BEGIN:VCALENDAR VERSION:2.0 PRODID:-//Talks.cam//talks.cam.ac.uk// X-WR-CALNAME:Talks.cam BEGIN:VEVENT SUMMARY:"\;Please Verify"\;: How Human Behavior Undermines Blockch ain Security - Taro Tsuchiya\, Carnegie Mellon University DTSTART:20250715T130000Z DTEND:20250715T140000Z UID:TALK234238@talks.cam.ac.uk CONTACT:Alexandre Pauwels DESCRIPTION:Humans are a critical link to the security of any complex syst em\, and blockchains are no exception. Sometimes\, even basic assumptions are not met in practice\; we observed that some service providers or users do not properly check transactions\, whether purposefully (for latency be nefits) or inadvertently (due to operational mistakes). These unexpected b ehaviors pose new challenges to blockchain security. The first part of thi s talk will examine a network layer vulnerability - a “blockchain amplif ication attack.” Some Ethereum nodes appear to sidestep transaction vali dations to achieve lower latency\, making them vulnerable to a flood of in valid transactions. We quantify its attack damage through mathematical mod eling\, network monitoring\, and local simulation\, and compare it with th e potential economic gains of latency reduction. The second part focuses o n a wallet-level attack - “blockchain address poisoning.” Attackers ge nerate addresses resembling the victim’s recipient’s address to fool t he victim into sending their assets to the attacker by mistake. We develop a detection algorithm to scan two years of Ethereum and Binance Smart Cha in (BSC)\, characterize attack patterns\, extrapolate large attack groups\ , and bound the attacker’s computational capability through measurement and simulation. We will also discuss our initiatives to make our research accessible to end users.\n\nZoom link:\nhttps://us02web.zoom.us/j/85980496 815?pwd=z3tmHabXUSHbPgCe6VrSDq3WoIOi0R.1 LOCATION:Webinar &\; LT2\, Computer Laboratory\, William Gates Building . END:VEVENT END:VCALENDAR