Blockchain Security Ecology

Smart contract ecology is gradually enriched, and breakthroughs are increasing

In 2018, the types of smart contract participants and blockchain projects surged, and more security incidents and economic losses were disclosed. In the first half of 2018 alone, the number of safety accidents has risen from 4 to 75. The economic losses caused by security issues also reached 2.1 billion US dollars.

Public chain security issues have become a new focus

In 2019, public chain security incidents caused global losses of more than 6 billion U.S. dollars. The vulnerabilities in the public chain have a great impact on the entire chain ecology, and the safety of the public chain has also become a deadly and difficult new threat to the blockchain security ecology.

Public Chain Security Solutions

Conduct source code audits and overall security testing for public chains, and identify possible security risks through deployment of the test environment and combining the source code.

Public Chain Security Inspection Items

Data Layer

  • Malicious information attack
  • Resource abuse attack
  • Timestamp forgery
  • Brute force attack
  • Collision attack
  • Length expansion attack
  • Backdoor attack

Network Layer

  • Eclipse attack
  • Eavesdropping attack
  • Node client vulnerability
  • Denial of service attack
  • Racial attack
  • Fanny attack
  • Vector76 attack
  • Replace history attack
  • 51% attack
  • Transaction malleability attack
  • Verification bypass

Consensus Layer

  • Short range attack
  • Long range attack
  • Cumulative coin age attack
  • Precomputed attack
  • Witch attack

Incentive Layer

  • Reward distribution does not meet market expectations

Contract Layer

  • Escape loophole
  • Logic loopholes
  • Stack overflow vulnerability
  • Resource abuse vulnerabilities
  • Reentry attack detection
  • Numerical overflow detection
  • Access control detection
  • Return value call verification
  • Incorrect use of random numbers
  • Transaction order dependency
  • Denial of service attack
  • Logical design flaws
  • Trading function vulnerabilities

Application Layer

  • Invalid input and output verification
  • Incorrect authentication and session management
  • Improper error handling
  • API abuse
  • Business logic

Service Advantage

He has rich experience in blockchain security services, and the ability to review key points and key vulnerabilities of blockchain business is at the domestic first-line level.

Leading a team of internationally renowned security experts, he has long been committed to researching domestic and foreign blockchain security ecological information.

Good project quality control, strict control of project links, safety experts online throughout the process, answering user questions in real time.