Karim Eldefrawy

Cryptography, Cybersecurity, Privacy

Co-founder and CTO at Confidencial.io
2017-2021: SRI
2011-2016: HRL Laboratories
2006-2010: PhD@UC Irvine

Scientific curiosity

Scientific knowledge map · Paper #40

BlockCIS: A Blockchain-Based Cyber Insurance System

Tancrède Lepoint, Gabriela F. Ciocarlie, and Karim Eldefrawy

2018 · IEEE International Conference on Cloud Engineering (IC2E), BAT workshop track

  • Applied
  • System
  • Implementation
  • protocol

What does the paper try to establish?

Can a permissioned distributed ledger connect insured organizations, insurers, third-party security services, and auditors in a continuous, auditable cyber-risk feedback loop rather than relying only on static questionnaires and coarse premium formulas?

What is the proposed answer?

BlockCIS specifies a four-party architecture in which entity-local nodes collect or process security evidence and exchange authorized transactions through a permissioned blockchain. The paper instantiates the design with Hyperledger and discusses smart-contract automation, incentives, and confidentiality options, but leaves operational deployment and validation of computed cyber-risk scores to future work.

Abstract

While the cyber insurance market has been growing significantly in recent years, its insurance providers face several challenges: first, there is a lack of standardized frameworks to rate “cyber”; second, there’s a shortage of relevant data to calculate premiums; and third, security postures of insured organizations constantly change. Unlike other types of insurance, cyber insurance requires creating a continuous feedback loop between customers and insurers. In this article, we introduce BlockCIS, a blockchain-based continuous monitoring and processing system for cyber insurance. BlockCIS aims to realize an automated, real-time, and immutable feedback loop between the insurer, its customer, third parties and potential auditors. As an example instantiation, we prototype BlockCIS using the open source Hyperledger blockchain framework.

Provenance: Transcribed from the public author-uploaded full text; only typography, discretionary hyphenation, and line-break artifacts were normalized. Local file fixity has not been recorded.

Six dimensions, kept separate

The chart summarizes documented evidence and process. It is not a correctness probability, confidence score, or ranking, and no composite score is calculated.

The visual spider chart requires JavaScript. The complete values and rationales follow in text.

LowMediumHighN/A = not assessed

A smaller value means less documented support for that dimension, not that the paper is false or unimportant.

Epistemic evidence Medium

The paper supplies an explicit architecture, role and data-flow model, proposed privacy options, and a Hyperledger instantiation. It does not report an operational deployment, controlled performance evaluation, validated risk model, formal end-to-end security proof, or independently reproduced artifact.

BlockCIS node placement, transaction flow, and entity-local processing Hyperledger design instantiation Conclusions, supported scope, and future validation
Auditability High

A public author-uploaded full-text copy and the official DOI make the paper's architecture, assumptions, and future-work boundaries directly inspectable. A stable local binary, hash, implementation repository, configuration, and experimental data are not represented.

Problem statement, system objective, and prototype overview Official publication identity
Production provenance Medium

Named authorship, affiliations, venue, date, DOI, and author/coauthor publication routes establish a baseline human and lifecycle provenance trail. Contributor roles, revision history, tool use, implementation lineage, and explicit final approval have not been audited.

Problem statement, system objective, and prototype overview Official publication identity Independent coauthor-hosted publication listing
External scrutiny Medium

Publication in the IC2E BAT workshop proceedings establishes external venue exposure, but review reports, rebuttal, independent security analysis, reproduction, operational audit, and correction history were not located.

Official publication identity
Reception High

OpenAlex reported 31 citations on 2026-07-11. Under the author-defined corpus rule, 11 or more located citations is High. The count is index- and date-dependent and is not evidence of correctness, deployment, or actuarial validity.

Dated citation-count snapshot
Contribution significance Medium

The paper connects continuous technical posture evidence, permissioned ledgers, and cyber-insurance administration in one concrete architecture and the dated citation record shows follow-on attention. Priority, operational adoption, and validated insurance impact were not independently established.

Problem statement, system objective, and prototype overview Conclusions, supported scope, and future validation Dated citation-count snapshot

Assessment: Ai draft author review pending · 2026-07-11 · rubric 0.2. These dimensions describe documented support and process, not truth, correctness, or a universal ranking. No composite score is calculated.

Hierarchical knowledge map

Collapse a branch for a top-level reading, or follow its source links and child nodes to audit the evidence and boundaries underneath it.

paper

BlockCIS: A Blockchain-Based Cyber Insurance System

A systems-and-protocol paper proposing a permissioned-blockchain infrastructure for continuously collecting and processing cyber-risk information shared among an insured organization, insurer, specialized third parties, and auditors, with an example Hyperledger implementation.

Problem statement, system objective, and prototype overview
  1. system model Four-party permissioned setting specified

    The system connects an insured entity, its insurer, specialized third-party services, and potential auditors. Participation, consensus, ledger maintenance, and transaction access occur in a restricted permissioned network rather than an open public cryptocurrency.

    Cyber-insurance and permissioned-blockchain background Insured, insurer, third-party-service, and auditor roles
  2. method Continuous monitoring and processing workflow specified

    BlockCIS couples entity-local data collection and analytics with a shared append-only transaction history. The ledger coordinates mutually interested parties, while smart contracts encode insurer-side business logic; blockchain payment is expressly decoupled from the design.

    BlockCIS node placement, transaction flow, and entity-local processing
    1. mechanism

      Participation incentives

      proposed

      Insurers gain more current technical evidence for tailoring premiums, while insured organizations gain a record with which to demonstrate posture changes and whether an incident falls within agreed coverage.

      Participation incentives and insurance-use cases
    2. mechanism

      Confidentiality and selective disclosure

      design options

      The paper discusses access policy, encryption, and homomorphic-encryption techniques as options for limiting disclosure or enabling computation over protected evidence; these are architectural options, not a single formally analyzed end-to-end privacy construction.

      Confidentiality and selective-disclosure design options
  3. implementation

    Hyperledger instantiation

    prototyped

    The authors prototype the design using the open-source Hyperledger ecosystem, whose permissioned membership, replicated transaction processing, modular components, and chaincode smart contracts match the intended multi-organization setting.

    Hyperledger design instantiation
  4. claim group Main claims source asserted

    The source claims architectural feasibility and a useful cyber-insurance feedback structure. It does not report an operational deployment, statistically validate a risk-scoring model, or prove that every proposed privacy and security property holds in a complete implementation.

    Problem statement, system objective, and prototype overview Conclusions, supported scope, and future validation
  5. evidence group Evidence design and prototype

    Evidence consists of a role-and-data-flow architecture, use-case and incentive analysis, privacy-design alternatives, and an example Hyperledger prototype. The paper does not present a production deployment, controlled performance study, or independently reproduced artifact.

    BlockCIS node placement, transaction flow, and entity-local processing Participation incentives and insurance-use cases Hyperledger design instantiation Conclusions, supported scope, and future validation
    1. evidence

      Open-source-platform instantiation

      implementation report

      The Hyperledger construction shows how the design could be instantiated on a permissioned blockchain platform, but this map located no archived BlockCIS code, deployment recipe, test data, or benchmark package tied to the publication.

      Hyperledger design instantiation
  6. limitation group Scope and limitations material

    The ledger can preserve submitted transactions but cannot by itself establish that sensors, logs, analytics, external feeds, or risk scores are truthful. Organizational governance, privacy configuration, and insurance validity remain separate concerns.

    BlockCIS node placement, transaction flow, and entity-local processing Confidentiality and selective-disclosure design options Conclusions, supported scope, and future validation
    1. limitation

      Immutability is not input correctness

      inferred system boundary

      An immutable ledger can make a submitted record difficult to alter later; it does not certify the integrity, completeness, calibration, or semantics of evidence before submission. Those properties require trusted collection and analytic mechanisms outside consensus alone.

      BlockCIS node placement, transaction flow, and entity-local processing
    2. limitation

      Deployment and risk-score validation remain future work

      author identified future work

      The conclusion explicitly leaves operational deployment and measurement of how well computed cyber-risk scores predict attacks or breaches for future work, so the paper does not establish actuarial accuracy or real-world effectiveness.

      Conclusions, supported scope, and future validation

Source index

Locators state the depth of the current audit. PDF page numbers, where present, are one-based file pages; metadata-, summary-, and abstract-bounded records explicitly identify their limitations.

  1. Problem statement, system objective, and prototype overview Abstract and Introduction
  2. Cyber-insurance and permissioned-blockchain background Section II
  3. Insured, insurer, third-party-service, and auditor roles Section III-A and Figure 1
  4. BlockCIS node placement, transaction flow, and entity-local processing Section III-B and Figures 2-4
  5. Participation incentives and insurance-use cases Section III-C
  6. Confidentiality and selective-disclosure design options Section III, privacy discussion
  7. Hyperledger design instantiation Section IV
  8. Conclusions, supported scope, and future validation Conclusion
  9. Official publication identity IC2E 2018, pages 378-384, DOI 10.1109/IC2E.2018.00072
  10. Independent coauthor-hosted publication listing 2018 publications, BlockCIS entry
  11. Dated citation-count snapshot OpenAlex reported 31 citing works when accessed 2026-07-11