Within a permissioned blockchain, transactions are validated and processed by participants that are already recognized by the ledger. Even though this is the case, there is still a challenge and issue of trust. How can one ensure the blockchain is secure and trustworthy in order to avoid the substantial impact of a cyberattack? The answer is by building security into your blockchain technology from the start, through strong authentication and cryptographic key vaulting.
Thales' Hardware Security Modules (HSMs) and Authentication services can help you secure blockchain in the following three areas:
Although blockchain is based on sophisticated math and is secure at its foundation with its decentralized approach, there are ways to fool the blockchain to gain advantage. Ensure you build security into your solution from the ground up, always storing your keys in a hardware-based solution to avoid those pitfalls and remain protected.
Luna Network HSMs are designed to store the private keys used by blockchain members to sign all transactions in a FIPS 140-2 Level 3 dedicated cryptographic processor. Keys are stored throughout their lifecycle; ensuring cryptographic keys cannot be accessed, modified or used by unauthorized devices or people. Cryptographic keys kept in software are at risk of theft, compromising the entire blockchain ledger.
ProtectServer HSMs, like the Luna Network HSMs, are designed to protect cryptographic keys against compromise while providing encryption, signing, and authentication services.
Both Luna and Protect Server HSMs extend native HSM functionality by enabling the development and deployment of custom code within the secure confines of the FIPS 140-2 Level 3 validated Thales HSM as a part of the firmware. Functionality Modules (FMs) allow you to customize your Thales HSM’s functionality to suit the needs of your organization, including the implementation of Quantum algorithms.
Luna Cloud HSM Services. In addition to our on-premises HSM solutions, Thales also offers a Luna Cloud HSM solution through Data Protection On Demand (DPoD). DPoD offers an as a service billing model with no hardware to deploy and maintain.
SafeNet Authentication Service (SAS) will substantially reduce your total cost of operation and tailor authentication to meet your unique needs with this fully automated, highly secure authentication-as-a service with flexible token options.
Risk: Encrypted digital currencies identify the currency itself, but not its owner. Whoever holds the coin's encryption key owns the currency. This means that when a coin is stolen, it's gone—and you have no way of getting it back.
Solution: Storing your encryption keys in a FIPS-validated root of trust is critical to ensuring you own your keys and ultimately your cryptocurrency.
Risk: A smart contract is a computer program that describes an agreement with the ability to self-execute and enforce the terms of a contract. If the blockchain is breached, a smart contract can be altered, breaking the trust of the blockchain and removing the ability for two parties to conduct business without the need for a middleman.
Solution: Securely self-execute the terms of a contract with anonymous parties through strong authentication and storing your encryption keys in a hardware root of trust, ensuring the parties are properly identified and that no one can access your data.
Risk: The restrictions imposed by a traditional central-authority trust model have helped make the IoT vulnerable. Most notably Mirai-style botnets, which allowed hackers to easily take over thousands of IoT devices. Only protecting the IoT devices with default passwords allowed hackers to launch Distributed Denial of Service (DDoS) attacks.
Solution: Blockchain helps secure the IoT by providing a distributed trust model. The blockchain removes the single-point-of-failure, in turn enabling device networks to protect themselves in other ways, for example by allowing the nodes within a given network to quarantine any nodes that start behaving unusually.
Thales has partnered with industry-leading blockchain and cryptocurrency partners to provide enterprise-grade solutions for securing transactions. Together with partners such as IBM, R3, Ethereum, Hyperledger, Ledger, BitGo, Symbiont and ConsenSys Quorum, Thales is protecting the way industries are conducting business, bringing efficiency and establishing trust. Thales also supports multiple blockchain applications including Bitcoin, Hyperledger, Ethereum, Altcoins, Monero, and more.
With all of the uncertainty about blockchain, the abundance of standards and protocols, and moving from a centralized to decentralized platform, getting started with Blockchain is challenging and intimidating at best. Avoid joining the myriad of blockchain organizations that are failing at implementing blockchain technology. Contact Thales to determine how you too can benefit from Blockchain, and learn how Thales’s HSM and SAS solutions can keep your transactions secure.
In our webinar, “Blockchain for payments: Experience on the ground”, we speak to some of the leading operators in the blockchain payments space to learn more about their experience to date and what they see for the future of blockchain payments.
Watch the Blockchain for Payments Webinar
Watch the IoT & Blockchain Webinar
Blockchain is one of those industry buzzwords that you seem to hear everywhere, but what exactly is it and can you trust it? For the most part, enterprises are implementing blockchain without truly understanding its purpose, and as much as 90% of enterprise blockchain projects...
Secure cold storage of cryptocurrencies such as Bitcoin or Ethereum, is a difficult and complex challenge. Traditional paper wallet-based solutions may be effective for the most basic use cases, but they present a substantial challenge for more complex environments as they do...
With the invention of Bitcoin and blockchains, cryptocurrencies and digital assets are rapidly coming to mainstream finance. Security of systems processing digital assets is paramount, and today’s financial institutions expect all the robustness and security of traditional...
The demand for digital keys as an integral part of a highly convenient network society is growing. At the forefront of the spread of digital keys are the automotive, housing and hotel industries. FreeBit Co., Ltd., (hereinafter referred to as “FreeBit”), a company engaged in...
Listen to this short video to learn about Blockchain. Sharing decentralized data via blockchain, and how this builds trust is critical to its evolution and adoption. As user adoption increases, ensuring trust and integrity in the Blockchain network is paramount.