ABC: A Cryptocurrency-Focused Threat Modeling Framework

Almashaqbeh, Ghada; Bishop, Allison; Cappos, Justin

doi:10.1109/infcomw.2019.8845101

Cited by 5 publications

(2 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The reason for this is due to the complex collusion cases and new threat vectors that could be missed by conventional security assessment strategies. Almashaqbeh et al [72] propose an ABC: an Asset-Based Cryptocurrency-focused threat modeling framework, which demonstrates the effectiveness of some real-world use cases.…”

Section: Limitationsmentioning

confidence: 99%

Using Visualization to Build Transparency in a Healthcare Blockchain Application

et al. 2020

View full text Add to dashboard Cite

With patients demanding services to control their own health conditions, hospitals are looking to build agility in delivering care by extending their reach into patient and partner ecosystems and sharing relevant patient data to support care continuity. However, sharing patient data with several external stakeholders outside a hospital network calls for the development of a digital platform that is trusted by both hospitals and stakeholders, given that there is often no single entity supporting such coordination. In this paper, we propose a methodology that uses a blockchain architecture to address the technical challenge of linking disparate systems used by multiple stakeholders and the social challenge of engendering trust by using visualization to bring about transparency in the way in which data are shared. We illustrate this methodology using a pilot implementation. The paper concludes with a discussion and directions for future research and makes some concluding comments.

show abstract

Section: Limitationsmentioning

confidence: 99%

Using Visualization to Build Transparency in a Healthcare Blockchain Application

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Recently emerging threat modeling approaches such as ABC [1] are specifically tailored for crypto-currency systems. Such alternative approaches represent a departure from threat modeling approaches that are meant to be versatile and applicable in a technology-and domain-agnostic context.…”

Section: Introductionmentioning

confidence: 99%

On the Applicability of Security and Privacy Threat Modeling for Blockchain Applications

et al. 2020

View full text Add to dashboard Cite

Elicitative threat modeling approaches such as Microsoft STRIDE and LINDDUN for respectively security and privacy use Data Flow Diagrams (DFDs) to model the system under analysis. Distinguishing between external entities, processes, data stores and data flows, these system models are particularly suited for modeling centralized, traditional multi-tiered system architectures. This raises the question whether these approaches are also suited for inherently decentralized architectures such as distributed ledgers or blockchains, in which the processing, storage, and control flow is shared among many equal participants To answer this question, we perform an in-depth analysis of the compatibility between blockchain security and privacy threat types documented in literature and these threat modeling approaches. Our findings identify areas for future improvement of elicitative threat modeling approaches.

show abstract

DevSecOps for Web3

Huang

2023

A Comprehensive Guide for Web3 Security

View full text Add to dashboard Cite

ABC: A Cryptocurrency-Focused Threat Modeling Framework

Cited by 5 publications

References 27 publications

Using Visualization to Build Transparency in a Healthcare Blockchain Application

Using Visualization to Build Transparency in a Healthcare Blockchain Application

On the Applicability of Security and Privacy Threat Modeling for Blockchain Applications

DevSecOps for Web3

Contact Info

Product

Resources

About