A cybersecurity control framework for blockchain ecosystems

This paper proposes a cybersecurity control framework for blockchain ecosystems, drawing from risks identified in the practitioner and academic literature. The framework identifies thirteen risks for blockchain implementations, ten common to other information systems and three risks specific to bloc...

Descripción completa

Detalles Bibliográficos
Autores: Canelón, Jesús, Huerta, Esperanza, Incera, José, Ryan, Terry
Tipo de recurso: artículo
Fecha de publicación:2019
País:España
Institución:Universidad de Huelva (UHU)
Repositorio:Arias Montano. Repositorio Institucional de la Universidad de Huelva
Idioma:inglés
OAI Identifier:oai:ariasmontano.uhu.es:10272/17044
Acceso en línea:http://hdl.handle.net/10272/17044
Access Level:acceso abierto
Palabra clave:Blockchain
Cybersecurity
Internal controls
Descripción
Sumario:This paper proposes a cybersecurity control framework for blockchain ecosystems, drawing from risks identified in the practitioner and academic literature. The framework identifies thirteen risks for blockchain implementations, ten common to other information systems and three risks specific to blockchains: centralization of computing power, transaction malleability, and flawed or malicious smart contracts. It also proposes controls to mitigate the risks identified; some were identified in the literature and some are new. Controls that apply to all types of information systems are adapted to the different components of the blockchain ecosystem.