• 中国计算机学会会刊
  • 中国科技核心期刊
  • 中文核心期刊

计算机工程与科学 ›› 2024, Vol. 46 ›› Issue (01): 46-62.

• 计算机网络与信息安全 • 上一篇    下一篇

区块链安全问题研究综述

沈传年   

  1. (国家计算机网络应急技术处理协调中心上海分中心,上海 201315)
  • 收稿日期:2023-03-31 修回日期:2023-05-31 接受日期:2024-01-25 出版日期:2024-01-25 发布日期:2024-01-15

Review on security issues of blockchains

SHEN Chuan-nian   

  1. (Shanghai Branch of National Computer Network Emergency Response Technical Team/
    Coordination Center of China,Shanghai 201315,China)
  • Received:2023-03-31 Revised:2023-05-31 Accepted:2024-01-25 Online:2024-01-25 Published:2024-01-15

摘要: 区块链凭借其颠覆性的创新技术,正在不断改变数字金融、数字政务、物联网、智能制造等诸多行业的运行规则和应用场景,是构建未来社会全新信任体系和价值体系不可或缺的关键技术。然而,区块链自身技术的缺陷和应用场景的复杂多变导致的安全问题日趋严重,已成为制约区块链未来发展的主要瓶颈,区块链的监管之路任重道远。介绍了区块链的背景知识、基本概念和体系架构;从区块链的体系架构出发,分别从数据层、网络层、共识层、激励层、合约层、应用层以及跨链7个方面对区块链的安全问题和防范策略进行分析;在此基础上,从当前政策监管的情况及监管难点、技术监管的标准建立、创新方式及发展趋势对区块链的安全监管进行探讨。

关键词: 区块链, 共识机制, 智能合约, 跨链, 监管

Abstract: Blockchain, with its disruptive innovative technology, is continuously changing the operational rules and application scenarios of various industries such as digital finance, digital government, Internet of Things, and intelligent manufacturing. It is an indispensable key technology for building a new trust and value system in the future society. However, due to the defects of its own technology and the complexity and diversity of application scenarios, the security issues of blockchain are becoming increasingly serious. Security has become a major bottleneck restricting the future development of blockchain, and the road to blockchain regulation is arduous. This paper introduces the background know- ledge, basic concepts, and architecture of blockchain. Starting from the architecture of blockchain, it analyzes the security issues and prevention strategies of blockchain from seven aspects: data layer, network layer, consensus layer, incentive layer, contract layer, application layer, and cross-chain. Based on this, it discusses the safety supervision of blockchain from the current situation and difficulties of policy supervision, the establishment of technical supervision standards, innovative methods, and deve- lopment trends.

Key words: blockchain, consensus mechanism, smart contract, cross-chain, supervision