Security and Privacy in Communication Networks. 19th EAI International Conference, SecureComm 2023, Hong Kong, China, October 19-21, 2023, Proceedings, Part I

Research Article

VDABSys: A Novel Security-Testing Framework for Blockchain Systems Based on Vulnerability detection

Cite
BibTeX Plain Text
  • @INPROCEEDINGS{10.1007/978-3-031-64948-6_15,
    author={Jinfu Chen and Qiaowei Feng and Saihua Cai and Dengzhou Shi and Dave Towey and Yuhao Chen and Dongjie Wang},
    title={VDABSys: A Novel Security-Testing Framework for Blockchain Systems Based on Vulnerability detection},
    proceedings={Security and Privacy in Communication Networks. 19th EAI International Conference, SecureComm 2023, Hong Kong, China, October 19-21, 2023, Proceedings, Part I},
    proceedings_a={SECURECOMM},
    year={2024},
    month={10},
    keywords={Blockchain system Vulnerability detection model Formal theory Vulnerability attack graph Reliability theory},
    doi={10.1007/978-3-031-64948-6_15}
}
  • Jinfu Chen
    Qiaowei Feng
    Saihua Cai
    Dengzhou Shi
    Dave Towey
    Yuhao Chen
    Dongjie Wang
    Year: 2024
    VDABSys: A Novel Security-Testing Framework for Blockchain Systems Based on Vulnerability detection
    SECURECOMM
    Springer
    DOI: 10.1007/978-3-031-64948-6_15
Jinfu Chen1, Qiaowei Feng1, Saihua Cai1,*, Dengzhou Shi1, Dave Towey2, Yuhao Chen1, Dongjie Wang1
  • 1: School of Computer Science and Communication Engineering, Jiangsu University
  • 2: School of Computer Science, University of Nottingham Ningbo China
*Contact email: caisaih@ujs.edu.cn

Abstract

Blockchain technology is a popular solution for secure transactions in untrusted networks. However, with the growing number of blockchain applications, how to ensure the security of the blockchain system itself has become an urgent problem. In this paper, we propose a novel security-testing framework for blockchain systems based on a vulnerability-detection model. Our study involves an analysis and comparison with existing software-vulnerability analysis methods. Our framework first addresses each factor that impacts the security of the blockchain system, with a vulnerability attack graph being constructed using model-checking to describe the complete exploitation process of system vulnerabilities. Reliability Theory is used to quantitatively assess the vulnerability attack graph of the blockchain system, thereby providing a theoretical basis for evaluating its security. Finally, we verify the effectiveness and feasibility of the proposed security-testing framework for blockchain systems on an e-voting election blockchain system. The results from our extensive experiments show that our proposed method outperforms other formal-verification-based methods for detecting blockchain vulnerabilities, and also provides a scientific and reliable assessment of blockchain system security.

Keywords
Blockchain system Vulnerability detection model Formal theory Vulnerability attack graph Reliability theory
Published
2024-10-13
Appears in
SpringerLink
http://dx.doi.org/10.1007/978-3-031-64948-6_15
Copyright © 2023–2025 ICST
EAI Logo

About EAI

Community

Publish with EAI