new kt ^w / v } v ] d µ / î ì í ó - owasp · 2020. 1. 17. · microsoft powerpoint -...
TRANSCRIPT
![Page 1: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/1.jpg)
OWASP Indonesia Meetup I 2017OWASP Indonesia Meetup I 2017
Dimaz Ankaa Wijaya4 March 2017 | Mozilla Community Space | Jakarta, Indonesia
Dimaz Ankaa Wijaya4 March 2017 | Mozilla Community Space | Jakarta, Indonesia
Financial Fraud MitigationWith Blockchain Technology
Financial Fraud MitigationWith Blockchain Technology
![Page 2: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/2.jpg)
Dimaz Ankaa Wijaya, S.Kom., MNS, CSXF
• Education– FMIPA UGM – Sarjana Komputer (2007)– Faculty of IT, Monash University – Master of Networks and
Security (2016)• Field of Expertise
– Digital forensic, database, software engineering– Network security, software security, cryptocurrency
• Book– Mengenal Bitcoin dan Cryptocurrency (2016, Puspantara)– Bitcoin Tingkat Lanjut (2016, Puspantara)
• Contact– https://kriptologi.com– [email protected]
![Page 3: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/3.jpg)
Today’s Menu
• Introduction to Bitcoin• Financial Fraud• Blockchain• Summary
![Page 4: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/4.jpg)
Bitcoin
![Page 5: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/5.jpg)
![Page 6: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/6.jpg)
History of Bitcoin
![Page 7: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/7.jpg)
Centralized vs Decentralized
![Page 8: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/8.jpg)
![Page 9: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/9.jpg)
Blockchain Overview
![Page 10: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/10.jpg)
![Page 11: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/11.jpg)
Chain of Blocks
![Page 12: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/12.jpg)
Digital Signature
![Page 13: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/13.jpg)
Bitcoin Transaction
Receiver
Sender
![Page 14: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/14.jpg)
Mining
![Page 15: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/15.jpg)
Proof of Work (PoW)
Miners calculate values that match the requirement to create new blocks.
PoW protects the blocks from tampering.
![Page 16: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/16.jpg)
P2P Network
Each server has a complete copy of the blockchain.
They communicate through P2P protocol.
![Page 17: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/17.jpg)
Financial Fraud
• ID Theft• Cyber Security• Credit Card Fraud
![Page 18: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/18.jpg)
Financial Fraud (2)
• Falsifying data– Enron– WorldCom
• Fake document
![Page 19: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/19.jpg)
Financial Scheme
![Page 20: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/20.jpg)
Employing Blockchain in Finance Industry
• Transparent – visible ledger• Trustless – no central authority needed• Cryptography – digital signature• Permanent – blockchain
![Page 21: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/21.jpg)
Privacy Model
• Disconnecting Identities and Transactions
![Page 22: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/22.jpg)
Blockchain-based Digital Certificate
![Page 23: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/23.jpg)
Multisignature
![Page 24: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/24.jpg)
Visible Transactions
![Page 25: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/25.jpg)
No Single Point of Failure
• Peer-to-Peer Network• Multiple nodes• Synchronization
![Page 26: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/26.jpg)
Eliminating Middleman
• Reducing fees and risks
![Page 27: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/27.jpg)
Customized Transactions
• Escrow transaction• Hash-locked transaction• Time-locked transaction
![Page 28: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/28.jpg)
…And Many More!
• Ring Signature (Monero)• Smart Contract (Ethereum)
![Page 29: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/29.jpg)
Current Usage
• Loyalty Program
![Page 30: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/30.jpg)
Recent Development
• R3CEV • Hyperledger• Blockchain of things• Ms. Azure’s BaaS
![Page 31: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/31.jpg)
![Page 32: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/32.jpg)
Summary
• Blockchain supports transparency in financial industry by using public ledger.
• Blockchain protects the data from unauthorized modification.
• Blockchain supports authentication and non-repudiation in financial transaction by utilizing cryptographic functions.
• These characteristics minimize the risk in financial fraud.
![Page 33: New Kt ^W / v } v ] D µ / î ì í ó - OWASP · 2020. 1. 17. · Microsoft PowerPoint - OWASP-dimaz-3 Author: dim Created Date: 3/4/2017 11:15:13 AM](https://reader034.vdocuments.net/reader034/viewer/2022051923/6010a0593f792d72975bd737/html5/thumbnails/33.jpg)