Mapping the OWASP Top Ten to Blockchain
Howard Poston
Abstract
The OWASP Top Ten List is a widely-recognized tool for identifying vulnerabilities in web applications. Since blockchain-specific security guidance is currently lacking, mapping existing frameworks, such as OWASP, to the blockchain can help in the identification of potential vulnerabilities in blockchain systems. While the OWASP Top Ten List is designed to describe the vulnerabilities that web application developers face, nine of ten of the OWASP vulnerabilities also apply to blockchain systems. The exception, XML External Entities (XXE), is not applicable due to the lack of use of XML in blockchain.
Topics & Concepts
BlockchainComputer scienceXMLComputer securityWorld Wide WebBlockchain Technology Applications and SecuritySecurity and Verification in ComputingAdvanced Malware Detection Techniques