Research on the Application of Blockchain Smart Contract in Software Supply Chain Management

2022 3rd Asia Conference on Computers and Communications (ACCC) Pub Date : 2022-12-01 DOI:10.1109/ACCC58361.2022.00020

Shuaijianni Xu, Yaodong You, Yuanying Xiao

{"title":"Research on the Application of Blockchain Smart Contract in Software Supply Chain Management","authors":"Shuaijianni Xu, Yaodong You, Yuanying Xiao","doi":"10.1109/ACCC58361.2022.00020","DOIUrl":null,"url":null,"abstract":"With the development of the information technology industry and the expansion of software development requirements, the scale and complexity of software are increasing, which makes the software development process turn into a software supply chain with superior or subordinate relationships. However, due to the inherent fragility of the software supply chain and the uneven quality of third-party open-source software, accidents occur frequently, and the security of the software supply chain has received extensive attention. We first figure out the security risks faced by the software supply chain and then innovatively proposes a software supply chain management system based on blockchain. To the best of our knowledge, this is the first blockchain-based software supply chain management system. The transfer processes of all third-party components or software products in the system are permanently recorded in the distributed ledger through smart contracts, which become the basis when handling and tracking software supply chain security incidents.","PeriodicalId":285531,"journal":{"name":"2022 3rd Asia Conference on Computers and Communications (ACCC)","volume":"215 S681","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 3rd Asia Conference on Computers and Communications (ACCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ACCC58361.2022.00020","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

With the development of the information technology industry and the expansion of software development requirements, the scale and complexity of software are increasing, which makes the software development process turn into a software supply chain with superior or subordinate relationships. However, due to the inherent fragility of the software supply chain and the uneven quality of third-party open-source software, accidents occur frequently, and the security of the software supply chain has received extensive attention. We first figure out the security risks faced by the software supply chain and then innovatively proposes a software supply chain management system based on blockchain. To the best of our knowledge, this is the first blockchain-based software supply chain management system. The transfer processes of all third-party components or software products in the system are permanently recorded in the distributed ledger through smart contracts, which become the basis when handling and tracking software supply chain security incidents.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

区块链智能合约在软件供应链管理中的应用研究

随着信息技术产业的发展和软件开发需求的扩大，软件的规模和复杂性不断增加，使得软件开发过程变成了一个具有上下级关系的软件供应链。然而，由于软件供应链固有的脆弱性和第三方开源软件质量参差不齐，事故频发，软件供应链的安全问题受到广泛关注。我们首先分析了软件供应链面临的安全风险，然后创新性地提出了一种基于区块链的软件供应链管理系统。据我们所知，这是第一个基于区块链的软件供应链管理系统。系统中所有第三方组件或软件产品的转移过程通过智能合约永久记录在分布式账本中，成为处理和跟踪软件供应链安全事件的依据。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2022 3rd Asia Conference on Computers and Communications (ACCC)

自引率

0.00%

发文量