1) Blockchain is not used to solve security problems. Blockchain results in the reduction of mutual trust. They allow unidentified users to exchange scarce virtual value and prevent double spending without relying on trusted third parties. If blockchain happens to contain security features, it is not innate, but designed to minimize trust.
2) The words “blockchain” and “distributed ledger” have lost their meaning. If someone sums up a feature of bitcoin, such as tamper resistance to all other blockchains, then he is either ignorant or cheater. At this stage, for 10 blockchain implementations, there are 10 different risk profiles. Therefore, the link between blockchain and network security is the same as that between Java and network security.
3) Blockchain is often attacked by hackers. The website lists 68 incidents corresponding to nine security vulnerabilities.
4) If the blockchain uses cryptography, most blockchains are not encrypted. All users usually have access to the shared data.
5) Blockchain is essentially a distributed transaction log. Even if they are system secure, you have only one secure audit trail: an encrypted proof of when someone did something. You will not have any other security functions, such as identity and access management, endpoint security or network security; You won’t be protected from brain hacking (phishing, social engineering, etc.). Back to the third point.
We can almost stop here and say that blockchain, like any other system, must consider them from the perspective of ecosystem, including users, physical devices, software clients and third-party service providers.
Editor in charge: CT