METHOD FOR ENHANCING THE SECURITY OF DECENTRALIZED SYSTEMS THROUGH ADAPTIVE ANOMALY DETECTION IN BLOCKCHAIN NETWORKS USING MACHINE LEARNING
DOI:
https://doi.org/10.28925/2663-4023.2026.33.1141Keywords:
blockchain; decentralized systems; cybersecurity; anomaly detection; machine learning; graph analysis; trust metric; Isolation Forest, information technology.Abstract
The article addresses the problem of ensuring the security of decentralized information systems, particularly blockchain networks, which are becoming widely adopted in modern information technologies. It is determined that the characteristic features of such systems include the absence of centralized control, the distributed nature of data processing, and network openness. On the one hand, these features increase fault tolerance, but on the other hand, they create new attack vectors and complicate the threat detection process. The main types of attacks inherent to blockchain environments are analyzed, including Sybil attacks, double-spending attacks, and anomalous node behavior. The necessity of developing proactive threat detection methods based on analyzing the behavioral characteristics of network participants is substantiated. A method for enhancing the security of blockchain networks is proposed, which combines a graph-based representation of the transactional structure, extraction of informative features, and the application of machine learning algorithms. The blockchain network is formalized as a directed graph, allowing for the consideration of topological and temporal aspects of node interactions. A feature space is formed, including transactional, temporal, structural, and behavioral characteristics.To detect anomalies, the Isolation Forest algorithm is used, which effectively identifies nodes with atypical behavior without the need for labeled data. Additionally, an adaptive node trust metric is introduced, which takes into account both the anomaly level and the deviation of behavioral characteristics from the normal state, thereby improving the accuracy and stability of the assessment. Conducted simulations confirm the effectiveness of the proposed approach. The obtained results demonstrate an increase in anomaly detection accuracy by 7-13% compared to traditional methods, as well as a reduction in the number of false positives. The proposed method is characterized by adaptability, scalability, and the ability to be integrated into real blockchain platforms. The practical value of the work lies in the possibility of using the obtained results to create security monitoring systems for decentralized environments, as well as to enhance the reliability of information systems in the fields of financial technology, cybersecurity, and distributed computing.
Downloads
References
Ahmed, M., Naser Mahmood, A., & Hu, J. (2016). A survey of network anomaly detection techniques. Journal of Network and Computer Applications, 60, 19-31. https://doi.org/10.1016/j.jnca.2015.11.016
Cholevas, C., et al. (2024). Anomaly detection in blockchain networks using unsupervised learning: A survey. Algorithms, 17(5), 201. https://doi.org/10.3390/a17050201
Conti, M., et al. (2018). A survey on security and privacy issues of Bitcoin. IEEE Communications Surveys & Tutorials, 20(4), 3416-3452. https://doi.org/10.1109/COMST.2018.2842460
Zheng, Z., et al. (2018). Blockchain challenges and opportunities: A survey. International Journal of Web and Grid Services, 14(4), 352. https://doi.org/10.1504/IJWGS.2018.095647
Luo, Y., et al. (2021). Deep learning-based anomaly detection in cyber-physical systems. ACM Computing Surveys, 54(5), 1-36. https://doi.org/10.1145/3453155
Hodge, V., & Austin, J. (2004). A survey of outlier detection methodologies. Artificial Intelligence Review, 22(2), 85-126. https://doi.org/10.1023/B:AIRE.0000045502.10941.A9
Lee, M. S., & Jang, D. J. (2020). A survey of blockchain security issues. JP Journal of Heat and Mass Transfer, Special Issue, 29-35. https://doi.org/10.17654/HMSI120029
Mostafa, M. (2020). Bitcoin’s blockchain peer-to-peer network security attacks and countermeasures. Indian Journal of Science and Technology, 13(7), 767-786. https://doi.org/10.17485/ijst/2020/v13i07/149691
Ramchandani, H. K. (2012). Sybil attack. Engineering & Technology Reference, 1(1). https://doi.org/10.1049/etr.2016.0101
Sakurada, M., & Yairi, T. (2014). Anomaly detection using autoencoders with nonlinear dimensionality reduction. In Proceedings of the 2nd Workshop on Machine Learning for Sensory Data Analysis (MLSDA 2014). ACM. https://doi.org/10.1145/2689746.2689747
Malinov, V., Zhebka, V., Kokhan, I., Storchak, K., & Dovzhenko, T. (2024). Cryptocurrency as a tool for attracting investment and ensuring the strategic development of the bioenergy potential of processing enterprises in Ukraine. Lecture Notes on Data Engineering and Communications Technologies, 195, 387-405. https://doi.org/10.1007/978-3-031-54012-7_17
Zhebka, V., Zhebka, S., Bazhan, T., Skladannyi, P., & Sokolov, V. (2024). Methodology for choosing a consensus algorithm for blockchain technology. CEUR Workshop Proceedings. https://ceur-ws.org/
Published
How to Cite
Issue
Section
License
Copyright (c) 2026 Андрій Аронов
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
