Publication Details
The Security Reference Architecture for Blockchains: Toward a Standardized Model for Studying Vulnerabilities, Threats, and Defenses
blockchains, security, privacy, ISO/IEC 15408, threat-risk assessment.
Due to their specific features, blockchains have become popular in recent years. Blockchains are layered systems where security is a critical factor for their success. The main focus of this work is to systematize knowledge about security and privacy issues of blockchains. To this end, we propose a security reference architecture based on models that demonstrate the stacked hierarchy of various threats as well as threat-risk assessment using ISO/IEC 15408. In contrast to the previous surveys [1, 2, 3], we focus on the categorization of security vulnerabilities based on their origins and using the proposed architecture we present existing prevention and mitigation techniques. The scope of our work mainly covers aspects related to the nature of blockchains, while we mention operational security issues and countermeasures only tangentially.
@INPROCEEDINGS{FITPUB12929, author = "Ivan Homoliak", title = "The Security Reference Architecture for Blockchains: Toward a Standardized Model for Studying Vulnerabilities, Threats, and Defenses", pages = "185--210", booktitle = "Sborn\'{i}k p\v{r}\'{i}spevk\r{u} z 54. konference EurOpen.CZ, 28.5.-1.6.2022", year = 2022, location = "Rade\v{s}\'{i}n, CZ", publisher = "Czech Open Systems User's Group", ISBN = "978-80-86583-34-1", language = "english", url = "https://www.fit.vut.cz/research/publication/12929" }