Statistical Model Checking of Common Attack Scenarios on Blockchain
Blockchain technology has developed significantly over the last decade. One of the reasons for this is its sustainability architecture, which does not allow modification of the history of committed transactions. That means that developers should consider blockchain vulnerabilities and eliminate them before the deployment of the system. In this paper, we demonstrate a statistical model checking approach for the verification of blockchain systems on three real-world attack scenarios. We build and verify models of DNS attack, double-spending with memory pool flooding, and consensus delay scenario. After that, we analyze experimental results and propose solutions to avoid these kinds of attacks.
XVI International Symposium "Problems of Redundancy in Information and Control Systems" is the conference that covers a wide area of aspects of information and communication systems. The main goal of the Symposium foundation is the reinforcement of cooperation between the representatives of various scientific schools, a possibility for the participants to get awareness of the latest scientific and technical achievements and sharing their experience with colleagues. The covered topics include but not limited to information and coding theory, telecommunication protocols, internet of things systems, machine learning, data security, blockchain.
This book constitutes the refereed proceedings of the 13th International Haifa Verification Conference, HVC 2017, held in Haifa, Israel in November 2017. The 13 revised full papers presented together with 4 poster and 5 tool demo papers were carefully reviewed and selected from 45 submissions. They are dedicated to advance the state of the art and state of the practice in verification and testing and are discussing future directions of testing and verification for hardware, software, and complex hybrid systems.
The papers in this special issue focus on the emerging phenomenon of cryptocurrencies. Cryptocurrencies are digital financial assets, for which ownership and transfers of ownership are guaranteed by a cryptographic decentralized technology. The rise of cryptocurrencies’ value on the market and the growing popularity around the world open a number of challenges and concerns for business and industrial economics. Using the lenses of both neoclassical and behavioral theories, this introductory article discusses the main trends in the academic research related to cryptocurrencies and highlights the contributions of the selected works to the literature. A particular emphasis is on socio-economic, misconduct and sustainability issues. We posit that cryptocurrencies may perform some useful functions and add economic value, but there are reasons to favor the regulation of the market. While this would go against the original libertarian rationale behind cryptocurrencies, it appears a necessary step to improve social welfare.
Distance-bounding (DB) protocols protect against relay attacks on proximity-based access control systems. In a DB protocol, the verifier computes an upper bound on the distance to the prover by measuring the time-of-flight of exchanged messages. DB protocols are, however, vulnerable to distance fraud, in which a dishonest prover is able to manipulate the distance bound computed by an honest verifier. Despite their conceptual simplicity, devising a formal characterization of DB protocols and distance fraud attacks that is amenable to automated formal analysis is non-trivial, primarily because of their real-time and probabilistic nature. In this work, we introduce a generic, computational model, based on Rewriting Logic, for formally analyzing various forms of distance fraud, including recently identified timing attacks, on the Hancke-Kuhn family of DB protocols through statistical model checking. While providing an insightful formal characterization on its own, the model enables a practical formal analysis method that can help system designers bridge the gap between conceptual descriptions and low-level designs. In addition to accurately confirming known results, we use the model to define new attack strategies and quantitatively evaluate their effectiveness under realistic assumptions that would otherwise be difficult to reason about manually.
The purpose of this study is to discuss the possibility of setting up a platform for inclusive policymaking process drawing upon the blockchain concept. The study posits that blockchain also has great potentials in non-financial applications, such as in policymaking, where there is a need for bottom-up approaches with more decentralized, distributed and evidence-based processes.
The study makes use of an analogy-based creative design methodology. The design science paradigm has its roots in engineering and the sciences of the artificial (Simon, 1996). As a problem-solving paradigm for solving complex engineering issues, design science seeks to create innovations that define the ideas, practices, technical capabilities and products through which the analysis, design, implementation and use of information systems can be effectively and efficiently accomplished. In the present study, the policy development theories and the logic of blockchain are synthesized to prepare a task model for the “IdeaChain” concept as a platform for creating, sharing and validating novel ideas as well as converting them into policies or new ventures through the funding mechanisms.
The IdeaChain concept is designed and demonstrated through its use in the domain of science, technology and innovation (STI) policy, which can be extended to cover all innovative activities linking the whole process from their emergence, funding, development, implementation and impact upon policy.
Blockchain is mostly discussed in literature with its impact on financial sector. IdeaChain is the first attempt to explore the potentials of blockchain in STI policymaking.
This book constitutes the thoroughly refereed proceedings of the international workshops associated with the 33rd International Conference on Advanced Information Systems Engineering, CAiSE 2021, which was held during June 28-July 2, 2021. The conference was planned to take place in Melbourne, Australia, but changed to an online format due to the COVID-19 pandemic.
The workshops included in this volume are:
· BC4IS: 1st International Workshop on Blockchain for Information Systems · EMoBI : 3rd International Workshop on Ethics and Morality in Business Informatics · KET4DF : 3rd International Workshop on Key Enabling Technology for Digital Factories · MOBA: 1st International Workshop on Model-driven Organizational and Business Agility · NeGIS: 2nd International Workshop on Next Generation Information Systems
They focus on topics and trends ranging from blockchain technologies to digital factories, ethics, and business agility to the next generation of information systems.
The 14 full papers and 1 short paper presented in this volume were carefully reviewed and selected from 33 submissions.
The growing interest and expectations from the blockchain applica-tions attract many analysts to this issue. In what spheres of logistics and supply chain management blockchain is appropriate? What blockchain software solutions are available to companies now? This paper investigates the basic function-ality of the existing software solutions on the market, the comparative analysis of blockchain platforms used for developing the solutions for logistics is also carried out. The main trends of blockchain applications are identified, based on the analysis of the project experience on the use of blockchain, in logistics and supply chain management, in different countries. The problems, limitations and conditions of blockchain implementation are also determined.
The current challenges of many mobility solutions are based on an extremely fragmented booking system with complex service layers. A cross-company and user-friendly exchange of information and offers from different mobility providers is often not possible. Against this background, Distributed Ledger Technology (DLT) has the potential to revolutionize the existing mobility sector and enable completely new business models. Thus, we present a distributed mobility platform, which is valuable for a variety of mobility services. In contrast to conventional platform approaches, the data management of our infrastructure is distributed, transparent, and cost-efficient. By prototypically implementing the concept, we can demonstrate its technical feasibility and at the same time demonstrate that the introduction of our distributed mobility concept will benefit both the supply and demand sides of public transportation.