-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathMain.tex
132 lines (108 loc) · 4.07 KB
/
Main.tex
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
\documentclass[a4paper, 12pt]{article} % Fuente 12pt
\usepackage[utf8]{inputenc}
\usepackage[T1]{fontenc}
\usepackage{hyperref}
\usepackage[left=3cm, right=3cm, top=3.5cm, bottom=3.5cm]{geometry} % Márgenes recomendados
\usepackage{times} % Fuente Times New Romans
\usepackage[english]{babel}
\usepackage[style=ieee, backend=bibtex,citestyle=numeric-comp]{biblatex} % Bibliografía en formato IEEE
\usepackage{sectsty}
\usepackage{cover}
\usepackage{graphicx}
\graphicspath{ {images/} } % Directorio imágenes
\usepackage{listings} % Formateo código
\usepackage{scrextend}
\usepackage{longtable}
\usepackage{pgfplots} % Graficas de barras
\usepackage{pgf-pie} % Graficas de tartas
\usepackage{multirow} % multiples filas en las tablas
% Lista de acronimos
\usepackage[acronym]{glossaries}
\makeglossaries
\input{Acronyms}
\input{./assets/solidity-highlighting.tex} % Resaltado de solidity
\input{./assets/json-highlighting.tex} % Resaltado de json
\input{./assets/javascript-highlighting.tex} % Resaltado de JS
\sectionfont{\MakeUppercase} % Secciones en mayúsculas
\bibliography{Bibliography.bib}
\Director{Víctor Rampérez Martín}
\Lugar{Madrid}
\Grado{Graduado en Ingeniería Informática}
\Trabajo{TRABAJO FIN DE GRADO}
\author{Víctor Nieves Sánchez}
\date{Enero de 2021}
\title{Alastria Blockchain Ecosystem. Security and privacy in Self-Sovereign Identity}
\begin{document}
\maketitle
\null
\newpage
\pagenumbering{roman} % Numeración romana hasta la primera sección
\begin{otherlanguage}{spanish}
\renewcommand{\spanishabstractname}{Agradecimientos}
\begin{abstract}
\input{sections/agradecimientos}
\end{abstract}
\end{otherlanguage}
\newpage
\tableofcontents
\newpage
\listoffigures
\newpage
\listoftables
\newpage
\lstlistoflistings
\newpage
\printglossary[type=\acronymtype]
\newpage
\begin{otherlanguage}{spanish}
\renewcommand{\spanishabstractname}{Resumen}
\begin{abstract}
\normalsize
\input{sections/resumen}
\end{abstract}
\end{otherlanguage}
\newpage
\begin{abstract}
\normalsize
\input{sections/abstract}
\end{abstract}
\newpage
\pagenumbering{arabic} % Numeración árabe en la primera sección
\UseRawInputEncoding % UTF-8 Listings
\input{sections/introduction}
\newpage
\section{State of the Art}
\input{sections/State of the Art/blockchain}
\input{sections/State of the Art/ethereum}
\input{sections/State of the Art/json-rpc}
\input{sections/State of the Art/jwts}
\input{sections/State of the Art/ssi}
\newpage
\section{Alastria ID}
\input{sections/Alastria ID/alastria}
\input{sections/Alastria ID/actors}
\input{sections/Alastria ID/spec}
\input{sections/Alastria ID/example}
\input{sections/Alastria ID/structure}
\newpage
\section{Security audit}
In this section a security audit of the Smart Contracts and the \textit{TypeScript} library will be performed. Various tools will be used and the vulnerabilities found will be listed along with their level of criticality.
\input{sections/Security Audit/Smart Contracts}
\input{sections/Security Audit/library}
\newpage
\section{PoC attack}
As mentioned previously, in this section we are going to present a \acrfull{poc} by exploiting a vulnerability found in the section adobe, more specifically the vulnerability found in the dead code analysis, in the function \textit{"deleteIdentityIssuer"}. The \acrshort{poc} agents will be explained, then it will be shown graphically what they should be able to do and what they really can do. Later, the attack flow will be explained and the code written to perform it. Finally, the criticality of the attack will be discussed again, as well as the reasons and consequences of what it would mean to reach production with such a vulnerability.
\input{sections/PoC/agents}
\input{sections/PoC/flow}
\input{sections/PoC/attack}
\input{sections/PoC/criticity}
\newpage
\section{Conclusions}
\input{sections/conclusions}
\newpage
\section{Future Work}
\input{sections/future work}
\newpage
% \nocite{*} % Cita todas las ref (incluidas las no citadas)
\printbibliography[heading=bibnumbered] % Última sección, numerada, para la bibliografía
\end{document}