Beyond Bitcoin: Emerging Applications for Blockchain Technology

Statement of Chris Jaikaran Analyst in Cybersecurity Policy Before Committee on Science, Space and Technology Subcommittee on Oversight & Subcommittee on Research and Technology U.S. House of Representatives Hearing on “Beyond Bitcoin: Emerging Applications for Blockchain Technology” February 14, 2018 Congressional Research Service https://crsreports.congress.gov TE10025 Congressional Research Service 1 Introduction Chairs Abraham and Comstock, Ranking Members Beyer and Lipinski, and Members of the Committee, thank you for the opportunity to testify on blockchain today. My name is Chris Jaikaran and I am an Analyst in Cybersecurity Policy at the Congressional Research Service. In this role, I research and analyze a variety of information technology issues of interest to Congress, including emerging technologies like blockchain. My testimony today includes an explanation of blockchain technology, potential applications for it, limitations and concerns in using the technology, and potential considerations for Congress. My testimony today is based solely on publicly available information and CRS analysis. Blockchain is not a new technology, rather it is an innovative way of using technologies we already have. This is done so that parties who may not trust each other can agree on the current distribution of assets and who has those assets, so that they may conduct new business. But, despite the hype surrounding the technology, it has certain pitfalls which can inhibit its utility. Blockchain Explained A blockchain is a digital ledger that allows parties to transact without the use of a central authority to validate those transactions. The use of a central authority (i.e., a third party) can be avoided because in a blockchain, as transactions are added, the identities of the parties conducting those transactions are verified, and transactions are verified as they are added to the ledger as a block of transactions. The ledger is auditable because each block of transactions is dependent upon the previous block in such a way that any change would alert other users of a change to the history of transactions. The strong relationships between identities, transactions, and the ledger enable parties that may not trust each other to agree on the state of resources as logged in the ledger. With an agreement on that history, parties may then conduct a new transaction with a shared understanding of who has which resource and of their ability to trade that resource. Technology Blockchain is not a new technology; rather it is an innovative way of using existing technologies. Four particular technologies are used to enable blockchain technologies: asymmetric key encryption; hashes; Merkle trees; and peer-to-peer networks. Asymmetric Key Encryption Asymmetric key encryption, also known as a public-private key cryptosystem, functions to create identities on a blockchain. A user creates two elements: a public key which helps identify their transactions on the blockchain, and a private key which is necessary to conduct a transaction with the public key. Asymmetric encryption allows for the authentication of users because only those with the private key can decrypt data encrypted with the public key or encrypt the data for public key decryption, thereby creating a signature.1 The public key may be broadcast on the blockchain itself, or may be tied to an address which is broadcast instead. In some blockchain systems, the real-world identity of each address or public key is logged so that individual users may be tracked. In others, a user may be able to generate public and private keys 1 For more information on encryption see CRS Report R44642, Encryption: Frequently Asked Questions, by Chris Jaikaran. CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 2 independently and broadcast the public key or address without identifying themselves, creating a pseudonymous identity on the blockchain. In a blockchain, the public key is used to identify a user on the blockchain and verify the resources tied to that user’s public key or address. The resource could not be used unless the holder of the public key to which the resource is tied unlocks (or decrypts) the resource with their private key, allowing it to be transferred to another identity on the blockchain (a public key or address) and locked with that second user’s private key. This transaction would be logged on the blockchain, so that other users could verify the resource has changed possession. An example of asymmetric key encryption, other than blockchain, is used daily when a user connects to a website via Hypertext Transfer Protocol-Secure (HTTPS). To enable the secure connection to the website, a user starts the process by sending a request to the site. The site then sends its public key to the user, and the user’s computer then generates a new key (to be used in the HTTPS connection), encrypts it with the website’s public key, and sends that back. The user knows that only the website that has the private key could decrypt the information the user just sent. With the new, user-generated key, the website creates the secure connection with the user, indicated to the user by the HTTPS icon (frequently a lock symbol) in the browser window. Hash Values A hash uses similar mathematical functions as an encryption method to produce a string of characters as an output given some data as input. This is a one-way function, meaning a hash value may be created from an input, but the input cannot be recreated from the hash. In blockchains, a number of transactions are tranched together to make a single block, which is then hashed. Hash values are used to validate the integrity of a block. Any alterations to the transactions that make up a block will change the hash value of the block as a whole. If a block’s hash value stays the same over time, users can be sure that the transactions in that block have not been tampered with. This allows users on the blockchain to determine whether or not they can trust the history on the blockchain. Merkle Trees Databases and ledgers are large and are constantly being edited as new entries are added and data is modified or deleted. If a person wanted to have a hash value for the database, they would have to constantly hash it, and maintain a way of ensuring they have the right hash value to align with the current state of the system in order to judge its integrity. Additionally, the larger the database becomes, the more computationally intensive hashing it becomes. A Merkle tree is a cryptographic concept introduced by Ralph Merkle in 1980 as a way around this problem.2 In a Merkle tree, data is segmented apart from a single whole data file. There is a root block of data with a hash value, then subsequent blocks of data (sometimes referred to as child, branch, or leaf blocks) that have their own hash value. Each subsequent block of data takes the hash value of their previous block (sometimes referred to as a parent block) as an input in the creation of the hash value of the new block. This creates a chain or tree of hash values, cryptographically tying new blocks of data to previous ones in a way that prohibits altering previous data. If data in a previous block were to be added, modified, or deleted, the hash value of the subsequent blocks of data would not compute to what they would need to be, alerting users that a change was made. This also allows hash values to be created for smaller, more Ralph C. Merkle, “Protocols for Public Key Cryptosystems,” conference paper, Oakland, CA, April 1980, at http://www.merkle.com/papers/Protocols.pdf. 2 CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 3 discrete blocks of data which is computationally less resource intensive than rehashing an entire set of data each time an edit is made. Blockchains borrow the concept of Merkle trees to make hash chains. In a blockchain, a first block is created and a hash value is computed for it. This is the root block. Subsequent blocks then use the hash value of the previous block in the chain as one of the inputs to create that next block. This chaining of hash values creates a strong relationship between blocks on the chain, and an auditable and immutable record of the transactions on the blockchain. Peer-to-Peer Networks A peer-to-peer (P2P) network allows a disparate system of computers to connect directly with each other without the reference, instruction, or routing of a central authority. P2P networks allow for the sharing of files, computational resources, and network bandwidth among those in the network. In a blockchain, a P2P network allows the users of the blockchain to broadcast directly to and among each other the current state of the blockchain (so that users may agree on the history of transactions), and when a new block is added. This also allows for redundancy of the data in the blockchain, as any user may download a complete copy of the current ledger of transactions and add a new block, so that there will not be a single point of failure for the blockchain if a node on the network goes down. In some blockchain implementations, users do not host copies of the ledger among themselves. Instead, users use a cloud service provider (CSP) to maintain active and back-up copies of the blockchain, and compute the transactions and blocks as they happen. In these cases, peer-to-peer networking is necessary to run the blockchain. While the CSP is not a central validating authority in this example, it does become a third party to the transaction. Transactions in a Blockchain Blockchains consist of a series of blocks of transactions. A transaction is an event in which a resource or asset changes possession from one party to another. These individual transactions are signed by the users engaging in those transactions through the use of public-private key encryption. Because the private key is necessary to release and accept a resource in a transaction on the blockchain, the users transacting on the blockchain are, in effect, signing the transaction to ensure its security. Transactions are grouped together and made into a block which is validated upon its creation through the act of mining for the creation of blocks (mining is further explained below). The integrity of the entire ledger is ensured by each block having a hash value which is dependent on the previous block’s own hash value. Each of these three steps relies on strong cryptography which ensures the validity of the ledger. Transactions may not post immediately to a blockchain. If a lot of transactions are occurring in a short amount of time, the blockchain platform may create a pool of pending transactions which are processed in accordance with rules of that blockchain—which may allow for fees, user priority, or some other method to post certain transactions into a block before others. Blockchain Governance A blockchain can be public or private. In a public blockchain, anyone can create a public-private key pair and download a copy of the blockchain. This is usually accomplished through a software package which governs transactions on the blockchain. In a private blockchain, the membership of users on the blockchain is controlled. In private blockchains, the users authorized to participate may be bound by contractual relationships with each other, their blockchain addresses may be closely tied to their realworld identities, or participation on that blockchain may be agreed upon by other members in the CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 4 blockchain. In any case, members of a private blockchain may be more trusting of each other than in a public blockchain. A blockchain can be permissioned or permissionless, which is independent of whether the blockchain is public or private. A permissioned blockchain is one in which the permission of a user is assigned to them. Some users may only be able to view a whole or portion of the blockchain, others may be able to add new blocks. In this system, the administrator(s) do not serve as a central authority, since they do not govern the creation of blocks on the blockchain, just the rights of users on the blockchain. In a permissionless blockchain, all users have equal rights, with any one able to download the full blockchain and have an opportunity to potentially add additional blocks. Discussing a blockchain as public or private refers to the level of freedom users have to create identities on that blockchain. Discussing a blockchain as permissioned or permissionless refers to the level of access the user would have on that blockchain. Users on the blockchain must reach consensus on the rules for creating and publishing new blocks and resolving disagreements. Blockchains have users and nodes on the blockchain platform. The users on a blockchain could be the individuals, businesses, or other identities which have a public-private key pair and conduct transactions. A node is a computing system on that blockchain. A user may have a node (e.g., an individual’s computer or a business’s computing network), or a group of users could pool resources to create a single node (e.g., users who share their computing power to mine for new blocks on the blockchain). In a blockchain platform that uses a CSP, the CSP is a node on the blockchain, but may also be a user. The creation and publication of a new block in the blockchain is called mining. In mining blocks, users seek to add the next block to the chain. Mining is incentivized by improving the user’s standing in that blockchain, through either a monetary, reputational, or stake award for adding new blocks. New blocks may be added to a blockchain through a variety of methods. Three such methods are proof of work, proof of stake, and round robin. In a proof of work scheme, those seeking to add a block to the blockchain are presented a difficult computational problem. By solving the problem, they win the opportunity to post the next block and possibly a reward for doing so. Their solution is broadcast to others users who can validate it immediately without going through the same resource intensive computation required to solve the problem. In this scheme, the problem is frequently a direction that the hash value contains certain elements (e.g., the value begins with four zeros). In order to produce a hash value with those elements, additional information is added as an input (along with the previous block’s hash value, the transactions in the block, data and time information, etc.). This additional information is called a nonce, and could be as simple as a number which would alter the hash value. Finding the nonce value that solves the problem wins for that miner the right to publish the next block. In a proof of stake scheme, the next block may be awarded to the user who has an appropriate stake in that block. This may be because the block contains transactions regarding that user. Or, the user has an X percentage of stake in that blockchain, so they are awarded the right to publish X percent of blocks to that blockchain. Proof of stake schemes are computationally less resource intensive than proof of work. In the round robin scheme, users on the network take turns adding new blocks. Because some level of trust is necessary for round robin schemes to work, they are used in permissioned blockchains. If there is a disagreement in the blockchain, most users on the node will consider the longest chain on the block to be the valid ledger and use that one as the basis for future transactions. In the event that two different miners publish blocks at the same time, and those blocks contain different information, blockchains may allow both blocks to be published for that round, then allow the system to resolve itself upon the publication of the next block, which would then create the largest chain of transactions, and therefore, the most trusted ledger. Another way of resolving disagreements is through using byzantine CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 5 fault tolerance, whereby users on the blockchain platform will vote on which block they choose to accept and the plurality of votes determines the next block to be published.3 Blockchain Uses Blockchain is not a panacea technology. A blockchain records events as transactions when they happen, in the order they happen, in an add-on only manner. Previous data on the blockchain cannot be altered, and users of the blockchain have access to the data on the blockchain in order to validate the distribution of resources. If an entity has critical data that it wants to share, a combination of current database, cloud, and identity management technologies will likely be adequate for its needs. However, if the entity seeks to have its data be immutable and auditable, then a blockchain may be appropriate. While an entity may find immutable and auditable transactions enticing, the inability to edit those transactions (even in cases of error, when an additional invalidating transaction will be necessary) may still make blockchain a suboptimal record keeping technology. Examples of blockchain uses that are in use, are being piloted, or have been discussed are listed below, in alphabetical order. Cryptocurrencies Bitcoin is the most popular cryptocurrency, garnering the largest market share, and arguably initiated the interest in blockchain technology. Cryptocurrencies, like Bitcoin, are built to allow the exchange of some digital asset of value (the cryptocurrency) for a good or service.4 They are frequently permissionless and use a proof of work model to add blocks. In these systems, anyone can create a wallet which includes their private key, their public key, and an address which is derived from their public key. They then acquire (through mining, or purchase) the cryptocurrency, and add that as a transaction to the blockchain, so that their address is linked to their value. If they purchase something, they will then unlock the cryptocurrency with their private key, transfer it to the seller who then locks it with their private key. This transaction is published to the blockchain so all users are able to validate that the buying user has that much less of the cryptocurrency and the selling user has that much more of it. Each cryptocurrency has its own blockchain. Healthcare There have been a variety of proposals for using blockchain in the healthcare sector, many of which involve the management of electronic health records (EHRs). One such proposal is to use the blockchain to authenticate patients and health providers on a blockchain in order to enable the sharing of EHRs.5 In this proposal, the EHR is held on a system hosted by the provider, but existence of the record is published to the blockchain, and the patient may use the blockchain to authorize who may have access to that record. However, applications of blockchain for healthcare implicate both federal laws (i.e., the Health Insurance Portability and Accountability Act of 1996, HIPAA, P.L. 104-191, and the Health Information Technology for Economic and Clinical Health Act, HITECH, Title XIII of Division A of P.L. 111-5) and state health record privacy laws, which may inhibit its use. Leslie Lamport, Robert Shostak, and Marshall Pease, “The Byzantine Generals Problem,” ACM Transactions on Programming Languages and Systems, vol. 4, no. 3 (July 1982). 4 Satoshi Nakamoto, “Bitcoin: A Peer-to-Peer Electronic Cash System,” paper, October 2008, at https://bitcoin.org/bitcoin.pdf. 5 Ariel Ekblaw, Asaph Azaria, John Halamka, and Andrew Lippman, “A Case Study for Blockchain in Healthcare: ‘MedRec’ Prototype for Electronic Health Records and Medical Research Data,” paper, August 2016, at https://www.healthit.gov/sites/ default/files/5-56-onc_blockchainchallenge_mitwhitepaper.pdf. 3 CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 6 Identity Management Identity management use of blockchain draws upon asymmetric encryption and immutable transactions as strengths. In this use, a user has a private key to validate transactions made with their public key, which are then published (or data about the transaction are published) to the blockchain. This ensures that only the user with the private key is able to conduct transactions and resolves the double-spend problem because the transaction is published so other users can validate the distribution of resources to that public key or address.6 However, this form of identity management requires both a computing device and an Internet connection to work. Private entities may be able to require users to maintain a compatible device for their blockchains, and the Internet connection required to execute a transaction on the blockchain, but other entities (like the public sector) may face difficulty in moving to a blockchain-only identity management model because some of their customer base lack the computing elements necessary to conduct the transaction—creating a cost-sharing problem. Provenance Because asymmetric encryption allows for the authentication of users, blockchain has been suggested as a solution to the provenance of items. Provenance refers to the ability to know the history of an item, so that users can be assured that they may be legitimate consumers of the item. By using blockchain, proponents seek to enable the transfer of property, rights, or goods without the clearance of a third-party intermediary, thereby reducing costs. In this model, a user would publish to the blockchain that they have the right to an asset—the user’s claim to that right would still need to be verified, which may be governed by the rules of the blockchain—and others may purchase or license that asset, which would then be published to the blockchain for other users to verify. There are examples of using blockchain for both physical and digital item provenance. Cook County, IL, has investigated using blockchain to track the transfer of land.7 In its pilot, it sought to track the conveyance of real property on a blockchain. This could have the potential to affect the titling industry as anyone could verify that a seller is legally in possession of the property they seek to sell and are in a position to conduct a valid sale. For digital items, Kodak has announced that it will endorse blockchain technology to track the rights of digital images and provide a way for content users to pay for the license to use an image. However, implementation concerns have generated significant criticism among industry analysts on Kodak’s plans.8 Smart Contracts The digital nature of blockchain has led to it being associated with smart contracts. A contract in the physical world is an agreement among parties that upon execution of certain conditions, a transfer of assets will occur. A smart contact codifies these attributes in code, so that machines can validate that conditions are met, and initiate the transfer of assets. In addition to the parties engaging in the transaction, other users of the blockchain platform may provide computational resources necessary to process or 6 The double spend problem refers to transactions which may not immediately post, allowing a party to spend that resource many times before it is reflected in ledgers. For more information see David Mills et al., “Distributed Ledger Technology in Payments, Clearing, and Settlement,” The Federal Reserve Board, 2016, at https://www.federalreserve.gov/econresdata/feds/2016/files/ 2016095pap.pdf. 7 John Mirkovic, “Blockchain Pilot Program Final Report,” report, May 30, 2017, at http://cookrecorder.com/wp-content/ uploads/2016/11/Final-Report-CCRD-Blockchain-Pilot-Program-for-web.pdf. 8 Kevin Roose, “Kodak’s Dubious Cryptocurrency Gamble,” New York Times, January 30, 2018, at https://www.nytimes.com/ 2018/01/30/technology/kodak-blockchain-bitcoin.html. CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 7 validate the contractual transaction, thereby gaining a stake in the transaction or contributing to the verification of the transaction on the ledger. An example of a smart contract platform is Ethereum, which allows users to build smart contracts on a blockchain platform. In Ethereum, users build their smart contract and pay fees so that other users contribute computational resources to enable the smart contracts and validate the transactions. Supply Chain Management Supply chain management of physical and digital goods on blockchain is similar to the smart contract application. In this application, goods are tagged with a digital value (e.g., a scannable code for physical goods, or a tracker for digital goods) and as it passes from one entity to the next, that entity accepts it and then transfers it to another using its public-private key. These transactions are added to the blockchain so various participants are able to track the disposition of the good from creation through distribution, to retail, and potentially to the end user.9 However, this system will only allow for accountability of which party had control of the real-world item at which point. As the item itself does not contain traceable code, it must be affixed with a tracker, such as a scannable code or a sensor which enables its tracking. Someone in this chain may still manipulate the item, alter trackers, or otherwise adulterate items in the supply chain which may not be logged on the blockchain. An example of supply chain management on a blockchain platform is tracking of minerals from the Democratic Republic of the Congo that will be used to build batteries.10 Blockchain Concerns The cryptographic attributes of blockchain present a compelling reason for its use over other technologies. But there are persistent pitfalls and unsolved conditions which may inhibit wide use of blockchain. Some of those concerns are discussed below. Data Portability As with other record keeping systems, once data is logged in one system, transferring that data to a new system may be problematic. This problem persists in many blockchain applications. Once a user chooses to use one blockchain, they are unable to remove their previous records of transactions and transfer them to a new system as those transactions are part of the blockchain and any alteration to the chain would result in users being unable to generate legitimate hash values for new blocks. The existence of that data is permanent on the blockchain. Additionally, if a user seeks to copy their data from one blockchain to another, there are no standards for data construction from one blockchain to the next, so all the elements of data from one blockchain may not be embedded in another, nor will how they process public-private keys or hash values. The lack of standards in blockchain technologies extends beyond how data is stored to how public-private keys are generated, how hash values are generated, and how data is broadcast across peers. The lack of standards effectively means that once a user chooses one blockchain for their use, they may be unable to transfer to another blockchain. While they may be able to recreate their current allotment of resources on a new chain and conduct transactions from that point, their history will be encapsulated on the previous chain. 9 For more information in supply chain issues and blockchain, see CRS In Focus IF10810, Blockchain and International Trade, by Rachel F. Fefer. 10 Barbara Lewis, “Blockchain to Track Congo’s Cobalt from Mine to Mobile,” Reuters, February 2, 2018, at https://www.reuters.com/article/us-mining-blockchain-cobalt/blockchain-to-track-congos-cobalt-from-mine-to-mobileidUSKBN1FM0Y2. CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 8 Ill-Defined Requirements As with adopting any technology, adopters must examine the business, legal, and technical aspects of adopting blockchain.11 Because blockchain is in the early stages of its development and adoption, users are likely to face a set of questions that do not have clear answers. What is the business case for the technology? Do customers demand attributes that the new technology provides? Will employees benefit from them? What are the legal implications for using the new technology? Will adhering to compliance regimes be easier or more difficult? Will data held in the new technology be accessible to auditors for review? Will it inhibit regulated transparency? Finally, what particular technology will be adopted? What are the attributes to that technology (e.g., using one hashing algorithm instead of another)? How will it affect current practices, and how might it adapt over time? Key Security As with other forms of encryption, the creation, storage, and loss of control of the private key creates problems that are unsolved. If a user were to have the device that stores their private key compromised, an attacker would have access to their private key and be able to transfer resources from their public key to another public key or address controlled by the attacker. If the user’s hard drive fails, or they forget or otherwise lose their private key, they effectively lock the resource tied to their public key forever, inhibiting any other transaction with that asset. User Collusion and Control Groups of users on the blockchain may combine computing resources and collude to mine blocks. In some blockchain implementations this is allowed and encouraged. However, it does present a situation where groups of users may wield unintended influence over which transactions make it into a block, and the blocks that are posted. Additionally, a user or group of users (the attacker) with sufficient computational power may be able to recreate the blockchain, thereby altering previous transactions and broadcasting to blockchain users that the attacker’s chain is valid. As it would be the longest chain, others may automatically accept it, even though it was in error. This is called the 51% attack. While it is computationally difficult to carry out against established blockchains, it may allow an opportunity for nefarious users to corrupt a new or up-start blockchain platform, which have shorter ledgers, thereby ensconcing them as controllers of block creation. User Savviness and Safety Another issue that affects other technologies, and one that applies to blockchain, is the level of comfort and knowledge a user must have with the technology in order to properly and safely use it. For instance, many drivers do not know how a car works but can still safely drive a car. Or, many users do not know how computers and networking work, but can still type out and send an email. Lay-user participation is possible because certain design decisions were made by government (e.g., seatbelt requirements and the need for a driver’s license) and engineers (e.g., simple user interfaces) that enable users to use those technologies. As blockchain technology is developed, adopted, and used, similar design requirements may be necessary to ensure proper use and safe adoption of the technology. In addition to the use of blockchain technology itself, users may also need to be aware of its pitfalls and tradeoffs before adopting it. For instance, stories have circulated that users who own Bitcoin have lost access to their private keys, 11 Manu Sporny, “DHS Blockchain/Distributed Ledger Conference,” October 10, 2017. CRS TESTIMONY Prepared for Congress ————————————————————————————————— Congressional Research Service 9 thereby prohibiting the use of that asset in the future—they effectively lost the asset, and without a central authority, have no recourse to restore that asset. Potential Considerations for Congress Although blockchain is already being used as a financial instrument, it is relatively nascent in other sectors of the economy. Because of its novelty, blockchain is being piloted by industry, but at this time does not appear to be a replacement for existing systems. Given these conditions, the technology does not contain the same level of adoption that previous technology had when facing potential legislative action. However, Congress can still provide oversight of federal agencies seeking to (1) use it for government business, and (2) regulate industries using blockchain. The General Services Administration and the Department of Homeland Security are examining blockchain as a way to achieve efficiencies in the current business of government.12 In these examinations, the federal government is seeking ways to better manage identities, assets, data, and contracts. Agencies such as the Securities and Exchange Commission and the Commodities Futures Trading Commission are issuing advisories to industry concerning blockchain technology. In some cases, these actions are to positively declare that the current legal framework governing other transactions also apply to transactions on a blockchain.13 In both of these areas, Congress may want to evaluate whether agencies are achieving Congress’s policy goals. These goals may be technology agnostic and thus already established, or Congress may develop new policy goals for the adoption of emerging technology across a variety of sectors. Conclusion Thank you again for the opportunity to testify today. I look forward to your questions. If you require further research or analysis on this topic, or other policy issues before Congress, my colleagues and I at CRS are ready to assist you. Disclaimer This document was prepared by the Congressional Research Service (CRS). CRS serves as nonpartisan shared staff to congressional committees and Members of Congress. It operates solely at the behest of and under the direction of Congress. Information in a CRS Report should not be relied upon for purposes other than public understanding of information that has been provided by CRS to Members of Congress in connection with CRS’s institutional role. CRS Reports, as a work of the United States Government, are not subject to copyright protection in the United States. Any CRS Report may be reproduced and distributed in its entirety without permission from CRS. However, as a CRS Report may include copyrighted images or material from a third party, you may need to obtain the permission of the copyright holder if you wish to copy or otherwise use copyrighted material. 12 For examples, see https://emerging.digital.gov/blockchain-forum/, https://emerging.digital.gov/blockchain-programs/, and https://www.dhs.gov/science-and-technology/news/2017/09/25/news-release-dhs-st-awards-750k-virginia-tech-company. 13 U.S. Securities and Exchange Commission, “Investor Bulletin: Initial Coin Offerings,” alert and bulletin, July 25, 2017, at https://www.sec.gov/oiea/investor-alerts-and-bulletins/ib_coinofferings. CRS TESTIMONY Prepared for Congress ————————————————————————————————— TE10025