Blockchain is not the answer to your security troubles, Google boss says

News
By published

Project Zero chief also calls for more collaboration in security industry

Despite potential use cases spreading from voting to healthcare, the use of blockchain technology to aid cybersecurity has been dealt a blow by one of the leading figures of the industry.

Speaking at the Black Hat USA conference in Las Vegas, Parisa Tabriz, Google director of engineering and the head of the company Project Zero security team, said that the use of blockchain when facing security challenges may still need more work.

In the opening keynote of the event, Tabriz said that “blockchain is not going to solve security problems...we have made great strides in the past decade, but the threat landscape is becoming increasingly complex and our current approach is insufficient.”

Google Chrome security

Tabriz went on to call for more collaboration across the security industry when it comes to dealing with the latest threats, and how Project Zero's work is hoping to alter the status quo.

Noting that the vast majority of the issues reported by Project Zero are now fixed within the 90-day disclosure period, she highlighted how this "offensive" strategy could be the future when planning security responses.

"Project Zero's strategy is to build a practical offensive security research pipeline to advance the broader understanding of exploitation amongst vendors. That ultimately leads to structural improvements and better end user security for the world," she said, noting that Project Zero has already found around 1,400 flaws.

"Making fundamental change to the status quo is hard, but necessary. It absolutely leads to upsetting people. If you're not upsetting people, you're not changing the status quo."

Tabriz also referenced noted the challenges that faced Google itself during the multi-year project to transition Chrome from HTTP to HTTPS as one of the most important breakthroughs at the company.

The six-year development process hit a number of hurdles and difficulties, but eventually paid off when Chrome was able to better protect its users from the Spectre and Meltdown attacks.

The project has also led to a major upswing in HTTPS adoption, which is now at 87 percent today compared to just 45 percent in Chrome in 2014, with Android rising from 29 percent four years ago to 77 percent today.

Via The Register

TOPICS
Mike Moore
Mike Moore
Deputy Editor, TechRadar Pro

Mike Moore is Deputy Editor at TechRadar Pro. He has worked as a B2B and B2C tech journalist for nearly a decade, including at one of the UK's leading national newspapers and fellow Future title ITProPortal, and when he's not keeping track of all the latest enterprise and workplace trends, can most likely be found watching, following or taking part in some kind of sport.

Latest in Security
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak
A major Keenetic router data leak could put a million households at risk
Code Skull
Interpol operation arrests 300 suspects linked to African cybercrime rings
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Multiple routers hit by new critical severity remote command injection vulnerability, with no fix in sight
Code Skull
This dangerous new ransomware is hitting Windows, ARM, ESXi systems
An abstract image of a lock against a digital background, denoting cybersecurity.
Critical security flaw in Next.js could spell big trouble for JavaScript users
Latest in News
Open AI
OpenAI unveiled image generation for 4o – here's everything you need to know about the ChatGPT upgrade
Apple WWDC 2025 announced
Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event
Hornet swings their weapon in mid air
Hollow Knight: Silksong gets new Steam metadata changes, convincing everyone and their mother that the game is finally releasing this year
OpenAI logo
OpenAI just launched a free ChatGPT bible that will help you master the AI chatbot and Sora
NetSuite EVP Evan Goldberg at SuiteConnect London 2025
"It's our job to deliver constant innovation” - NetSuite head on why it wants to be the operating system for your whole business
Monster Hunter Wilds
Monster Hunter Wilds Title Update 1 launches in early April, adding new monsters and some of the best-looking armor sets I need to add to my collection
More about security
cybersecurity

Chinese government hackers allegedly spent years undetected in foreign phone networks
Data leak

A major Keenetic router data leak could put a million households at risk
Page shows the getting started page on the Notability app.

I enjoyed testing this satisfying note-taking app, but its collaboration skills were weak
See more latest
Most Popular
Tesla Model Y 2025
Tesla’s EU sales are in freefall as VW races ahead, but the Model Y could change all that
Asus NUC 15 Pro+
Asus unveils its most powerful mini PC to date — but I don't think the Intel-powered NUC 15 Pro+ will compete with Strix Halo models
HDD
Seagate teams with Nvidia to build an NVMe hard drive proof of concept, more than 3 years after its last effort
Open AI
OpenAI unveiled image generation for 4o – here's everything you need to know about the ChatGPT upgrade
NetSuite EVP Evan Goldberg at SuiteConnect London 2025
"It's our job to deliver constant innovation” - NetSuite head on why it wants to be the operating system for your whole business
Apple WWDC 2025 announced
Apple just announced WWDC 2025 starts on June 9, and we'll all be watching the opening event
Hornet swings their weapon in mid air
Hollow Knight: Silksong gets new Steam metadata changes, convincing everyone and their mother that the game is finally releasing this year
OpenAI logo
OpenAI just launched a free ChatGPT bible that will help you master the AI chatbot and Sora
Monster Hunter Wilds
Monster Hunter Wilds Title Update 1 launches in early April, adding new monsters and some of the best-looking armor sets I need to add to my collection
cybersecurity
Chinese government hackers allegedly spent years undetected in foreign phone networks