filmov
tv
Instant Threat Modeling - #17 Hacking Blockchain Security
Показать описание
This episode presents the most common threats applying to blockchain solutions such as HyperLedger.
Threat actors:
- anonymous, external attacker
- one of the organisations
- owner of certain private keys (authorised user)
Threats:
- private key compromise.
- web application attack vectors
- API attack vectors
- CA key compromise
- infrastructure attack vectors
- Node DoS
- bypassing channel policies
- too powerful organisations
- remote code execution and other smart contracts vulnerabilities
- smart contracts access control issues
Instant mitigations:
- encryption at rest
- web applications base threat model (BTM)
- BTM for APIs
- infra BTM
- each organisation should maintain their node
- policy configuration review + per-organisation access analysis.
- design review
- granular smart contracts
Instant Threat Modeling by Jakub Kaluzny (SecuRing).
Threat actors:
- anonymous, external attacker
- one of the organisations
- owner of certain private keys (authorised user)
Threats:
- private key compromise.
- web application attack vectors
- API attack vectors
- CA key compromise
- infrastructure attack vectors
- Node DoS
- bypassing channel policies
- too powerful organisations
- remote code execution and other smart contracts vulnerabilities
- smart contracts access control issues
Instant mitigations:
- encryption at rest
- web applications base threat model (BTM)
- BTM for APIs
- infra BTM
- each organisation should maintain their node
- policy configuration review + per-organisation access analysis.
- design review
- granular smart contracts
Instant Threat Modeling by Jakub Kaluzny (SecuRing).
0:04:49
Instant Threat Modeling - #17 Hacking Blockchain Security
0:02:54
Instant Threat Modeling - #16 Hacking Webinars
0:03:08
Instant Threat Modeling - #08 Ransomware
0:04:46
Instant Threat Modeling - #04 Video Conferencing
0:07:31
Building a Threat Model
0:01:00
The Four Question Framework For Threat Modeling
0:01:50
FACT CHECK: Are Nirmala Sitharaman & RBI Gov. Das Asking Indians to Invest ₹21,000 in Govt Platf...
0:57:02
Hacking Threat Modeling
0:09:27
Threat Modeling
0:02:53
Signal🚦vs NSA🧑💻 #shorts #privacy #nsa #encryption #phone #education
0:05:17
Instant Threat Modeling - #02 Contact Tracing Applications
0:00:15
Police Prank! 😱 Pulled Over With 50 Kilos! 😭😂 #shorts #prank
0:00:16
3 Moves to Build Bigger Biceps, even in a Polo Shirt #workout #fitness #shorts #gymmotivation
0:00:28
Judge Judy on what she thinks about Donald Trump
1:07:26
Privacy Threat Model Using LINDDUN by Kim Wuyts
0:00:56
Woman attacks Uber driver with pepper spray
0:28:37
USENIX Security '17 - Identifier Binding Attacks and Defenses in Software-Defined Networks
0:00:32
I Can’t Believe I Guessed Her Name 😅
1:07:49
RMIT Cyber Tech Talk: Craig Pearce on Threat Modeling the Right Way for Software Builders- 16 Sep 21
0:11:33
Control Validation Compass | Threat Modeling Aide & Purple Team Content | Threat Model Tutorial
0:00:11
NEVER FLYING SPIRIT AIRLINES AGAIN ‼️😤 #shorts
0:32:24
Threat Modelling: Securing Kubernetes Infrastructure & Deployments - Rowan Baker, ControlPlane
0:48:07
Motown02 Threat Modeling for Secure Software Design Robert Hurlbut
0:00:13
WORLD'S LONGEST ARMS.. #Shorts
Комментарии