Application Security

9/5/2018
08:00 PM

7 Ways Blockchain is Being Used for Security

Blockchain is being used as a security tool. If you haven't thought about adopting it, you might want to reconsider your take.
4 of 8

Enforced Accountability
Everyone gives lip service to security's requirements, but investors and regulators want more than lip service. They want verifiable evidence that the right steps have been taken. And blockchain can be a valuable tool for providing that evidence.
Xage is one company providing blockchain-based accountability and verified compliance for organizations. Duncan Greatwood, CEO of Xage, describes one of the key benefits blockchain brings to accountability: Because of blockchain's nature of recording and verifying every change that occurs, 'the blockchain gives you the opportunity to audit or do forensics if something goes wrong.'

Blockchain's ledger architecture makes it a natural fit for those looking to have audit support for security and infrastructure management. While it's not impossible to spoof blockchain verification, the effort required makes it more affordable, in most cases, to simply do the work required to be in regulatory compliance.
(Image: HAKINMHAN VIA SHUTTERSTOCK)

Enforced Accountability

Everyone gives lip service to security's requirements, but investors and regulators want more than lip service. They want verifiable evidence that the right steps have been taken. And blockchain can be a valuable tool for providing that evidence.

Xage is one company providing blockchain-based accountability and verified compliance for organizations. Duncan Greatwood, CEO of Xage, describes one of the key benefits blockchain brings to accountability: Because of blockchain's nature of recording and verifying every change that occurs, "the blockchain gives you the opportunity to audit or do forensics if something goes wrong."

Blockchain's ledger architecture makes it a natural fit for those looking to have audit support for security and infrastructure management. While it's not impossible to spoof blockchain verification, the effort required makes it more affordable, in most cases, to simply do the work required to be in regulatory compliance.

(Image: HAKINMHAN VIA SHUTTERSTOCK)

4 of 8
Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
Jesussavesme@1
50%
50%
[email protected],
User Rank: Apprentice
11/6/2018 | 12:16:34 AM
Helpful article
Thanks for your article .really helpms me a lot

https://socialprachar.com/31-10-18-what-is-blockchain-technology/?ref=sudheer
Higher Education: 15 Books to Help Cybersecurity Pros Be Better
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/12/2018
'PowerSnitch' Hacks Androids via Power Banks
Kelly Jackson Higgins, Executive Editor at Dark Reading,  12/8/2018
Worst Password Blunders of 2018 Hit Organizations East and West
Curtis Franklin Jr., Senior Editor at Dark Reading,  12/12/2018
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win a Starbucks Card! Click Here
Latest Comment: So now we are monitoring the monitor?
Current Issue
10 Best Practices That Could Reshape Your IT Security Department
This Dark Reading Tech Digest, explores ten best practices that could reshape IT security departments.
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2018-20145
PUBLISHED: 2018-12-13
Eclipse Mosquitto 1.5.x before 1.5.5 allows ACL bypass: if the option per_listener_settings was set to true, and the default listener was in use, and the default listener specified an acl_file, then the acl file was being ignored.
CVE-2018-12076
PUBLISHED: 2018-12-13
A vulnerability in the UPC bar code of the Avanti Markets MarketCard could allow an unauthenticated, local attacker to access funds within the customer's MarketCard balance, and also could lead to Customer Information Disclosure. The vulnerability is due to lack of proper validation of the UPC bar c...
CVE-2018-18922
PUBLISHED: 2018-12-13
add_user in AbiSoft Ticketly 1.0 allows remote attackers to create administrator accounts via an action/add_user.php POST request.
CVE-2018-18923
PUBLISHED: 2018-12-13
AbiSoft Ticketly 1.0 is affected by multiple SQL Injection vulnerabilities through the parameters name, category_id and description in action/addproject.php; kind_id, priority_id, project_id, status_id and title in action/addticket.php; and kind_id and status_id in reports.php.
CVE-2018-19039
PUBLISHED: 2018-12-13
Grafana before 4.6.5 and 5.x before 5.3.3 allows remote authenticated users to read arbitrary files by leveraging Editor or Admin permissions.