• Skip to primary navigation
  • Skip to main content
S2 Grupo

Spanish Company Specialized in Cybersecurity

  • Company
    • About Us
    • Governing Bodies
    • CSR
    • Awards and Acknowledgments
  • Specialization
    • OT Industry
    • IT
    • OT Health
  • Solutions
  • R&D+I
  • Talent
  • News & Publications
  • Contact
  • facebook
  • twitter
  • instagram
  • linkedin
|
en arrow down
  • es
© 2023 S2 Grupo
Corporate

S2 Grupo and Cryptonics launch a pioneering quality seal in cybersecurity in blockchain for companies

Under the name of Enterprise Blockchain Security Specification (EBSS), its objective is to establish a guide of good practices to improve security in this type of technology in the companies that use it.
10 Sep 2020
  • Experts from both companies have highlighted that EBSS will be of great use to companies as it will allow their IT experts to use parameters to adequately protect the processes in which blockchain is applied.
  • The main security problems of this technology are due to the emergence of new cybersecurity paradigms, bad practices in information security and the lack of security of conventional information systems.

Valencia, September 10, 2020.- The Valencian company S2 Grupo (specialized in cybersecurity and management of critical systems) together with Cryptonics (spin-off of S2 Grupo specialized in cybersecurity in blockchain) have launched a pioneer quality seal in cybersecurity in the blockchain technology of companies.

Under the name of Enterprise Blockchain Security Specification (EBSS), its objective is to establish a guide of good practices in this field to improve security in this type of technology. This will be very useful for the IT experts of companies that use blockchain because it will allow them to follow essential parameters to adequately protect their businesses and organizations.

To this end, both companies have announced the creation of the Enterprise Blockchain Security Council (EBSec), an open alliance of companies with a shared interest in the secure adoption of blockchain and DLT (Distributed Ledger Technology) systems. For the moment, this alliance includes companies of international reference in the sector such as Solidified, a company that audits intelligent contracts and has a bug bounty platform (reward program) that specializes in audits of intelligent contracts, and PARSIQ, a leader in blockchain analysis and specialized in real-time monitoring of digital assets implemented in this technology.

“Until now, there were no standards or quality certifications in blockchain and more and more companies are using it. This left a void in the cyber protection of the companies that we have decided to cover with the creation of this pioneering quality seal, which will allow us to follow a guide of good practices for the cyber protection of blockchain ”, explained José Rosell, partner-director of S2 Grupo.

“Blockchains are protected by advanced cryptography that is often mistakenly believed to be unbreakable with today’s technology. This means that, in theory, digital assets stored on distributed ledgers should be extremely secure. However, we have seen how cybersecurity incidents constantly lead to the theft of assets”, declared Miguel A. Juan, managing partner of S2 Grupo.

 “Virtually every week we encounter major incidents or new vulnerabilities are revealed. The apparent insecurity of the public space of blockchains has started to affect the reputation of distributed ledger technology and thus seriously hinders business adoption. This means that companies and entire industries do not see clearly how to use it and, therefore, it is essential to have standards that allow them to do so in a cyber-secure way, ”said Stefan Beyer, CEO of Cryptonics.

Three cybersecurity problems in DLT (Distributed Ledger Technology, distributed transaction logs)

According to cybersecurity experts from S2 Grupo and Cryptonics, the main cybersecurity problems of ledger technology are:

1.- Paradigm shift: companies have to deal with new security paradigms that they are not used to and lack good practice guidelines. Decentralized blockchain systems differ from traditional IT systems in that asset security is no longer a centralized concept, in which data and other resources are locked in a black box server in a vault-type scenario. Assets are now transparently protected by cryptographic protocols, user-managed cryptographic keys, and even complex rules in smart contracts. This means that

2.- Bad practices: bad practices in information security are very frequent in all systems, but the impact is worse in transparent and decentralized systems that depend on the security of private keys.

3.- Lack of security of conventional information systems: distributed ledgers and smart contracts are only a small part of typical blockchain applications. Usually there are several layers of conventional software, including web interfaces, APIs, node software, and databases. In many incidents, the system is attacked through traditional software vulnerabilities, not through blockchain technology.

“EBBS was born out of the need for general security guidelines that companies can use to apply a minimum security standard in their operations. The specification is not intended to replace existing security standards, such as ISO / IEC 27001: 2013. Nor does it offer low-level security measures to provide secure code, other recommendations already exist that cover specific technologies. However, the EBSS focuses on the general guidelines and operational policies that should be in place in a company that wishes to adopt distributed ledger technology in a cyber-secure manner”, said Stefan Beyer.

More information: 

prensa@s2grupo.es

  • fb
  • tw
  • in
Related Articles
Show all →
Corporate
S2 Grupo, in collaboration with the Chamber of Commerce of Valencia, presents the 1st International Master in Cyber intelligence
Read more →
Corporate
The exponential growth of the types and number of cyber-attacks, main threat to the development of the business of organizations
Read more →
Corporate
50% of technology users do not use measures to protect their privacy
Read more →

Follow us in our newsletter

Subscribe through your email to stay up to date

S2 Grupo
© 2023 S2 Grupo
  • Press Center
  • Legal Disclaimer
  • Privacy Policy
  • Cookie policy
S2 Grupo utiliza cookies propias y de terceros para permitir tu navegación, fines analíticos y para mostrarte publicidad personalizada en base a un perfil elaborado a partir de tus hábitos de navegación (por ejemplo, páginas visitadas). Clica aquí para acceder a nuestra Política de Cookies. Puedes aceptar todas las cookies pulsando el botón “ACEPTAR” o configurar o rechazar su uso pulsando el Botón “CONFIGURAR”
ConfigurarAceptar cookies
Manage consent

Resumen de Privacidad

Este sitio web utiliza cookies para mejorar su experiencia mientras navega por el sitio web. De estas, las cookies que se clasifican como necesarias se almacenan en su navegador, ya que son esenciales para el funcionamiento de las funcionalidades básicas del sitio web. También utilizamos cookies de terceros que nos ayudan a analizar y comprender cómo utiliza este sitio web. Estas cookies se almacenarán en su navegador solo con su consentimiento. También tiene la opción de optar por no recibir estas cookies. Pero la exclusión voluntaria de algunas de estas cookies puede afectar su experiencia de navegación.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
CookieDurationDescription
pll_language1 yearThe pll _language cookie is used by Polylang to remember the language selected by the user when returning to the website, and also to get the language information when not available in another way.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Necessary
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
_GRECAPTCHA6 monthsThis cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
cookielawinfo-checkbox-analytics1 yearSet by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-functional1 yearThe cookie is set by the GDPR Cookie Consent plugin to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necesaria1 yearSet by the GDPR Cookie Consent plugin to store the user consent for cookies in the category "Necessary".
CookieLawInfoConsent1 yearRecords the default button state of the corresponding category & the status of CCPA. It works only in coordination with the primary cookie.
SAVE & ACCEPT
Powered by CookieYes Logo