{"id":"https://openalex.org/W4322721367","doi":"https://doi.org/10.1016/j.bcra.2023.100135","title":"Security challenges and defense approaches for blockchain-based services from a full-stack architecture perspective","display_name":"Security challenges and defense approaches for blockchain-based services from a full-stack architecture perspective","publication_year":2023,"publication_date":"2023-03-01","ids":{"openalex":"https://openalex.org/W4322721367","doi":"https://doi.org/10.1016/j.bcra.2023.100135"},"language":"en","primary_location":{"id":"doi:10.1016/j.bcra.2023.100135","is_oa":true,"landing_page_url":"https://doi.org/10.1016/j.bcra.2023.100135","pdf_url":null,"source":{"id":"https://openalex.org/S4210227578","display_name":"Blockchain Research and Applications","issn_l":"2096-7209","issn":["2096-7209","2666-9536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310320990","host_organization_name":"Elsevier BV","host_organization_lineage":["https://openalex.org/P4310320990"],"host_organization_lineage_names":["Elsevier BV"],"type":"journal"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Blockchain: Research and Applications","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1016/j.bcra.2023.100135","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101584097","display_name":"Hongsong Chen","orcid":null},"institutions":[{"id":"https://openalex.org/I92403157","display_name":"University of Science and Technology Beijing","ror":"https://ror.org/02egmk993","country_code":"CN","type":"education","lineage":["https://openalex.org/I92403157"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Hongsong Chen","raw_affiliation_strings":["Beijing Key Laboratory of Knowledge Engineering for Materials Science, Beijing, 100083, China","Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China"],"raw_orcid":"https://orcid.org/0000-0002-8159-4984","affiliations":[{"raw_affiliation_string":"Beijing Key Laboratory of Knowledge Engineering for Materials Science, Beijing, 100083, China","institution_ids":[]},{"raw_affiliation_string":"Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China","institution_ids":["https://openalex.org/I92403157"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068964063","display_name":"Xietian Luo","orcid":null},"institutions":[{"id":"https://openalex.org/I92403157","display_name":"University of Science and Technology Beijing","ror":"https://ror.org/02egmk993","country_code":"CN","type":"education","lineage":["https://openalex.org/I92403157"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xietian Luo","raw_affiliation_strings":["Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China","institution_ids":["https://openalex.org/I92403157"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5031743487","display_name":"Lei Shi","orcid":null},"institutions":[{"id":"https://openalex.org/I92403157","display_name":"University of Science and Technology Beijing","ror":"https://ror.org/02egmk993","country_code":"CN","type":"education","lineage":["https://openalex.org/I92403157"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Lei Shi","raw_affiliation_strings":["Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China"],"raw_orcid":"https://orcid.org/0000-0001-8387-6160","affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China","institution_ids":["https://openalex.org/I92403157"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062346892","display_name":"Yongrui Cao","orcid":null},"institutions":[{"id":"https://openalex.org/I92403157","display_name":"University of Science and Technology Beijing","ror":"https://ror.org/02egmk993","country_code":"CN","type":"education","lineage":["https://openalex.org/I92403157"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yongrui Cao","raw_affiliation_strings":["Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China","institution_ids":["https://openalex.org/I92403157"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5002568596","display_name":"Yongpeng Zhang","orcid":null},"institutions":[{"id":"https://openalex.org/I92403157","display_name":"University of Science and Technology Beijing","ror":"https://ror.org/02egmk993","country_code":"CN","type":"education","lineage":["https://openalex.org/I92403157"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yongpeng Zhang","raw_affiliation_strings":["Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Department of Computer Science, University of Science and Technology Beijing (USTB), Beijing, 100083, China","institution_ids":["https://openalex.org/I92403157"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5101584097"],"corresponding_institution_ids":["https://openalex.org/I92403157"],"apc_list":{"value":1600,"currency":"USD","value_usd":1600},"apc_paid":{"value":1600,"currency":"USD","value_usd":1600},"fwci":7.9837,"has_fulltext":false,"cited_by_count":18,"citation_normalized_percentile":{"value":0.97345913,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":"4","issue":"3","first_page":"100135","last_page":"100135"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9646999835968018,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9510999917984009,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/blockchain","display_name":"Blockchain","score":0.8163201808929443},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6953315734863281},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6501959562301636},{"id":"https://openalex.org/keywords/enterprise-information-security-architecture","display_name":"Enterprise information security architecture","score":0.5388737320899963},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.516664981842041},{"id":"https://openalex.org/keywords/service","display_name":"Service (business)","score":0.4600711762905121},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.4370361566543579},{"id":"https://openalex.org/keywords/security-through-obscurity","display_name":"Security through obscurity","score":0.4105432629585266},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.3633134961128235},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.3122893273830414},{"id":"https://openalex.org/keywords/business","display_name":"Business","score":0.2242828607559204},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.21783140301704407},{"id":"https://openalex.org/keywords/cloud-computing","display_name":"Cloud computing","score":0.06785848736763},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.06593838334083557}],"concepts":[{"id":"https://openalex.org/C2779687700","wikidata":"https://www.wikidata.org/wiki/Q20514253","display_name":"Blockchain","level":2,"score":0.8163201808929443},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6953315734863281},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6501959562301636},{"id":"https://openalex.org/C31139447","wikidata":"https://www.wikidata.org/wiki/Q5380386","display_name":"Enterprise information security architecture","level":2,"score":0.5388737320899963},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.516664981842041},{"id":"https://openalex.org/C2780378061","wikidata":"https://www.wikidata.org/wiki/Q25351891","display_name":"Service (business)","level":2,"score":0.4600711762905121},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.4370361566543579},{"id":"https://openalex.org/C114869243","wikidata":"https://www.wikidata.org/wiki/Q133735","display_name":"Security through obscurity","level":5,"score":0.4105432629585266},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.3633134961128235},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.3122893273830414},{"id":"https://openalex.org/C144133560","wikidata":"https://www.wikidata.org/wiki/Q4830453","display_name":"Business","level":0,"score":0.2242828607559204},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.21783140301704407},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.06785848736763},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.06593838334083557},{"id":"https://openalex.org/C162853370","wikidata":"https://www.wikidata.org/wiki/Q39809","display_name":"Marketing","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1016/j.bcra.2023.100135","is_oa":true,"landing_page_url":"https://doi.org/10.1016/j.bcra.2023.100135","pdf_url":null,"source":{"id":"https://openalex.org/S4210227578","display_name":"Blockchain Research and Applications","issn_l":"2096-7209","issn":["2096-7209","2666-9536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310320990","host_organization_name":"Elsevier BV","host_organization_lineage":["https://openalex.org/P4310320990"],"host_organization_lineage_names":["Elsevier BV"],"type":"journal"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Blockchain: Research and Applications","raw_type":"journal-article"},{"id":"pmh:oai:doaj.org/article:88be6802db14442596c2ee3a3c730f35","is_oa":true,"landing_page_url":"https://doaj.org/article/88be6802db14442596c2ee3a3c730f35","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Blockchain: Research and Applications, Vol 4, Iss 3, Pp 100135- (2023)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.1016/j.bcra.2023.100135","is_oa":true,"landing_page_url":"https://doi.org/10.1016/j.bcra.2023.100135","pdf_url":null,"source":{"id":"https://openalex.org/S4210227578","display_name":"Blockchain Research and Applications","issn_l":"2096-7209","issn":["2096-7209","2666-9536"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310320990","host_organization_name":"Elsevier BV","host_organization_lineage":["https://openalex.org/P4310320990"],"host_organization_lineage_names":["Elsevier BV"],"type":"journal"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Blockchain: Research and Applications","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1410599989","display_name":null,"funder_award_id":"FRF-AT-20-11","funder_id":"https://openalex.org/F4320335787","funder_display_name":"Fundamental Research Funds for the Central Universities"},{"id":"https://openalex.org/G8122352383","display_name":null,"funder_award_id":"2018YFB0803403","funder_id":"https://openalex.org/F4320335777","funder_display_name":"National Key Research and Development Program of China"}],"funders":[{"id":"https://openalex.org/F4320321106","display_name":"Ministry of Education of the People's Republic of China","ror":"https://ror.org/01mv9t934"},{"id":"https://openalex.org/F4320321540","display_name":"Ministry of Science and Technology of the People's Republic of China","ror":"https://ror.org/027s68j25"},{"id":"https://openalex.org/F4320335777","display_name":"National Key Research and Development Program of China","ror":null},{"id":"https://openalex.org/F4320335787","display_name":"Fundamental Research Funds for the Central Universities","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":47,"referenced_works":["https://openalex.org/W2036378739","https://openalex.org/W2355227308","https://openalex.org/W2493671158","https://openalex.org/W2499335118","https://openalex.org/W2594957007","https://openalex.org/W2620636316","https://openalex.org/W2624307925","https://openalex.org/W2745621523","https://openalex.org/W2907521963","https://openalex.org/W2914452207","https://openalex.org/W2921980263","https://openalex.org/W2963264685","https://openalex.org/W2975871742","https://openalex.org/W2995765260","https://openalex.org/W3005836298","https://openalex.org/W3048047965","https://openalex.org/W3120970772","https://openalex.org/W3133065136","https://openalex.org/W3161368753","https://openalex.org/W3201406017","https://openalex.org/W4200526850","https://openalex.org/W4206587050","https://openalex.org/W4214667959","https://openalex.org/W4224933368","https://openalex.org/W4232836212","https://openalex.org/W4251730644","https://openalex.org/W4285124469","https://openalex.org/W4297927038","https://openalex.org/W4302550455","https://openalex.org/W6630973029","https://openalex.org/W6679183923","https://openalex.org/W6706372639","https://openalex.org/W6726393395","https://openalex.org/W6728816433","https://openalex.org/W6734415093","https://openalex.org/W6736162206","https://openalex.org/W6736207928","https://openalex.org/W6738571232","https://openalex.org/W6753751735","https://openalex.org/W6756382476","https://openalex.org/W6758303629","https://openalex.org/W6761383618","https://openalex.org/W6785440077","https://openalex.org/W6791204329","https://openalex.org/W6801560497","https://openalex.org/W6809271533","https://openalex.org/W6843413187"],"related_works":["https://openalex.org/W2345270111","https://openalex.org/W2065250680","https://openalex.org/W2372674753","https://openalex.org/W3195904671","https://openalex.org/W2092708554","https://openalex.org/W293735344","https://openalex.org/W2336014427","https://openalex.org/W139145738","https://openalex.org/W2466843868","https://openalex.org/W2495229164"],"abstract_inverted_index":{"As":[0],"an":[1,166],"advantageous":[2],"technique":[3],"and":[4,12,23,27,66,101,111,143,146,154,173,186,191],"service,":[5],"the":[6,94,140,183,195],"blockchain":[7,39,51,80,137,171],"has":[8,18],"shown":[9],"great":[10,21],"development":[11],"application":[13],"prospects.":[14],"However,":[15,44],"its":[16],"security":[17,25,36,52,73,77,96,109,117,134,184],"also":[19,103],"met":[20],"challenges,":[22],"many":[24],"vulnerabilities":[26,135],"attack":[28,161],"issues":[29,37,110],"in":[30,79,139,176],"blockchain-based":[31,99],"services":[32,81,138,172],"have":[33,40],"emerged.":[34],"Recently,":[35],"of":[38,50,93,108,136],"attracted":[41],"extensive":[42],"attention.":[43],"there":[45],"is":[46],"still":[47],"a":[48,55,72,83,90,105,115,124,180],"lack":[49],"research":[53,197],"from":[54,82,114],"full-stack":[56,84,95,116],"architecture":[57,74,85,97],"perspective,":[58],"as":[59,61,179],"well":[60],"representative":[62],"quantitative":[63],"experimental":[64,167],"reproduction":[65],"analysis.":[67],"We":[68,119],"aim":[69],"to":[70,75,122],"provide":[71],"solve":[76],"risks":[78],"perspective.":[86,118],"Meanwhile,":[87],"we":[88,102],"propose":[89,104],"formal":[91,106,127],"definition":[92],"for":[98],"services,":[100],"expression":[107],"defense":[112,187],"solutions":[113],"use":[120],"ConCert":[121],"conduct":[123],"smart":[125],"contract":[126],"verification":[128],"experiment":[129],"by":[130,165],"property-based":[131],"testing.":[132],"The":[133],"Common":[141],"Vulnerabilities":[142],"Exposures":[144],"(CVE)":[145],"China":[147],"Nation":[148],"Vulnerability":[149],"Database":[150],"(CNVD)":[151],"are":[152,163,189,199],"selected":[153],"enumerated.":[155],"Additionally,":[156],"three":[157],"real":[158,160],"contract-layer":[159],"events":[162],"reproduced":[164],"approach.":[168],"Using":[169],"Alibaba's":[170],"Identity":[174],"Mixer":[175],"Hyperledger":[177],"Fabric":[178],"case":[181],"study,":[182],"problems":[185],"techniques":[188],"analyzed":[190],"researched.":[192],"At":[193],"last,":[194],"future":[196],"directions":[198],"proposed.":[200]},"counts_by_year":[{"year":2026,"cited_by_count":3},{"year":2025,"cited_by_count":6},{"year":2024,"cited_by_count":7},{"year":2023,"cited_by_count":2}],"updated_date":"2026-05-07T13:39:58.223016","created_date":"2025-10-10T00:00:00"}