A study on the security weakness analysis of chaincode on hyperledger fabric and ethereum blockchain framework

The hyperledger fabric and the ethereum, a blockchain framework, are used for developing blockchain solutions and applications in a modular architecture. It also is used as a technology for developing blockchain-based products, solutions and applications in enterprises. The chaincode is used to write smart contracts that work with these frameworks, which may contain security weaknesses inside the chaincode. Due to the nature of blockchain, no one can modify the contract arbitrarily when the contract is completed and the block is created. Therefore, if the chaincode with the security weakness is contracted, it cannot be modified. Therefore, smart contracts which is implemented with chaincode must be analyzed for security weaknesses before the smart contract is completed.This paper define the security weakness items of the chaincode to analyze the security weaknesses of the chaincode running on the hyperledger fabric blockchain network and the ethereum, and among the defined items, a study have been conducted to diagnose security weakness items that can be analyzed through AST (Abstract Syntax Tree) traversal. By analyzing the security weaknesses of the chaincode, it can ensure safety and prevent the risk of hacking. In addition, the smart contract can be executed safely and efficient operation can be expected.