Back to Search
Start Over
Penetration testing framework for smart contract Blockchain
- Source :
- Peer-to-Peer Networking and Applications. 14:2635-2650
- Publication Year :
- 2020
- Publisher :
- Springer Science and Business Media LLC, 2020.
-
Abstract
- Smart contracts powered by blockchain ensure transaction processes are effective, secure and efficient as compared to conventional contacts. Smart contracts facilitate trustless process, time efficiency, cost effectiveness and transparency without any intervention by third party intermediaries like lawyers. While blockchain can counter traditional cybersecurity attacks on smart contract applications, cyberattacks keep evolving in the form of new threats and attack vectors that influence blockchain similar to other web and application based systems. Effective blockchain testing help organizations to build and utilize the technology securely withe connected infrastructure. However, during the course of our research, the authors detected that Blockchain technology comes with security considerations like irreversible transactions, insufficient access, and non-competent strategies. Attack vectors, like these are not found on web portals and other applications. This research presents a new Penetration Testing framework for smart contracts and decentralized apps. The authors compared results from the proposed penetration-testing framework with automated penetration test Scanners. The results detected missing vulnerability that were not reported during regular pen test process.
- Subjects :
- Blockchain
Smart contract
Computer Networks and Communications
Computer science
Process (engineering)
Cost effectiveness
020208 electrical & electronic engineering
020206 networking & telecommunications
02 engineering and technology
Transparency (human–computer interaction)
Computer security
computer.software_genre
Intermediary
0202 electrical engineering, electronic engineering, information engineering
computer
Database transaction
Software
Vulnerability (computing)
Subjects
Details
- ISSN :
- 19366450 and 19366442
- Volume :
- 14
- Database :
- OpenAIRE
- Journal :
- Peer-to-Peer Networking and Applications
- Accession number :
- edsair.doi...........dbb561eee94bd66e4384bd726952ab62