软件学报 ISSN 1000-9825, CODEN RUXUEW                                       E-mail: jos@iscas.ac.cn
                 Journal of Software,2021,32(5):1495−1525 [doi: 10.13328/j.cnki.jos.006213]   http://www.jos.org.cn
                 ©中国科学院软件研究所版权所有.                                                         Tel: +86-10-62562563


                                                              ∗
                 区块链系统攻击与防御技术研究进展

                 田国华,   胡云瀚,   陈晓峰


                 (西安电子科技大学  网络与信息安全学院,陕西  西安  710071)
                 通讯作者:  陈晓峰, E-mail: xfchen@xidian.edu.cn

                 摘   要:  区块链作为一种多技术融合的新兴服务架构,因其去中心化、不可篡改等特点,受到了学术界和工业界的
                 广泛关注.然而,由于区块链技术架构的复杂性,针对区块链的攻击方式层出不穷,逐年增加的安全事件导致了巨大
                 的经济损失,严重影响了区块链技术的发展与应用.从层级分类、攻击关联分析两个维度对区块链已有安全问题的
                 系统架构、攻击原理、防御策略展开研究.首先,按照区块链层级架构对现有区块链攻击进行归类,介绍了这些攻击
                 方式的攻击原理,分析了它们的共性与特性;其次,分析总结了已有解决方案的思路,提出了一些有效的建议和防御
                 措施;最后,通过攻击关联分析归纳出多个区块链攻击簇,构建了一个相对完整的区块链安全防御体系,展望了区块
                 链技术在未来复杂服务场景下的安全态势.
                 关键词:  区块链;去中心化;不可篡改性;区块链安全;区块链攻击簇
                 中图法分类号: TP309

                 中文引用格式:  田国华,胡云瀚,陈晓峰.区块链系统攻击与防御技术研究进展.软件学报,2021,32(5):1495−1525.  http://www.
                 jos.org.cn/1000-9825/6213.htm
                 英文引用格式: Tian GH, Hu YH, Chen XF. Research progress on attack and defense techniques in block-chain system. Ruan Jian
                 Xue Bao/Journal of Software, 2021,32(5):1495−1525 (in Chinese). http://www.jos.org.cn/1000-9825/6213.htm
                 Research Progress on Attack and Defense Techniques in Block-chain System

                 TIAN Guo-Hua,   HU Yun-Han,   CHEN Xiao-Feng
                 (School of Cyber Engineering, Xidian University, Xi’an 710071, China)

                 Abstract:    Blockchain, as an emerging  service architecture  integrating multi-technology, has attracted extensive attention  from the
                 academia  and industry  due to its decentralization  and immutability. However, blockchain is  vulnerable to  various  attacks due to its
                 complex  architecture,  and the increasing security incidents  year by  year  lead to huge  economic losses,  which seriously hampers  the
                 development and application of blockchain technology. This work studies the architecture, principle, and defenses of existing blockchain
                 attacks  from two dimensions  of  hierarchical classification and attack association analysis. Firstly,  the existing  blockchain attacks are
                 classified according  to the  hierarchical  structure  of the  blockchain, the attack principles  of these attacks are  introduced, and their
                 commonness and characteristics are analyzed.  Secondly,  some efficient  defenses are  given based  on  the analysis and  summary  of  the
                 existing solutions. Finally, this study constructs a comprehensive blockchain defense system based on several blockchain attack clusters
                 summarized by attack association analysis, and prospects the security situation of blockchain in complex service scenarios in the future.
                 Key words:    block-chain; decentralization; immutability; block-chain security; block-chain attack cluster

                    区块链是一种基于 P2P(peer to peer)网络、共识机制、密码学技术、智能合约等多种计算机技术的分布式
                 账本技术,其多元融合的技术架构赋予了自身公开透明、去中心化、不可篡改和可编程等技术特点,为解决传
                 统服务架构中的信任问题和安全问题提供了新思路,给社会传统行业的快速发展带来了新的契机.因此,区块链

                   ∗  基金项目:  山东省重点研发计划(2019JZZY020129)
                      Foundation item: Shandong Provincial Key Research and Development Program (2019JZZY020129)
                      收稿时间: 2020-07-30;  修改时间: 2020-10-20;  采用时间: 2020-11-29; jos 在线出版时间: 2021-01-15