中文

A forgery attack on the Block.co blockchain-based digital credential certification system

密码学与安全 2026-06-30 v1

摘要

Certification of digital documents, such as academic credentials, seems a particularly suitable application for the use of blockchain and distributed ledger technologies. Indeed, these technologies enable decentralized certification systems that rely on the immutability and persistence of their distributed ledgers. However, in the absence of a central trusted authority, it is not easy to guarantee the authenticity of the connection between the real identity of an academic institution and the digital identity of the certificate issuer. In this paper, we demonstrate that one of such systems, known as Block.co, has a vulnerability that allows the production of forged certificates that are recognized as valid by the system. Since this is an inherent limitation of the approach used for blockchain-based certification, our attack is likely to be extendable to other systems adopting the same approach.

引用

@article{arxiv.2606.31462,
  title  = {A forgery attack on the Block.co blockchain-based digital credential certification system},
  author = {Giacomo Zonneveld and Giulia Rafaiani and Marco Baldi},
  journal= {arXiv preprint arXiv:2606.31462},
  year   = {2026}
}

备注

8 pages, 9 figures, accepted for presentation at the 2nd IEEE International Workshop on Blockchain and Distributed Ledger Technologies (BlockDLT 2026)