The Bank of International Settlements’ Plan to Protect CBDCs Against Cyber Threats
The Bank of International Settlements (BIS) has released a framework aimed at safeguarding central bank digital currencies (CBDCs) from the same vulnerabilities that affect decentralized finance (DeFi). The framework specifically addresses risks associated with blockchain technology and smart contracts, which could potentially compromise CBDC systems.
Key Points:
1. DeFi Risks: The BIS framework acknowledges the operational and reputational risks posed by attacks on DLT protocols and smart contracts in the DeFi sector. Recent examples of smart contract hacks highlight the potential security threats faced by CBDC systems.
2. Diverse Cyber Threats: The study highlights the evolving cyber threat landscape due to the rise of the internet, telecommunication networks, and devices. It suggests that risks could extend to various components of CBDC systems, including consensus protocols, cross-chain bridges, oracles, and smart contracts.
3. Project Polaris: The framework is part of Project Polaris, an initiative aimed at creating secure and resilient CBDC systems. It provides central banks with guidance on CBDC design, implementation, planning, and operational considerations.
4. Enhancing Security Measures: The BIS recommends that central banks upgrade their procedures to protect against cyber attacks. It suggests the creation of “security and resilience functional teams” involved in all phases of CBDC programs to ensure the implementation of necessary security measures.
5. Embracing Modern Technologies: Central banks are advised to recognize the complexity of CBDC systems and adopt modern enabling technologies to enhance security and resilience.
Hot Take:
The BIS framework is a crucial step in addressing the potential risks faced by CBDCs. By proactively addressing cyber threats and providing guidance on security measures, central banks can enhance the safety and reliability of CBDC systems. This framework serves as a reminder of the importance of staying ahead of evolving cyber threats in the digital era.