Fundamentals of Blockchain Network Security

Blockchain is a revolutionary technology, yet its security is often over-exaggerated. While its design does help protect against a variety of different security threats, the technology is vulnerable to attack. In this post, we discuss three of the fundamental security assumptions of blockchain and how they are violated.
blockchain network security

(Mostly) Benign Participants

Blockchain technology is designed to create a secure, decentralized, and distributed record of the history of the blockchain system. The way that this is accomplished is by relying on the network of blockchain participants to (mostly) act in their own best interests and in that of the system as a whole.
To get in depth knowledge on blockchain , enrich your skills on Blockchain online training professionals
Blockchain wants to make sure that users participate in block creation, so that the system remains decentralized. It does this by providing incentives for creating these blocks in the form of block rewards and transaction fees. To ensure that the creator of each block is chosen in a fair and decentralized fashion, it uses the concept of consensus algorithms.
Blockchain consensus algorithms are built on the principles of security via scarcity and majority vote. In a Proof of Work blockchain, like Bitcoin, the current version of the blockchain is the one supported by the majority of votes. A vote can be thought of as a “share” of a scarce resource that you control, where the scarce resource is computational power or hash rate. The higher your hash rate, the more votes that you have, and the more power that you have over the blockchain.
It’s when a single user or group controls the majority of “votes” (a 51% attack) that this becomes a problem. Blockchain incentivizes good behavior by only providing rewards if your actions are accepted by majority vote (i.e. your blocks are added to the blockchain). If an attacker controls a majority of the votes, they can do whatever they want since their voting power ensures that their actions will be accepted. At this point, blockchain security falls apart.

Security of Cryptographic Primitives

The next basic security assumption of blockchain is that the cryptographic algorithms that are used for ensuring integrity and authenticity of the data in the system work as designed. This assumption transfers trust for maintaining the security of the ledger from people or organizations to cryptographic principles. If the cryptography is strong and is used as designed everything works out.
Blockchain uses two main types of cryptography to ensure its security: hash functions and public key cryptography. Hash functions are designed to protect the integrity of data by ensuring that no one can modify data on the blockchain without being detected. This is accomplished by making sure it is very difficult to find two versions of data that, when hashed, produce the same output value. So far, hash functions have worked as designed.
Public key cryptography is where cryptographic security tends to fall apart, and it’s not the fault of the crypto. The public key cryptography currently in use makes two main assumptions:
  1. No-one has a quantum computer
  2. Private keys are properly protected
In all probability, assumption 1 has never been violated. Assumption 2, on the other hand, has. A lot. Google has numerous stories of people losing large amounts of cryptocurrency because their public keys are lost or stolen (by malware, phishing, etc.). Hackers have demonstrated that there’s no need to build a quantum computer to break blockchain when you can just go after the user. Learn more from Blockchain online course

Connected, Functional Networks

Blockchains also make the assumption that the network that they run on is well connected and functional. The reason for this is to protect against a double-spend attack. In a double-spend attack, an attacker posts two conflicting versions of a transaction to the blockchain (i.e. spending the same value twice).
Under normal circumstances, this will be rejected since the network will reject one or the other of the transactions. One circumstance where it can succeed is if the attacker controls the consensus mechanism (see the first assumption above). The other is if users only see one transaction or the other.
Some network-level attacks against blockchain attempt to isolate one or more users from the rest of the network. This can be accomplished in a variety of ways, including malware, physical attacks, network-level attacks (BGP routing attacks, modifying firewall ACLs, etc.), and sybil attacks. If an attacker is successful in doing so, they can send one version of a conflicting transaction to one side of the network and the other version to the other. Since no user sees both versions of the transaction, they have no reason to reject it and add it to their copy of the blockchain. Once the target of the attack (the recipient of the transactions) accepts the transaction and acts upon it (i.e. sending whatever is purchased), the attacker can end the attack. At this point, whichever version of the blockchain is shorter is discarded, bringing the network back into consensus.

Blockchain Network Security: Designing a Secure System

When designing a blockchain system, it is important to perform a full risk assessment early in the process. It is important to understand the fundamental security assumptions made by blockchain technology and take action to mitigate any potential risks. The use of a private or permissioned blockchain, implementing secure key management processes, and properly designing the network used by the blockchain can go a long way toward improving the security of the system.
I hope you reach to a conclusion about BlockChain technology. You can learn more from online blockchain training
Location: Flat No. 205, Above ICICI Bank, KVR Enclave, Beside, Satyam Theatre Rd, Swathi Avenue, Ameerpet, Hyderabad, Telangana 500016, India

Comments

Post a Comment

Popular posts from this blog

What is Power BI: Architecture and Features Explained

Image
We all know that Power BI is one of the best BI tools, and many organizations are using this tool to generate reports and dashboards to make effective business decisions. Before using the Power BI services and features, you should know about the Architecture of Power BI. Because, you should know how the Power BI services, components are being used to transform the data, create the reports and dashboards. To get in-Depth knowledge on Power BI you can enroll for a live demo on   Power BI online training Microsoft Power BI Architecture: Power BI is a business platform that includes several technologies to work together. It delivers outstanding business intelligence solutions. Power BI Architecture contains four steps.  Let us discuss these four steps giving insightful information about each one of them. Data Integration Data Transforming  Report & Publish Creating and Dashboard 1. Data Integration:  Data is extracted from different sources which can be differen
Read more

Scope of UI designers

Image
You need UI designers to make the web (and practically all sorts of technology) aesthetically pleasing and user-friendly for all. But what makes a UI designer 's role so significant? Let's look at it closer. Good UI is key to good UX When interacting with a digital product, UI designers create all the screens and touchpoints the user encounters. From color and typography to spacing, imagery, buttons, scroll bars and more, they take care of everything. To get in depth knowledge on UI, enrich your skills on online ui training Course UI designers are not only responsible for making things look nice, though; they think about how the human mind works, using good design to intuitively direct the consumer around the product. Together with the designers of User Experience (UX) they ensure a positive user experience. In fact, while UX and UI are two distinct career paths, without good UI there is no such thing as good UX! UI designers guarantee accessible and inc
Read more