Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

A Novel Classification of Attacks on Blockchain Layers: Vulnerabilities, Attacks, Mitigations, and Research Directions

Kaustubh Dwivedi, Ankit Agrawal, Ashutosh Bhatia, Kamlesh Tiwari

TL;DR

The paper tackles blockchain security by introducing a layered attack classification across five architectural layers, mapping known and emerging attack vectors to their target layers and vulnerabilities. It surveys concrete attacks and mitigations per layer, including smart-contract bugs, consensus exploits, network threats, and data-layer risks, while highlighting quantum-era threats and proposed post-quantum safeguards. A dual-step analytic framework (vulnerability then mitigation) guides the discussion and informs future research directions, emphasizing practical defenses and policy considerations. Overall, the work aims to strengthen blockchain privacy and security for scalable real-world deployment by identifying critical weaknesses and proposing layered, context-aware countermeasures.

Abstract

The widespread adoption of blockchain technology has amplified the spectrum of potential threats to its integrity and security. The ongoing quest to exploit vulnerabilities emphasizes how critical it is to expand on current research initiatives. Thus, using a methodology based on discrete blockchain layers, our survey study aims to broaden the existing body of knowledge by thoroughly discussing both new and known attack vectors inside the blockchain ecosystem. This survey proposes a novel classification of blockchain attacks and an in-depth investigation of blockchain data security. In particular, the paper provides a thorough discussion of the attack techniques and vulnerabilities that are specific to each tier, along with a detailed look at mitigating techniques. We reveal the deep dynamics of these security concerns by closely investigating the fundamental causes of attacks at various blockchain tiers. We clarify mitigation methods for known vulnerabilities and offer new information on recently developed attack vectors. We also discuss the implications of quantum computing in blockchain and the weaknesses in the current technology that can be exploited in the future. Our study advances the field of blockchain security and privacy research while also contributing to our understanding of blockchain vulnerabilities and attacks. This survey paper is a useful tool for readers who want to learn more about the intricacies of blockchain security. It also invites researchers to help strengthen blockchain privacy and security, paving the way for further developments in this dynamic and ever-evolving field.

A Novel Classification of Attacks on Blockchain Layers: Vulnerabilities, Attacks, Mitigations, and Research Directions

TL;DR

The paper tackles blockchain security by introducing a layered attack classification across five architectural layers, mapping known and emerging attack vectors to their target layers and vulnerabilities. It surveys concrete attacks and mitigations per layer, including smart-contract bugs, consensus exploits, network threats, and data-layer risks, while highlighting quantum-era threats and proposed post-quantum safeguards. A dual-step analytic framework (vulnerability then mitigation) guides the discussion and informs future research directions, emphasizing practical defenses and policy considerations. Overall, the work aims to strengthen blockchain privacy and security for scalable real-world deployment by identifying critical weaknesses and proposing layered, context-aware countermeasures.

Abstract

The widespread adoption of blockchain technology has amplified the spectrum of potential threats to its integrity and security. The ongoing quest to exploit vulnerabilities emphasizes how critical it is to expand on current research initiatives. Thus, using a methodology based on discrete blockchain layers, our survey study aims to broaden the existing body of knowledge by thoroughly discussing both new and known attack vectors inside the blockchain ecosystem. This survey proposes a novel classification of blockchain attacks and an in-depth investigation of blockchain data security. In particular, the paper provides a thorough discussion of the attack techniques and vulnerabilities that are specific to each tier, along with a detailed look at mitigating techniques. We reveal the deep dynamics of these security concerns by closely investigating the fundamental causes of attacks at various blockchain tiers. We clarify mitigation methods for known vulnerabilities and offer new information on recently developed attack vectors. We also discuss the implications of quantum computing in blockchain and the weaknesses in the current technology that can be exploited in the future. Our study advances the field of blockchain security and privacy research while also contributing to our understanding of blockchain vulnerabilities and attacks. This survey paper is a useful tool for readers who want to learn more about the intricacies of blockchain security. It also invites researchers to help strengthen blockchain privacy and security, paving the way for further developments in this dynamic and ever-evolving field.
Paper Structure (17 sections, 14 figures, 2 tables)

This paper contains 17 sections, 14 figures, 2 tables.

Table of Contents

  1. Introduction
  2. Overview of Blockchain
  3. Layered Structure and Attack Classification
  4. Application Layer
  5. Contract Layer
  6. Consensus Layer
  7. Network Layer
  8. Data Layer
  9. Attacks Description and Mitigation
  10. Application Layer
  11. Contract Layer
  12. Consensus layer:
  13. Network Layer:
  14. Data Layer:
  15. Quantum attacks and mitigation on Blockchain
  16. ...and 2 more sections

Figures (14)

  • Figure 1: Creation of a new block. After a transaction occurs, it gets submitted to the network. This transaction gets to the blockchain within a new block.
  • Figure 2: Blockchain working based on different layers. Steps are numbered from 1 to 7(Steps 1, 2, 3, and 6 are different for P2P transaction and Smart contracts)
  • Figure 3: Attack classification based on different layers
  • Figure 4: Race Attack. The attackers submit two transactions using the same funds, F. The recipient accepts the transaction without waiting for confirmation from the network. Meanwhile, the network accepts the counterfeit transaction.
  • Figure 5: Transaction Origin Attack. Steps are numbered from 1(attacker requesting some ether from the victim), to 5(victim losing all their funds to the attacker).
  • ...and 9 more figures