Cybersecurity, Critical Infrastructure and Blockchain Solutions

The Problem:

U.S. critical infrastructure—like transportation, communication, health, water, and energy—is the backbone of the country’s economy. Yet, it remains increasingly vulnerable to cybersecurity disruptions from adversaries. The Cyber Threat Intelligence

Integration Center, under The Office of the U.S.Intelligence recently reported¹

Furthermore, FBI Director Christopher Wray warned earlier this year that “China’s hackers are targeting American civilian critical infrastructure, pre-positioning to cause real-world harm to American citizens and communities in the event of conflict.”² China is only one of several nation-states undermining U.S. cyber defenses, but Chinese advanced persistent threats (APTs) consistently rank among the most capable and intrusive. In December 2023, U.S. investigators discovered that hackers known as Volt Typhoon, affiliated with the Chinese People’s Liberation Army, had launched cyberattacks against government offices and infrastructure. These attacks aimed to gather intelligence, monitor citizens, and prepare to disable or degrade systems’ performance in future operations targeting the U.S. and its partners. Evidence suggests these APTs may have been active within U.S. networks since 2019.

Most recently, hackers breached the networks of the largest water utility company in the U.S. that provides drinking and wastewater services to more than 14 million people in 14 states and 18 military installations.³ One can only imagine how our adversaries could exacerbate national emergencies and disasters by degrading these critical systems in times of greatest need and vulnerability.

The Solution:

Blockchain technology can help mitigate some of these risks; they are inherently secure, and offer several key advantages that can bolster American cybersecurity capabilities:

Decentralization – Unlike traditionally centralized databases, blockchains operate on a distributed network of nodes. This decentralized architecture eliminates single points of failure, making it significantly more challenging for attackers to disrupt or compromise the entire network.
Immutable Ledgers – Blockchain employs cryptographic hash functions to secure transactions. Each block in the chain contains a hash of the previous block, creating a cryptographic linkage that ensures immutability. This property ensures a permanent, auditable record that is highly resistant to tampering. This is especially important in cybersecurity, where edges and nodes in a network can hold and communicate threat profiles and defensive resources more efficiently than regular, distributed updates pushed out by centralized entities.
Enhanced Transparency and Trust – A blockchain is a distributed, shared ledger where all participants can observe and verify transactions, fostering trust and facilitating identification and mitigation of anomalies or fraudulent activity.

What is to be done?

U.S. allies and adversaries have either developed or are currently developing robust and progressive national blockchain strategies to leverage the high security, high fidelity, and low latency the technology offers. The U.S. government has consistently acknowledged the importance of blockchain technology and the need for policy development to support its secure deployment. For instance, the National Institute of Standards and Technology (NIST) Cybersecurity Framework highlights the importance of incorporating blockchain into cybersecurity strategies.⁴ Additionally, Executive Order 14028, Improving the Nation’s Cybersecurity, underscores the need for enhanced cybersecurity measures and encourages the exploration of blockchain technologies to strengthen the nation’s cybersecurity posture.

However, many U.S. policymakers have ignored the seriousness of the threat posed in cyberspace and the possibilities of blockchain to mitigate those threats.

The Digital Chamber (TDC) recommends that the U.S. government engage the blockchain industry and support its holistic development via an increase in strategic investment and research through agencies like the National Science Foundation, In-Q-Tel, Defense Advanced Research Projects Agency (DARPA), NIST, the Department of Homeland Security, the Department of Defense, and others.

It is vital for U.S. national security interests to lead in advanced computing and blockchain innovation, to ensure networks are safe, information remains secure, and the U.S. can respond effectively to emerging threats.