State-level vulnerability platform adds blockchain sub-library, giving priority to public chain vulnerability

On June 3, 2020, the National Information Security Vulnerability Sharing Platform (CNVD) officially launched the blockchain vulnerability sub-library CNVD-BC, which has included 247 vulnerabilities, of which 241 are vulnerabilities in the public chain and public chain . Zhao Wenqi, a senior researcher at Huobi Research, pointed out that this type of vulnerability database has long existed in the traditional information security field. The most famous one is the CVE (Common Vulnerabilities and Exposures) platform. Major companies or organizations such as Apache and Linux have also maintained Corresponding vulnerability platform. In the blockchain industry, facing the subdivided fields, such as the underlying system of the blockchain, distributed protocols, smart contracts, decentralized applications and peripheral software, establishing a corresponding vulnerability platform can help improve the security of various fields. The launch of the blockchain vulnerability sub-library complements our country’s deficiencies in this field. According to the experience in the traditional security field, in the future, different blockchain platforms and service providers may successively launch vulnerability libraries for their respective application ecology.