• Security & Smart Contract II
  • Blockchain Software Security
  • 2018-09-14 15:15-15:55
  • Blockchain platforms are being developed as a piece of software and all software security issues can be included such as vulnerability propagation through the code clones of open source software (OSS) and the existence of same vulnerabilities in multiple locations via the code reuse of reference implementations. Center for Software Security and Assurance (CSSA) is established for developing an automated security analysis platform called IoTcube for enabling even non-security professionals to examine security vulnerabilities of their software professionally. In this talk, the technologies in IoTcube will be introduced, which include blackbox testing, whitebox testing, and network testing. Preliminary analysis of popular blockchain projects will show the statistics of OSS components and the importance of vulnerability management for improving blockchain platform security.