blockchain devlopment

Durga-prasad_01
Chapter_11-converted.docx
Home>Computer Science homework help>blockchain devlopment

Chapter 11

· Hyperledger Fabric Security

· Security design goals

· Hyperledger Fabric architecture

· Network bootstrap and

governance

· Strong identities

· Chaincode security

· Quantum computing

· General Data Protection Regulation (GDPR) considerations

Key Security Design Goals

· Existing members

· Determine how to add new members

· Determine how to update config/smart contracts

· Ledger and chaincode can be scoped

· General purpose language used for chaincode

· Guaranteed transaction integrity

· Align with industry standards

· Consensus separate from transaction validation

· Universal pluggability

FABRIC CA OR MEMBERSHIP PROVIDER

PEER SMART

CONTRACT / CHAINCODE

Hyperledger Fabric Architecture

LEDGER PRIVATE DATA ORDERING

SERVICE

Hyperledger Fabric Architecture

Network Bootstrap and Governance

The first step toward security

Creating the network

Adding new members

Deploying and updating chaincode

Data model

Bootstrapping Fabric CA

Enroll

Default Fabric roles

Revoking identities

Register

Strong Identities

Practical considerations in managing users

Chaincode Security

Sharing chaincode with other peers

Installing chaincode

Encrypting chaincode

Attribute-based access control

· Spoofing

· Tampering

· Repudiation

· Replay attacks

Common Security

Threats

· Information disclosure

· Denial of Service

· Elevation of privileges

· Ransomware

Transaction Privacy

Channels

Private data

Encrypting transaction data

Quantum Computing

Hyperledger Fabric

cryptography

Elliptic curve cryptography Digitally signs transactions

Options to plug in alternate provider

Quantum computing

Emerging technology

Possibly may break existing cryptography 15-30 years away from maturity

European

Union’s General Data Protection Regulation (EU GDPR)

Comprehensive regulations to protect personal data privacy

GDPR

Considerations

Hyperledger Fabric can provide for private data

However, immutability can cause issues

· GDPR requires support to delete data

Summary

· Hyperledger Fabric Security

· Security design goals

· Hyperledger Fabric

architecture

· Network bootstrap and governance

· Strong identities

· Chaincode security

· Quantum computing

· General Data Protection Regulation (GDPR) considerations