Atlantic Council looks at how to maintain central bank digital currency cybersecurity
![](data:image/svg+xml;utf-8,<svg xmlns="http://www.w3.org/2000/svg" width="1080" height="638" />)
The thinktank looked at the interplay of performance, security and privacy in possible CBDC designs and made recommendations for optimizing it.
The U.S. thinktank Atlantic Council released a report Wednesday on cybersecurity issues related to central bank digital currencies (CBDC). The authors provide a generalized discussion of CBDC security, but with a clear focus on the United States and issues specific to it.
They determined that the security risks presented by a CBDC depend heavily on its design, with performance, security and privacy being balanced variously in different designs. The report looked at six design options, only three of which are being considered or deployed in real life.
Privacy was identified as the main risk from a CBDC for consumers. In some designs, a CBDC could store a record of user activity and transactions, leading to the risk not only of thetheft of funds but also the theft of users’ personal information. The report says that:
“A CBDC could contain large volumes of personally identifiable information ranging from what prescription drugs you buy or where you travel each day.”
Reduced regulatory oversight was seen as a risk from the introduction of a CBDC of any type as well. Nonetheless, increased privacy can enhance security, the report said, while still providing “some level” of regulation. The Fourth Amendment to the U.S. Constitution, protecting against unreasonable search and seizure, should apply to the CBDC ledger, the report noted, forcing prosecutors to obtain a court-issued warrant before accessing it.
5 comments