture we present existing prevention and mitigation techniques. The scope of our work mainly covers aspects related to the nature of blockchains, while we mention operational security issues and countermeasures only tangentially.

Keywords

blockchains, security, privacy, ISO/IEC 15408,  threat-risk assessment.

URL
Published
2022
Pages
185–210
Proceedings
Sborník příspevků z 54. konference EurOpen.CZ, 28.5.-1.6.2022
Conference
54. konference EurOpen.CZ
ISBN
978-80-86583-34-1
Publisher
Czech Open Systems User's Group
Place
Radešín
BibTeX
@inproceedings{BUT185144,
  author="Ivan {Homoliak}",
  title="The Security Reference Architecture for Blockchains: Toward a Standardized Model for Studying Vulnerabilities, Threats, and Defenses",
  booktitle="Sborník příspevků z 54. konference EurOpen.CZ, 28.5.-1.6.2022",
  year="2022",
  pages="185--210",
  publisher="Czech Open Systems User's Group",
  address="Radešín",
  isbn="978-80-86583-34-1",
  url="https://europen.cz/Anot/54-1/sbornik-54.pdf"
}
Projects
Spolehlivé, bezpečné a efektivní počítačové systémy, BUT, Vnitřní projekty VUT, FIT-S-20-6427, start: 2020-03-01, end: 2023-02-28, completed
Research groups
IT Security Research Group (RG Security@FIT)
Departments
Back to top