Glossary of Terms for Blockchain
Alternative Technologies
Existing technologies that may solve the same problems as blockchain, including relational databases, distributed databases, message queues, PKI, digital signatures, and API-based integration.
Why it matters: Fair evaluation requires comparing blockchain against the best available alternatives, not against a strawman of broken or outdated systems. Often, a well-designed traditional solution is superior.
Anchoring Bias
The tendency to rely too heavily on the first piece of information encountered when making decisions, even when that information is arbitrary or misleading.
Why it matters: A vendor's initial blockchain demonstration or a dramatic cost savings claim can anchor expectations, making subsequent objective analysis feel like an unwelcome correction.
Example: If a vendor first presents a $10 million projected savings, all subsequent realistic estimates of $500,000 feel disappointing by comparison, even if $500,000 is genuinely valuable.
Appeal to Novelty
The assumption that something is better simply because it is newer or more technologically advanced, without evidence that the new approach actually outperforms existing solutions.
Why it matters: Blockchain's novelty can make existing solutions seem outdated by comparison, even when those solutions are more reliable, cheaper, and better suited to the actual requirements.
Append-Only Data
A data storage model where new records can only be added, never modified or deleted. Blockchain ledgers are append-only by design, with corrections made by adding new compensating entries.
Why it matters: Append-only storage conflicts with regulations like GDPR's right to be forgotten. Evaluators must consider legal and compliance implications alongside technical benefits.
Architecture
The fundamental structural organization of a system, including its components, their relationships, the principles governing their design and evolution, and the rationale for key design decisions.
Why it matters: Architecture decisions are the most consequential and difficult-to-reverse choices in technology projects. Poor architecture choices early on compound into expensive problems later.
Architecture Report
A formal document presenting the architecture evaluation findings, including quality attribute analysis, identified risks, tradeoff analysis, and recommendations supported by evidence.
Why it matters: The architecture report is the primary deliverable of a formal evaluation. It must be clear, honest, and accessible to both technical and business audiences.
Architecture Risk
A potential problem in the system architecture that could lead to undesirable outcomes, identified through analysis of sensitivity points, tradeoff points, and quality attribute scenarios.
Why it matters: Identifying architecture risks before implementation prevents costly rework. Blockchain-specific risks include consensus failure, smart contract vulnerabilities, and key management failures.
Architecture Tradeoff
A situation where improving one system quality (like performance) necessarily diminishes another (like decentralization or security). All architecture decisions involve tradeoffs.
Why it matters: The key skill in technology evaluation is identifying and honestly assessing tradeoffs rather than accepting vendor claims that their solution has no downsides.
Asymmetric Encryption
An encryption method using two mathematically linked keys: a public key for encrypting and a private key for decrypting. Solves the key-distribution problem of symmetric encryption.
Why it matters: Asymmetric encryption is the foundation of blockchain identity and transaction signing. Understanding it explains how users prove ownership without revealing secrets.
Example: When you send Bitcoin, your private key signs the transaction and anyone can verify it with your public key — without ever seeing your private key.
ATAM Overview
The Architecture Tradeoff Analysis Method, a structured approach for evaluating software architectures by identifying how well they satisfy quality attribute requirements and where tradeoffs exist.
Why it matters: ATAM provides a rigorous framework for evaluating blockchain architectures against business requirements, preventing both over-enthusiasm and reflexive dismissal.
Authentication
The process of verifying that an entity (person, device, or system) is who or what it claims to be, typically through passwords, cryptographic keys, biometrics, or multi-factor methods.
Why it matters: Blockchain uses cryptographic authentication (private key signatures) rather than identity-based authentication. This creates strong technical verification but weak identity assurance.
Authorization
The process of determining what actions an authenticated entity is permitted to perform. Distinct from authentication — verifying identity versus granting permissions.
Why it matters: Permissioned blockchains require authorization frameworks. Understanding the distinction helps evaluators assess whether blockchain adds value beyond existing access control systems.
Example: A hospital employee may authenticate with a badge (proving identity) but only be authorized to view records in their department.
Availability Attribute
A quality attribute measuring the proportion of time a system is operational and accessible, typically expressed as a percentage (e.g., 99.99% uptime).
Why it matters: Public blockchains offer high availability through redundancy, but individual nodes and supporting infrastructure (oracles, bridges, APIs) may have lower availability.
Availability Heuristic
The tendency to judge the likelihood of events based on how easily examples come to mind, rather than on objective frequency or probability.
Why it matters: Dramatic blockchain stories (massive gains, spectacular hacks) are more memorable than mundane successes of traditional databases, distorting comparative risk assessments.
Bandwagon Effect
The tendency to adopt beliefs or behaviors because many others have done so, regardless of underlying evidence. Closely related to herd behavior and social proof.
Why it matters: "Everyone is doing blockchain" was a powerful but misleading driver of adoption during the 2017-2021 hype cycle. Many projects were initiated due to peer pressure rather than business need.
Bias Checklist
A structured list of cognitive biases to review before making technology decisions, used as a systematic debiasing tool to identify where subjective judgment may be distorting evaluation.
Why it matters: Checklists convert abstract awareness of bias into concrete review steps. Reviewing a bias checklist before finalizing a blockchain recommendation can surface overlooked distortions.
Bitcoin Overview
The first and largest blockchain network, created in 2009 by pseudonymous Satoshi Nakamoto. Designed as a peer-to-peer electronic cash system using proof-of-work consensus.
Why it matters: Bitcoin is the reference implementation for blockchain. Understanding its design choices, limitations, and evolution provides the foundation for evaluating all subsequent blockchain systems.
Block Body
The section of a block containing the actual transaction data. Block body size is limited by protocol rules and determines how many transactions each block can hold.
Why it matters: Block body capacity directly determines transaction throughput. Bitcoin's approximately 1 MB limit, for instance, restricts the network to roughly 7 transactions per second.
Block Header
The metadata section of a block containing the previous block's hash, a Merkle root of transactions, timestamp, difficulty target, and nonce. It is the cryptographic anchor linking blocks together.
Why it matters: The block header is what makes the chain — it contains the reference to the previous block. Understanding headers clarifies how tamper evidence works in practice.
Block Structure
The organization of a blockchain block, typically consisting of a block header (metadata, hashes, timestamps) and a block body (list of transactions). Size limits affect throughput.
Why it matters: Block structure directly impacts performance. Understanding size limits, transaction capacity, and propagation delays explains why blockchains process transactions slower than centralized systems.
Blockchain Definition
A distributed, append-only ledger composed of cryptographically linked blocks of transactions, maintained by a network of nodes using a consensus mechanism to agree on the ledger's state.
Why it matters: Precise definition prevents conflating blockchain with related but distinct technologies (distributed databases, hash chains, shared ledgers), enabling clearer evaluation.
Blockchain Generations
A categorization of blockchain evolution: first generation (Bitcoin, digital currency), second generation (Ethereum, smart contracts), and third generation (scalability, interoperability, sustainability-focused platforms).
Why it matters: This framework helps evaluators understand blockchain's trajectory and assess whether newer platforms have genuinely solved the limitations of earlier ones or merely shifted tradeoffs.
Blockchain Limitations
The inherent constraints of blockchain technology, including limited throughput, high latency, storage growth, energy consumption, key management challenges, and the garbage-in problem.
Why it matters: Honest acknowledgment of limitations is essential for credible evaluation. Every technology has limitations; the question is whether they are acceptable for a specific use case.
Break-Even Analysis
The calculation of the point at which a project's cumulative benefits equal its cumulative costs. Projects that never reach break-even should be reconsidered or abandoned.
Why it matters: Break-even analysis forces concrete thinking about timelines and adoption rates. Many blockchain projects have optimistic break-even projections that assume rapid adoption that never materializes.
Business Requirement
A statement of what the business needs to achieve, independent of any specific technology solution. Business requirements should drive technology selection, not the reverse.
Why it matters: Starting with business requirements rather than technology prevents "solution looking for a problem" — the most common failure pattern in blockchain adoption.
Byzantine Fault Tolerance
The ability of a distributed system to reach consensus and function correctly even when some participants are faulty or actively malicious, named after the Byzantine Generals Problem.
Why it matters: BFT is the theoretical foundation for blockchain consensus. The specific level of fault tolerance (typically one-third of nodes) defines the security guarantees of any consensus protocol.
Byzantine Generals Problem
A thought experiment illustrating the challenge of reaching agreement among distributed parties when some may be unreliable or dishonest, and communication channels may be imperfect.
Why it matters: This problem formalizes why distributed consensus is fundamentally difficult. Blockchain's primary innovation is providing a practical (though imperfect) solution to this problem.
CA Compromise Scenarios
Specific attack patterns against certificate authorities, including private key theft, insider threats, social engineering of validation processes, and nation-state interference.
Why it matters: Understanding concrete compromise scenarios helps evaluators fairly compare the risks of centralized PKI against the different but real risks of decentralized alternatives.
CA Vulnerabilities
Weaknesses in the certificate authority system, including compromised CAs, mis-issued certificates, government coercion, and operational failures that undermine trust.
Why it matters: CA vulnerabilities are a legitimate motivation for exploring decentralized alternatives. However, evaluators should assess whether proposed alternatives truly eliminate or merely shift these risks.
Example: In 2011, the DigiNotar CA was compromised, allowing attackers to issue fraudulent certificates for Google and other domains, affecting millions of users.
Capital Expense
One-time upfront costs for acquiring or building a technology system, including hardware, software licenses, development, and initial deployment.
Why it matters: Blockchain capital expenses include development of smart contracts, integration with existing systems, and potentially hardware for running nodes — costs that may be unfamiliar to traditional IT budgeting.
Capstone Project
A culminating academic project that integrates knowledge and skills from an entire course of study, applying them to a realistic, complex problem requiring analysis, synthesis, and professional communication.
Why it matters: The capstone project in this course requires applying all evaluation frameworks, analytical techniques, and communication skills to produce a professional-quality blockchain technology assessment.
Case Study Analysis
A structured method for examining real-world blockchain implementations, documenting objectives, approach, outcomes, costs, challenges, and lessons learned to inform future decisions.
Why it matters: Rigorous case study analysis requires examining failures alongside successes and questioning whether reported benefits could have been achieved with simpler technology.
Centralized Database
A traditional database managed by a single authority, offering high performance, mature tooling, ACID transactions, easy modification, and well-understood operations.
Why it matters: Centralized databases should be the default choice. Blockchain should only be selected when specific requirements (multi-party trust, censorship resistance) genuinely cannot be met by centralized alternatives.
Centralized Trust
A trust model where a single entity or small group is responsible for verifying, authorizing, and enforcing rules. Most traditional institutions (banks, governments, courts) operate this way.
Why it matters: Centralized trust is efficient and well-understood but creates single points of failure and power concentration. Honest evaluation requires weighing these tradeoffs against decentralized alternatives.
Certificate Authority
A trusted organization that issues digital certificates binding public keys to verified identities. Certificate authorities form the backbone of internet security (HTTPS, email signing).
Why it matters: Certificate authorities represent centralized trust — the very model blockchain aims to replace. Understanding their strengths and weaknesses provides a baseline for comparison.
Example: When your browser trusts a website's HTTPS certificate, it relies on a certificate authority like DigiCert or Let's Encrypt having verified the site owner's identity.
Certificate Chain
A hierarchical sequence of certificates where each certificate is signed by the next authority up the chain, culminating in a trusted root certificate.
Why it matters: Certificate chains illustrate how trust is delegated in centralized systems. Blockchain proposes flattening this hierarchy, which trades one set of risks for another.
Certificate Revocation
The process of invalidating a digital certificate before its expiration date, typically because the private key was compromised or the certificate was issued incorrectly.
Why it matters: Revocation is a known weakness in PKI — revocation checks are slow, sometimes skipped, and inconsistently implemented. Blockchain-based identity systems face analogous key-recovery challenges.
Change Management
The structured approach to transitioning individuals, teams, and organizations from current processes to new ways of working, including communication, training, and resistance management.
Why it matters: Blockchain implementations often require fundamental process changes across multiple organizations. Without effective change management, technically sound solutions fail due to human factors.
Client-Server Model
An architecture where clients (users) request services from centralized servers that process and respond. Most web applications, databases, and cloud services use this model.
Why it matters: This is the dominant architecture blockchain claims to improve upon. Understanding its actual strengths — simplicity, speed, mature tooling — prevents overstating blockchain's advantages.
Example: When you check your bank balance online, your browser (client) requests data from the bank's server, which controls all account information centrally.
Cloud vs On-Premise
The choice between hosting blockchain infrastructure on cloud platforms (AWS, Azure, GCP) versus operating it on locally owned and managed hardware.
Why it matters: This choice affects cost structure, latency, control, and the philosophical question of whether running blockchain nodes in major cloud providers undermines decentralization.
Example: Over 60% of Ethereum nodes run on cloud providers, with AWS hosting a significant share — a concentration risk that contradicts decentralization goals.
Cognitive Bias
A systematic pattern of deviation from rational judgment, where individuals create their own subjective reality that may differ from objective evidence. Affects technology evaluation deeply.
Why it matters: Technology decisions are particularly susceptible to cognitive biases because of complexity, uncertainty, and the influence of marketing, hype, and social pressure.
Cold Storage
Keeping private keys on devices that are never connected to the internet (hardware wallets, paper wallets, air-gapped computers), protecting them from remote hacking.
Why it matters: Cold storage provides the strongest key security but creates accessibility and operational challenges. Businesses must balance security against the need for timely access.
Example: Cryptocurrency exchanges typically keep 90-95% of customer funds in cold storage, with only a small "hot wallet" balance for daily withdrawal needs.
Computational Cost
The resources (processing power, memory, storage, energy) required to execute operations on a blockchain, directly affecting transaction fees and network sustainability.
Why it matters: Computational costs are often underestimated in blockchain business cases. They scale with network usage and can make seemingly viable projects economically unsustainable at scale.
Confirmation Bias
The tendency to search for, interpret, and recall information that confirms pre-existing beliefs while giving disproportionately less attention to information that contradicts them.
Why it matters: Confirmation bias leads blockchain enthusiasts to overweight success stories and skeptics to overweight failures. Both distort evaluation. Actively seeking disconfirming evidence is the remedy.
Example: A manager who has already decided on a blockchain solution unconsciously emphasizes case studies of successful deployments and dismisses reports of failed blockchain projects as irrelevant.
Consensus Mechanism
A protocol by which distributed network participants agree on the current state of the ledger. Different mechanisms make different tradeoffs among security, speed, energy use, and decentralization.
Why it matters: The consensus mechanism is the most consequential design choice in any blockchain system. It determines performance, security model, energy consumption, and governance structure.
Consortium Blockchain
A blockchain governed by a group of organizations rather than a single entity or the public. Members share control over consensus, access rights, and protocol governance.
Why it matters: Consortium blockchains are the most common enterprise deployment model, balancing shared governance against the need for control. Success depends heavily on consortium governance design.
Example: The Marco Polo trade finance network was a consortium blockchain among major banks that ultimately failed, partly due to governance disagreements and insufficient participation.
Consortium Governance
The rules, structures, and processes by which a group of organizations jointly manages a shared blockchain network, including decision-making authority, cost sharing, and dispute resolution.
Why it matters: Consortium governance is frequently the point of failure in enterprise blockchain projects. Technical challenges are solvable; getting competitors to cooperate sustainably is much harder.
Cost Projection Model
A structured approach to estimating future costs of a technology deployment, incorporating known costs, growth assumptions, and uncertainty ranges to support investment decisions.
Why it matters: Reliable cost projections require blockchain-specific considerations: volatile transaction fees, storage growth rates, protocol changes, and the evolving regulatory landscape.
Cost Simulation
The use of computational models to explore how costs behave under different scenarios, varying parameters like transaction volume, network congestion, token price, and growth rate.
Why it matters: Simulation reveals cost sensitivities that static analysis misses. A solution that looks affordable at current volumes may become prohibitively expensive at projected growth rates.
Cost-Benefit Analysis
A systematic comparison of a project's total expected costs against its total expected benefits, expressed in monetary terms where possible, to determine whether the investment is justified.
Why it matters: Rigorous cost-benefit analysis is the antidote to blockchain hype. Many proposed blockchain projects cannot demonstrate positive net benefits when compared honestly against simpler alternatives.
Critical Thinking
The disciplined process of actively analyzing, synthesizing, and evaluating information gathered from observation, experience, and reasoning to guide beliefs and actions.
Why it matters: Critical thinking is the core competency for trust technology evaluation. It requires questioning assumptions, demanding evidence, and distinguishing between marketing claims and verified outcomes.
Cross-Chain Bridge
A protocol enabling the transfer of assets or data between two different blockchain networks by locking assets on one chain and creating corresponding representations on another.
Why it matters: Cross-chain bridges are frequent targets for major exploits, with billions of dollars stolen through bridge vulnerabilities. They represent a critical and often underestimated security risk.
Example: The Ronin Bridge hack in 2022 resulted in $625 million stolen through compromised validator keys, illustrating the concentrated risk in cross-chain infrastructure.
Cryptographic Hash
A hash function with specific security properties: it is computationally infeasible to reverse the hash, find two inputs producing the same hash, or predict what input produces a given hash.
Why it matters: These properties make blockchains tamper-evident. If anyone changes historical data, the hash changes, breaking the chain and alerting the network.
Data Integrity
The assurance that data has not been altered, corrupted, or tampered with, whether in storage or transit. Verified through checksums, hashes, digital signatures, or access controls.
Why it matters: Blockchain's primary value proposition is data integrity across untrusted parties. Evaluators must compare this against existing integrity mechanisms that may be simpler and cheaper.
Data Sovereignty
The principle that data is subject to the laws and governance structures of the country or jurisdiction where it is collected, stored, or processed.
Why it matters: Distributed blockchain networks store data across multiple jurisdictions simultaneously, creating complex and potentially contradictory legal obligations for participating organizations.
Debiasing Techniques
Structured methods for reducing the influence of cognitive biases on decisions, including pre-mortems, red teams, devil's advocacy, structured analytic techniques, and decision journals.
Why it matters: Awareness of bias alone is insufficient — structured debiasing techniques must be deliberately applied throughout the evaluation process to improve decision quality.
Decentralized Application
An application where backend logic runs on a decentralized blockchain network rather than centralized servers. Often called "dApp," typically combining smart contracts with a traditional web frontend.
Why it matters: Decentralized applications promise censorship resistance and user sovereignty but typically deliver slower performance and worse user experience than centralized alternatives.
Decentralized Identifier
A globally unique identifier that the subject creates and controls independently of any centralized registry, authority, or intermediary. Defined by W3C standards.
Why it matters: DIDs shift identity control from institutions to individuals, a fundamental change in how digital identity works. They can be implemented on various platforms, not just blockchains.
Decentralized Trust
A trust model where no single entity controls verification or enforcement. Instead, trust emerges from protocol rules, cryptographic proofs, and distributed consensus among participants.
Why it matters: Decentralized trust reduces single-point-of-failure risk but introduces coordination costs, slower performance, and governance complexity. The tradeoff is not universally favorable.
Decision Flowchart
A visual decision aid that guides evaluators through key questions to determine whether blockchain is appropriate for a specific use case, based on characteristics of the problem.
Why it matters: Decision flowcharts distill complex evaluation criteria into a practical tool. Questions like "Do you need to remove a trusted intermediary?" and "Do multiple parties need write access?" quickly filter inappropriate use cases.
Decision Framework
A structured methodology for making technology selection decisions, incorporating business requirements, technical evaluation, risk assessment, cost analysis, and stakeholder priorities.
Why it matters: A decision framework ensures consistency and completeness in evaluation. It prevents shortcuts, ensures all relevant factors are considered, and provides an auditable rationale for the final decision.
Delegated Proof of Stake
A variation of proof of stake where token holders vote for a limited number of delegates who validate transactions and produce blocks on their behalf, resembling a representative democracy.
Why it matters: Delegated proof of stake achieves higher throughput but concentrates power in few validators. Evaluators should examine whether this effectively recreates the centralization blockchain was designed to avoid.
Difficulty Adjustment
An automatic protocol mechanism that increases or decreases the computational challenge of mining to maintain a target block creation interval as network hash power changes.
Why it matters: Difficulty adjustment keeps block production stable regardless of how many miners join or leave. It is an elegant self-regulating mechanism but can be exploited in smaller networks.
Example: Bitcoin adjusts difficulty every 2,016 blocks (roughly two weeks) to maintain its target of one block approximately every 10 minutes.
Digital Signature
A cryptographic mechanism where a private key produces a unique signature on data, allowing anyone with the corresponding public key to verify both the signer's identity and that the data was not altered.
Why it matters: Digital signatures are how blockchain transactions are authorized. They provide non-repudiation — proof that a specific key holder approved a specific action.
Example: When you authorize an Ethereum transaction, your wallet creates a digital signature that the network verifies before executing the transfer.
Digital Trust
Confidence that digital systems, processes, and interactions will behave as expected, typically enforced through technical mechanisms rather than interpersonal relationships.
Why it matters: Understanding where digital trust is placed — in software, institutions, or protocols — helps evaluators identify single points of failure and hidden dependencies.
Example: When you see the padlock icon in your browser, you are placing digital trust in certificate authorities, encryption protocols, and your browser vendor simultaneously.
Distributed Ledger
A database that is consensually shared, replicated, and synchronized across multiple sites, institutions, or geographies, with no central administrator.
Why it matters: Distributed ledger is a broader category than blockchain. Some distributed ledgers do not use blocks or chains, offering different performance and trust characteristics.
Distributed System
A computing system where components on networked computers coordinate their actions by passing messages, presenting a unified service despite physical separation.
Why it matters: All blockchain systems are distributed systems and inherit fundamental distributed computing constraints, including the CAP theorem and communication overhead.
Example: Google's search engine runs across thousands of servers worldwide — a distributed system that appears as a single service to users.
Dunning-Kruger Effect
A cognitive bias where people with limited knowledge in a domain overestimate their competence, while experts tend to underestimate theirs.
Why it matters: Blockchain's apparent simplicity ("it's just a distributed ledger") leads non-experts to underestimate implementation complexity, while experienced engineers may overcomplicate simple use cases.
E-Commerce Use Case
The application of blockchain to online commerce, including payment processing, product authenticity verification, customer identity management, and loyalty programs.
Why it matters: E-commerce blockchain use cases often struggle to demonstrate clear advantages over existing payment systems and fraud prevention tools that are already fast, cheap, and widely adopted.
Emerging Trust Tech
New and developing technologies for establishing and managing trust in digital systems, including decentralized identity, verifiable computation, secure enclaves, and post-quantum cryptography.
Why it matters: The trust technology landscape is evolving rapidly. Evaluators should monitor emerging technologies to avoid investing in solutions that may be superseded by better alternatives.
Encryption
The process of converting readable data (plaintext) into an unreadable format (ciphertext) using mathematical algorithms, reversible only with the correct key.
Why it matters: Encryption is foundational to all trust technologies. Evaluators must understand that blockchain uses encryption for signing and verification, not for hiding transaction data on public chains.
Example: When you send a message via Signal, encryption scrambles it so that only the intended recipient's device can decode and read it.
Energy Consumption
The total electrical energy used by a blockchain network, primarily driven by the consensus mechanism. Proof-of-work networks consume orders of magnitude more energy than proof-of-stake alternatives.
Why it matters: Energy consumption is a major factor in total cost of ownership and environmental impact. Organizations with sustainability commitments must account for this in their blockchain evaluations.
Ethereum Overview
A programmable blockchain platform supporting smart contracts and decentralized applications. Transitioned from proof of work to proof of stake in 2022. Second largest by market capitalization.
Why it matters: Ethereum pioneered programmable blockchain and remains the primary platform for smart contracts, DeFi, and NFTs. Its evolution illustrates both blockchain's potential and persistent scalability challenges.
Evidence-Based Evaluation
An approach to technology assessment that prioritizes empirical data, measured outcomes, peer-reviewed research, and documented case studies over anecdotes, vendor claims, and theoretical benefits.
Why it matters: Evidence-based evaluation is the antidote to hype-driven adoption. It requires specific questions: What was measured? By whom? Under what conditions? Were results independently verified?
Failed Project Analysis
Systematic examination of blockchain projects that were abandoned, delivered below expectations, or cost more than alternatives, identifying root causes and warning signs.
Why it matters: Learning from failures is more valuable than studying successes. Common failure patterns include solving the wrong problem, underestimating integration costs, and insufficient stakeholder commitment.
Example: The Australian Securities Exchange spent over $250 million on a blockchain-based clearing system before abandoning it in 2022, citing complexity and the technology's inability to meet requirements.
Finality
The guarantee that a confirmed transaction cannot be reversed or altered. Different blockchain systems offer different types: probabilistic finality (Bitcoin) versus absolute finality (PBFT-based systems).
Why it matters: Finality directly affects business processes. If a payment might be reversed, how long must you wait before shipping goods? Different finality models create different business risks.
Example: Bitcoin transactions are considered practically final after 6 confirmations (about 60 minutes), while Ethereum's proof-of-stake provides finality in about 13 minutes.
Financial Services Use Case
The application of blockchain to banking, payments, securities settlement, trade finance, and insurance, aiming to reduce intermediaries, settlement times, and reconciliation costs.
Why it matters: Financial services have the strongest blockchain use cases due to clear intermediary costs and settlement delays, but also face the heaviest regulatory scrutiny and incumbency resistance.
Example: JPMorgan's Onyx platform processes over $1 billion in daily transactions for wholesale payments, representing a genuine enterprise blockchain deployment — though notably on a permissioned, private network.
Fork
A divergence in the blockchain where the network splits into two or more paths, either temporarily (due to simultaneous block creation) or permanently (due to protocol disagreements).
Why it matters: Forks reveal governance challenges in decentralized systems. They can disrupt businesses built on a blockchain and create confusion about which chain is "official."
Full Node
A node that stores the complete blockchain history, independently validates all transactions and blocks, and enforces all protocol rules without trusting other nodes.
Why it matters: Full nodes provide maximum security and independence but require significant storage and bandwidth. Bitcoin's full blockchain exceeds 500 GB, creating barriers to participation.
Functional Requirement
A specific capability the system must provide — what it must do. Functional requirements describe system behavior, inputs, outputs, and processing rules.
Why it matters: Functional requirements often reveal that a blockchain solution must replicate many capabilities of existing systems (user management, reporting, integration) in addition to providing new ones.
Fungible Token
A token where each unit is identical and interchangeable with any other unit of the same type, like currency. One Bitcoin is equivalent to any other Bitcoin.
Why it matters: Fungibility is essential for tokens used as currency or commodity representations. Standards like ERC-20 ensure consistent behavior across applications and exchanges.
Gas and Fees
The unit measuring computational effort required to execute operations on blockchains like Ethereum. Users pay gas fees to compensate validators for processing their transactions.
Why it matters: Gas fees create unpredictable operating costs that can spike dramatically during network congestion, making cost planning difficult for business applications.
Example: During peak demand in 2021, simple Ethereum token transfers sometimes cost over $50 in gas fees, making small transactions economically impractical.
GDPR and Blockchain
The interaction between the European General Data Protection Regulation and blockchain technology, particularly concerning data minimization, the right to erasure, and determining data controllers.
Why it matters: GDPR's right to erasure directly conflicts with blockchain's append-only design. This tension has no clean technical solution and creates legal risk for blockchain deployments handling personal data.
Example: If a blockchain records personal data and an individual requests deletion under GDPR Article 17, the technical inability to delete creates a legal compliance problem that no amount of engineering fully resolves.
Genesis Block
The first block in a blockchain, hardcoded into the software. It has no reference to a previous block and serves as the foundation upon which all subsequent blocks are built.
Why it matters: The genesis block represents the initial trust anchor of a blockchain. Its creation parameters reveal design decisions about the network's founding assumptions.
Example: Bitcoin's genesis block, mined on January 3, 2009, contained a newspaper headline: "The Times 03/Jan/2009 Chancellor on brink of second bailout for banks."
Governance
The processes and structures by which decisions are made about a blockchain protocol's rules, upgrades, and dispute resolution. Includes both technical and social coordination mechanisms.
Why it matters: Governance is often blockchain's weakest link. Technical elegance means little if the community cannot agree on upgrades, respond to crises, or resolve disputes effectively.
Groupthink
A phenomenon where the desire for group consensus overrides realistic appraisal of alternatives. Group members suppress dissent and ignore contrary evidence to maintain harmony.
Why it matters: Blockchain evaluation teams can fall into groupthink, especially when leadership has already signaled enthusiasm. Assigning a devil's advocate role helps counteract this tendency.
Halo Effect
A cognitive bias where a positive impression in one area influences judgment in unrelated areas. A technology's success in one domain is assumed to transfer to others.
Why it matters: Bitcoin's success as a cryptocurrency creates a halo effect for all blockchain applications, even those in completely different domains with different requirements and constraints.
Hard Fork
A backward-incompatible protocol change that requires all nodes to upgrade. Nodes that do not upgrade follow the old rules and may form a separate, incompatible chain.
Why it matters: Hard forks can split communities and asset value. Businesses must plan for potential hard forks and decide which chain to follow — a governance risk unique to blockchain.
Example: The 2016 Ethereum hard fork after the DAO hack created two separate blockchains: Ethereum (ETH) and Ethereum Classic (ETC), each with its own community and market value.
Hash Chain
A sequence where each element includes the hash of the previous element, creating a linked chain where altering any element invalidates all subsequent ones.
Why it matters: Hash chains are the core data structure of blockchains. They provide tamper evidence by making any historical modification immediately detectable.
Example: If blocks A, B, and C are hash-chained and someone alters block A, the hash stored in block B no longer matches, breaking the chain visibly.
Hash Function
A mathematical function that converts input data of any size into a fixed-size output (hash). The same input always produces the same hash, but even a tiny change in input produces a completely different hash.
Why it matters: Hash functions are the glue holding blockchains together — they link blocks, verify data integrity, and enable efficient data comparison without revealing the underlying data.
Example: The SHA-256 hash of "Hello" is a 64-character string. Change one letter to "hello" and the hash changes completely and unpredictably.
Healthcare Use Case
The application of blockchain to healthcare data management, including patient records, clinical trials, drug supply chain tracking, and insurance claims processing.
Why it matters: Healthcare blockchain faces severe challenges from privacy regulations (HIPAA, GDPR), data volume, interoperability with legacy systems, and the fundamental tension between immutability and the right to amend medical records.
Hot Wallet
A wallet connected to the internet, enabling convenient real-time transactions but exposing private keys to potential remote attacks and malware.
Why it matters: Hot wallets balance usability against security risk. The amount held in hot wallets should be minimized, as they are the primary target of cryptocurrency exchange hacks.
Hybrid Architecture
A system design that combines blockchain with traditional technologies, using blockchain for specific functions (audit trails, cross-party verification) while relying on conventional systems for performance-sensitive operations.
Why it matters: Hybrid architectures are often the most practical approach, capturing blockchain's unique benefits without accepting its limitations across the entire system. Most successful enterprise deployments are hybrid.
Hype Cycle
Gartner's model describing the typical progression of emerging technologies through five phases: Innovation Trigger, Peak of Inflated Expectations, Trough of Disillusionment, Slope of Enlightenment, and Plateau of Productivity.
Why it matters: Blockchain has traversed the hype cycle unevenly — some applications have reached productive use while others remain in the trough. Understanding where specific applications fall helps calibrate expectations.
Example: Enterprise blockchain for supply chain entered the Trough of Disillusionment around 2020-2022 as early projects revealed that the technology alone could not solve data quality and adoption challenges.
Hyperledger
An umbrella project hosted by the Linux Foundation containing multiple enterprise blockchain frameworks (Fabric, Sawtooth, Besu), tools, and libraries designed for business use.
Why it matters: Hyperledger represents the enterprise approach to blockchain — permissioned, modular, and designed for business integration. Its adoption trajectory reveals real-world enterprise blockchain demand.
Identity Verification
The process of confirming that a claimed identity matches a real person or entity, often involving government documents, biometrics, or trusted third parties.
Why it matters: Public blockchains are pseudonymous, not anonymous. Connecting blockchain addresses to real identities requires off-chain verification, which reintroduces trusted intermediaries.
Immutability
The property of data that cannot be changed after it has been written. In blockchain, immutability is practical rather than absolute — changes are extremely difficult and detectable, not theoretically impossible.
Why it matters: Immutability is often oversold as absolute. A sufficiently powerful attacker or a coordinated majority can alter blockchain history. Understanding the degree of immutability enables honest risk assessment.
Implementation Roadmap
A phased plan for deploying a technology solution, including milestones, dependencies, resource requirements, risk mitigation steps, and decision gates for proceeding or stopping.
Why it matters: Blockchain implementation roadmaps should include explicit go/no-go decision points where the organization can pivot to alternatives if blockchain proves unsuitable as evidence accumulates.
Infrastructure Cost
The cost of physical and virtual resources needed to operate a technology system, including servers, networking, cloud services, storage, and the personnel to manage them.
Why it matters: Blockchain infrastructure costs scale differently than traditional systems. Running full nodes requires growing storage, and cloud hosting for blockchain infrastructure can be surprisingly expensive.
Internet Architecture
The layered design of the internet, organized into protocol layers (physical, network, transport, application) that separate concerns and enable interoperability among diverse systems.
Why it matters: Blockchain systems operate on top of internet architecture and inherit its strengths and weaknesses, including latency, routing vulnerabilities, and reliance on ISPs.
Example: A Bitcoin transaction travels through the same TCP/IP infrastructure as email and web browsing, meaning network outages or censorship can affect blockchain access.
Interoperability
The ability of different blockchain networks to communicate, share data, and transfer assets with each other seamlessly, without requiring centralized intermediaries.
Why it matters: Most enterprise environments require integration across systems. Lack of blockchain interoperability creates data silos and undermines the value proposition of shared, transparent ledgers.
Key Pair Generation
The process of creating a mathematically linked public and private key using cryptographic algorithms. The security of the entire system depends on the quality of this generation process.
Why it matters: Weak or predictable key generation can compromise an entire blockchain identity. Evaluators should verify that systems use cryptographically secure random number generators.
Layer 1
The base blockchain protocol itself — the fundamental network that processes and finalizes transactions. Bitcoin, Ethereum, and Solana are examples of Layer 1 blockchains.
Why it matters: Layer 1 characteristics set hard constraints on everything built on top. If the base layer is slow or expensive, applications must work around those limitations.
Layer 2 Solutions
Protocols built on top of a Layer 1 blockchain that handle transactions off the main chain to improve speed and reduce costs, periodically settling back to the base layer for security.
Why it matters: Layer 2 solutions are the primary strategy for addressing blockchain scalability. Evaluators should assess whether the added complexity and trust assumptions are justified.
Example: Bitcoin's Lightning Network enables near-instant, low-cost payments by creating payment channels between users, settling only the final balance on the main Bitcoin blockchain.
Ledger Replication
The process of copying and synchronizing ledger data across multiple nodes in a distributed system, ensuring all participants have a consistent view of the current state.
Why it matters: Replication provides redundancy and censorship resistance but multiplies storage costs and creates consistency challenges. Evaluators should quantify these costs for their use case.
Light Node
A node that stores only block headers and relies on full nodes for transaction verification, trading security assurance for reduced resource requirements.
Why it matters: Light nodes make blockchain accessible on mobile devices but introduce trust in the full nodes they query — a subtle re-centralization that should be acknowledged.
Longest Chain Rule
The rule in proof-of-work systems that the valid chain with the most cumulative computational work is considered the canonical chain. Resolves temporary forks by converging on the heaviest chain.
Why it matters: The longest chain rule is Bitcoin's core consensus rule. It means recent transactions are never truly "final" — just increasingly expensive to reverse as more blocks are added.
Maintainability
A quality attribute measuring how easily a system can be repaired, updated, and kept operational over time, including monitoring, debugging, and personnel requirements.
Why it matters: Blockchain systems require specialized expertise to maintain. The shortage of qualified blockchain developers and the technology's rapid evolution make long-term maintainability a significant concern.
Mempool
The "memory pool" where valid but unconfirmed transactions wait before being selected by miners or validators for inclusion in the next block. Mempool size reflects network congestion.
Why it matters: Mempool dynamics affect transaction speed and cost. During congestion, users must pay higher fees for priority, creating unpredictable costs for business applications.
Merkle Tree
A tree-shaped data structure where every leaf node contains a data hash and every non-leaf node contains a hash of its children, enabling efficient and secure verification of large datasets.
Why it matters: Merkle trees allow lightweight blockchain clients to verify that a specific transaction is included in a block without downloading the entire block's data.
Example: A block with 1,000 transactions can prove any single transaction's inclusion with only about 10 hashes (log base 2 of 1,000) instead of all 1,000.
Miner
A participant in a proof-of-work blockchain who dedicates computational power to solve cryptographic puzzles, earning block rewards and transaction fees in return.
Why it matters: Mining has become industrialized, with large operations dominating many networks. This concentration challenges the decentralization narrative and creates new power dynamics.
Example: By 2023, a handful of mining pools controlled over 70% of Bitcoin's hash rate, raising concerns about centralization in a supposedly decentralized network.
Mining
The process of expending computational resources to validate transactions, create new blocks, and secure a proof-of-work blockchain network. Miners compete to solve cryptographic puzzles.
Why it matters: Mining's enormous energy consumption is a major criticism of proof-of-work blockchains. Evaluators must weigh security benefits against environmental and financial costs.
Mining Reward
The cryptocurrency paid to a miner who successfully creates a valid block, consisting of newly minted coins (block subsidy) plus transaction fees from included transactions.
Why it matters: Mining rewards are the economic incentive securing proof-of-work blockchains. As block subsidies decrease over time (Bitcoin halving), fee dynamics become critical to long-term security.
Modifiability
A quality attribute measuring how easily and cheaply a system can be changed — adding features, fixing bugs, adapting to new requirements, or upgrading components.
Why it matters: Blockchain's immutability creates inherent modifiability challenges. Smart contracts cannot be easily patched, protocol upgrades require network-wide coordination, and migration paths are limited.
Network Cost Analysis
A comprehensive assessment of all costs associated with operating on a blockchain network, including transaction fees, node operation, storage, development, and opportunity costs.
Why it matters: Honest network cost analysis often reveals that blockchain solutions are significantly more expensive than centralized alternatives, especially when all hidden costs are included.
Network Fundamentals
The core concepts governing how computers communicate, including protocols, addressing, routing, and data transmission across interconnected systems.
Why it matters: Blockchain and distributed ledgers depend entirely on network infrastructure. Understanding network basics reveals why performance limitations and security risks exist.
Network Latency
The time delay for data to travel between nodes in a network. In blockchain, latency affects block propagation speed, fork frequency, and the practical limit on block creation intervals.
Why it matters: Network latency sets a floor on how fast blockchain consensus can operate. Geographically distributed nodes inherently introduce delays that constrain throughput.
Node
A computer running blockchain software that maintains a copy of the ledger, validates transactions, and relays information to other nodes in the network.
Why it matters: The number, distribution, and independence of nodes determine a network's decentralization and resilience. Few nodes or concentrated node ownership undermines decentralization claims.
Non-Functional Requirement
A constraint on how the system delivers its functional requirements, including performance, security, availability, scalability, and regulatory compliance standards.
Why it matters: Non-functional requirements are where blockchain solutions most often fall short. Performance, scalability, and regulatory compliance requirements frequently conflict with blockchain's inherent characteristics.
Non-Fungible Token
A unique, non-interchangeable token that represents ownership of a specific digital or physical asset. Each NFT has distinct properties and cannot be substituted for another.
Why it matters: NFTs generated enormous hype and speculation. Evaluators should separate the underlying technology (provable digital scarcity) from the market mania that inflated and then collapsed NFT valuations.
Example: NFT trading volume peaked at $17 billion in January 2022 and fell over 95% within 18 months, illustrating the gap between technological capability and sustainable market value.
Non-Repudiation
The assurance that someone cannot deny having performed an action, such as signing a transaction. Achieved through digital signatures linked to specific private keys.
Why it matters: Non-repudiation is valuable in business disputes and auditing. However, it assumes private keys are properly secured — a stolen key undermines this guarantee entirely.
Example: If your private key signs a blockchain transaction transferring funds, you cannot credibly deny authorizing it — unless you can prove the key was compromised.
Nonce
A "number used once" — in blockchain mining, a value that miners vary to change a block's hash output, searching for one that meets the network's difficulty target.
Why it matters: The nonce is the variable miners manipulate in proof-of-work. Understanding it clarifies why mining is essentially a brute-force search and why it consumes so much energy.
Off-Chain Governance
Decision-making through social processes outside the blockchain — forums, committees, developer meetings, and social consensus — that are then implemented by developers.
Why it matters: Most blockchain governance is actually off-chain, relying on the same human coordination challenges as traditional organizations. This reality tempers claims of fully automated governance.
Example: Bitcoin's governance happens through Bitcoin Improvement Proposals (BIPs), mailing list discussions, and developer meetings — all off-chain social processes.
On-Chain Governance
Decision-making encoded in the blockchain protocol itself, where token holders vote on proposals that are automatically executed through smart contracts if approved.
Why it matters: On-chain governance promises transparent, automated decision-making but can be dominated by large token holders (plutocracy) and struggles with voter apathy.
On-Chain vs Off-Chain
The distinction between data and operations recorded directly on the blockchain (on-chain) versus those handled externally with only summaries or proofs posted to the chain (off-chain).
Why it matters: Moving operations off-chain improves performance and reduces costs but weakens the trust guarantees that motivated using blockchain. This tradeoff must be evaluated carefully.
Operating Expense
Ongoing costs required to run a technology system day-to-day, including hosting, transaction fees, monitoring, support, updates, and compliance activities.
Why it matters: Blockchain operating expenses are often higher than centralized alternatives due to network fees, node maintenance, and the specialized expertise required. These ongoing costs compound over time.
Oracle Problem
The fundamental challenge of getting reliable real-world data into a blockchain. Smart contracts can only access on-chain data natively, requiring trusted external data feeds (oracles) for real-world information.
Why it matters: The oracle problem reintroduces centralized trust into supposedly trustless systems. If the oracle is compromised, the smart contract executes based on false data — garbage in, garbage out.
Example: A crop insurance smart contract needs weather data from an oracle. If the oracle reports incorrect rainfall data, the contract makes wrong payouts — blockchain immutability makes this worse, not better.
Organizational Challenges
The non-technical obstacles to blockchain adoption, including resistance to change, skills gaps, unclear ROI, competing priorities, and the difficulty of coordinating multiple organizations.
Why it matters: Most blockchain project failures are organizational, not technical. The technology works; getting people and organizations to change their processes around it is the real challenge.
Peer-to-Peer Networks
A distributed architecture where each participant (peer) acts as both client and server, sharing resources directly without a central coordinator.
Why it matters: Blockchain networks are peer-to-peer by design, which provides censorship resistance but introduces coordination challenges, slower performance, and higher bandwidth requirements.
Example: BitTorrent file sharing is a peer-to-peer network — each downloader also uploads pieces of files to others, with no central server hosting the content.
Performance Attribute
A quality attribute measuring the system's responsiveness, throughput, and resource utilization under specified conditions and workloads.
Why it matters: Performance is often blockchain's weakest quality attribute. Honest benchmarking against centralized alternatives typically reveals significant performance gaps that must be weighed against other benefits.
Permissioned Blockchain
A blockchain where participation requires authorization from a governing entity. Only approved nodes can validate transactions, and access to read or write data may be restricted.
Why it matters: Permissioned blockchains sacrifice decentralization for control, performance, and compliance. Evaluators should ask whether a permissioned blockchain offers advantages over a shared database.
Permissionless Blockchain
A blockchain where anyone can participate without approval — running nodes, validating transactions, and reading all data. Bitcoin and Ethereum are permissionless.
Why it matters: Permissionless systems maximize censorship resistance and openness but face scalability limits and cannot easily comply with regulations requiring identity verification.
Pilot Program
A controlled, limited deployment of a technology solution in a real business environment to validate assumptions, measure actual performance, and identify implementation challenges before full rollout.
Why it matters: Pilots reveal problems that proofs of concept miss — integration issues, user adoption challenges, operational costs, and organizational resistance that only surface in real conditions.
Post-Blockchain Tech
Technologies that emerged from or were inspired by blockchain but have evolved beyond it, including directed acyclic graphs (DAGs), hashgraph, and other novel distributed consensus approaches.
Why it matters: The trust technology landscape extends beyond blockchain. Evaluators should be aware of alternatives that may better suit specific requirements without blockchain's limitations.
Practical BFT
A family of consensus algorithms (PBFT and variants) that achieve Byzantine fault tolerance with known participants, offering fast finality but limited scalability to hundreds of nodes.
Why it matters: Practical BFT is commonly used in permissioned blockchains where participants are known. It provides fast finality but does not scale to thousands of anonymous nodes like public blockchains require.
Presentation to Management
The communication of technology evaluation findings and recommendations to organizational leadership, tailored to executive concerns about cost, risk, timeline, and strategic alignment.
Why it matters: Management presentations must translate technical findings into business impact. Executives need to understand what the recommendation means for budget, timeline, risk, and competitive position.
Privacy
The ability to control what personal or organizational information is collected, stored, shared, and used, and the protection of that information from unauthorized access.
Why it matters: Public blockchains are fundamentally transparent, creating tension with privacy requirements. Even "private" blockchains share data among consortium members, complicating confidentiality.
Private Blockchain
A blockchain operated by a single organization, where participation is fully controlled and data visibility is restricted. Critics argue this offers little advantage over a conventional database.
Why it matters: Private blockchains prompt the critical evaluation question: what does this provide that a replicated database with access controls does not? The answer is sometimes "very little."
Private Key
The secret half of an asymmetric key pair, used to decrypt messages or create digital signatures. It must never be shared and is the sole proof of ownership in most blockchain systems.
Why it matters: Loss or theft of a private key means permanent loss of access to associated assets. This is a fundamental usability and security challenge for blockchain adoption.
Example: In 2013, a man discarded a hard drive containing his Bitcoin private key, permanently losing access to roughly 7,500 BTC — now worth hundreds of millions of dollars.
Proof of Concept
A small-scale implementation designed to verify that a proposed technology approach is feasible and can deliver expected capabilities, without the full investment of production deployment.
Why it matters: Proofs of concept are essential for blockchain evaluation but must be designed to test real-world conditions. A PoC that only demonstrates basic functionality in a controlled environment proves very little.
Example: A supply chain PoC with 3 participants and 100 transactions per day tells you little about whether the system will work with 300 participants and 1 million transactions per day.
Proof of Stake
A consensus mechanism where validators are chosen to create blocks proportionally to the amount of cryptocurrency they have "staked" as collateral. Dramatically more energy-efficient than proof of work.
Why it matters: Proof of stake reduces energy consumption by over 99% compared to proof of work but introduces concerns about wealth concentration and "nothing at stake" attacks.
Example: Ethereum's 2022 transition from proof of work to proof of stake ("The Merge") reduced its energy consumption by approximately 99.95%.
Proof of Work
A consensus mechanism where participants prove they have expended computational effort by finding a hash that meets a difficulty target. Used by Bitcoin and originally by Ethereum.
Why it matters: Proof of work provides strong security through economic cost but consumes enormous energy. Its environmental impact has driven many newer systems to alternative consensus methods.
Example: Bitcoin's proof-of-work consumes more electricity annually than some medium-sized countries, sparking ongoing debate about whether this cost is justified by the security it provides.
Public Blockchain
A blockchain where all transaction data is visible to anyone. Public does not mean permissionless — some public blockchains restrict who can write but allow anyone to read.
Why it matters: Data transparency on public blockchains conflicts with business confidentiality needs. Companies must consider whether competitors or adversaries could gain intelligence from public transaction data.
Public Key
The openly shared half of an asymmetric key pair, used by others to encrypt messages to you or to verify your digital signatures. It cannot be used to derive the private key.
Why it matters: Public keys serve as identities on blockchain networks. Understanding their role clarifies how pseudonymous identity works and why key management is critical.
Example: A Bitcoin address is derived from a public key — anyone can send funds to it, but only the holder of the corresponding private key can spend them.
Public Key Infrastructure
A framework of policies, procedures, hardware, software, and standards for managing digital certificates and public-key encryption across an organization or the internet.
Why it matters: PKI is blockchain's most direct competitor for trust management. Many use cases attributed to blockchain can be solved with properly implemented PKI at lower cost.
Quality Attribute
A measurable property of a system that indicates how well it satisfies stakeholder needs, such as performance, security, availability, modifiability, and usability.
Why it matters: Quality attributes translate vague goals ("we need a secure system") into measurable criteria ("99.99% availability, sub-second response time") that enable objective technology comparison.
Quality Attribute Scenario
A specific, testable description of a quality attribute requirement, specifying the stimulus, environment, response, and response measure. Turns abstract requirements into evaluable criteria.
Why it matters: Quality attribute scenarios force precision. "The system must be scalable" becomes "the system must process 10,000 transactions per second with under 2 seconds latency during peak holiday traffic."
Example: "When 1,000 simultaneous users submit transactions (stimulus), under normal operating conditions (environment), the system processes them within 3 seconds (response measure)."
Recommendation Writing
The craft of presenting technology evaluation conclusions clearly and persuasively, with explicit reasoning, supporting evidence, acknowledged limitations, and actionable next steps.
Why it matters: Even excellent analysis fails if poorly communicated. Recommendations must be clear about what is known, what is uncertain, and what specific actions should follow.
Regulatory Compliance
The process of adhering to laws, regulations, standards, and guidelines that apply to an organization's operations, particularly regarding data handling, financial transactions, and consumer protection.
Why it matters: Blockchain's immutability, pseudonymity, and cross-border nature create novel compliance challenges that do not arise with traditional centralized systems.
Reliability
A quality attribute measuring the probability that a system performs its intended function without failure over a specified period under stated conditions.
Why it matters: Blockchain reliability depends on the weakest link in the full stack — not just the chain itself, but oracles, bridges, wallets, and integration middleware, each with its own failure modes.
Retail Use Case
The application of blockchain to retail operations, including inventory management, counterfeit prevention, customer loyalty programs, and supply chain transparency for consumers.
Why it matters: Retail blockchain projects must justify their cost against existing solutions. Consumer-facing transparency initiatives have shown promise, but backend operations rarely benefit from blockchain's overhead.
Right to Be Forgotten
The GDPR right of individuals to request deletion of their personal data when it is no longer necessary for the purpose it was collected. Fundamentally conflicts with blockchain immutability.
Why it matters: This right creates a hard constraint on blockchain design. Solutions like storing hashes instead of personal data, or using encryption with key destruction, are workarounds with their own limitations.
Risk Identification
The systematic process of discovering and documenting potential risks in a proposed architecture or technology decision, using analysis frameworks, expert judgment, and historical precedent.
Why it matters: Thorough risk identification prevents the common pattern of blockchain projects discovering fundamental problems only after significant investment in development and deployment.
Risk Mitigation
Strategies and actions taken to reduce the likelihood or impact of identified risks, including avoidance, transfer, reduction, and acceptance with contingency planning.
Why it matters: Effective risk mitigation for blockchain projects often involves hybrid architectures, fallback systems, and governance structures that address the technology's known limitations.
Risk Theme
A recurring pattern of architectural risk identified across multiple scenarios or concerns, suggesting a systemic issue rather than an isolated problem.
Why it matters: Risk themes in blockchain evaluations often include governance uncertainty, regulatory compliance gaps, and integration complexity — patterns that individually seem manageable but collectively may be disqualifying.
Root Certificate
The top-level certificate in a certificate chain, self-signed by a root certificate authority and pre-installed in operating systems and browsers as an ultimate trust anchor.
Why it matters: Root certificates represent concentrated trust. Compromise of a root CA can undermine security for millions of users — a centralization risk blockchain proponents often cite.
Scalability
A system's ability to handle increasing workload — more transactions, users, or data — without proportional degradation in performance, cost, or security.
Why it matters: Scalability is blockchain's most persistent challenge. Most business applications require throughput levels that current blockchain technology struggles to achieve without compromises.
Scalability Trilemma
The assertion that blockchain systems can optimize for only two of three properties simultaneously: decentralization, security, and scalability. Attributed to Vitalik Buterin.
Why it matters: The trilemma frames the fundamental tradeoff in blockchain design. Any project claiming to solve all three should be examined with particular scrutiny.
Example: A permissioned blockchain with 10 known validators can be fast and secure, but it sacrificed decentralization. A public chain with thousands of nodes is decentralized and secure, but slow.
Scenario Generation
The process of creating realistic test scenarios that probe a proposed architecture's response to expected and unexpected conditions, stresses, and failure modes.
Why it matters: Scenario generation for blockchain evaluations should include adversarial scenarios (51% attacks, oracle failures), scale scenarios (10x transaction growth), and governance crises (contentious forks).
Security Attribute
A quality attribute encompassing confidentiality, integrity, availability, authentication, authorization, and non-repudiation — the system's ability to resist and recover from attacks.
Why it matters: Blockchain provides strong integrity and non-repudiation but may weaken confidentiality (public data) and introduces new attack vectors (51% attacks, smart contract exploits).
Self-Sovereign Identity
An identity model where individuals fully own and control their digital identity and personal data, choosing what to share, with whom, and for how long, without depending on a central authority.
Why it matters: Self-sovereign identity is one of blockchain's most philosophically compelling applications, but practical implementation faces adoption barriers, key management challenges, and regulatory uncertainty.
Sensitivity Point
An architectural decision or component where a small change significantly affects a specific quality attribute. Sensitivity points reveal where the architecture is most vulnerable to performance variations.
Why it matters: In blockchain systems, common sensitivity points include block size, consensus mechanism parameters, and network topology — small changes to these can dramatically affect system behavior.
SHA-256
Secure Hash Algorithm 256-bit, the specific cryptographic hash function used by Bitcoin and many other blockchain systems. It produces a 256-bit (64-character hexadecimal) output from any input.
Why it matters: SHA-256's properties directly determine Bitcoin's security model. Understanding it helps evaluators assess claims about blockchain immutability and mining difficulty.
Example: Bitcoin miners repeatedly compute SHA-256 hashes, searching for one that starts with a specific number of zeros — a computationally expensive process that secures the network.
Sidechain
A separate blockchain that runs in parallel to a main chain, connected by a two-way bridge that allows assets to move between them. Sidechains can have different rules and consensus mechanisms.
Why it matters: Sidechains offer flexibility and scalability but introduce bridge security risks. Several major exploits have targeted the bridges connecting sidechains to main chains.
Smart Contract
Self-executing code stored on a blockchain that automatically enforces the terms of an agreement when predefined conditions are met. Once deployed, the code typically cannot be changed.
Why it matters: Smart contracts extend blockchain from simple value transfer to programmable logic. However, code bugs become permanent and exploitable, creating unique risks absent in traditional contracts.
Example: A smart contract could automatically release payment to a freelancer when a third-party oracle confirms project milestones are met, without requiring manual approval.
Smart Contract Risks
Vulnerabilities inherent in smart contracts, including coding bugs, logic errors, unintended interactions between contracts, and the immutability of deployed code that prevents patching.
Why it matters: Smart contract exploits have caused billions of dollars in losses. Unlike traditional software bugs that can be patched, blockchain immutability means flawed contracts may be permanently exploitable.
Example: The 2016 DAO hack exploited a re-entrancy bug in a smart contract, draining approximately $60 million in Ethereum and ultimately causing a contentious hard fork.
Soft Fork
A backward-compatible protocol change where upgraded nodes enforce new, stricter rules while old nodes still accept the updated blocks. The network remains unified if a majority adopts the change.
Why it matters: Soft forks are less disruptive than hard forks but can still cause confusion and require coordination. They demonstrate how governance works (or fails) in decentralized systems.
Stakeholder Analysis
The identification and characterization of all parties with an interest in a technology decision, including their concerns, influence, expertise, and potential conflicts of interest.
Why it matters: Blockchain decisions involve diverse stakeholders with different agendas. Vendors want sales, technologists want innovation, executives want results, and regulators want compliance.
Stakeholder Buy-In
The active support and commitment of key decision-makers and affected parties for a technology initiative, based on understanding its value proposition and their role in its success.
Why it matters: Blockchain projects requiring multiple organizations to participate fail without genuine buy-in from all parties. Passive agreement is insufficient — active commitment to data sharing and process change is required.
State Channel
A Layer 2 technique where two or more parties conduct multiple transactions off-chain in a private channel, recording only the opening and closing states on the blockchain.
Why it matters: State channels dramatically improve speed and privacy for repeated interactions between known parties, but require both parties to be online and do not work well for one-time transactions.
Status Quo Bias
The preference for the current state of affairs, where any change from the baseline is perceived as a loss. Leads to resistance even when change would be beneficial.
Why it matters: Status quo bias can cause organizations to reject genuinely valuable blockchain applications simply because they require changing established processes, even when those processes are flawed.
Successful Adoption Factors
The common characteristics of blockchain projects that delivered measurable value, including clear business need, multi-party coordination problems, committed participants, and realistic scope.
Why it matters: Understanding success factors helps predict whether a proposed blockchain project is likely to succeed. Projects lacking these factors should be reconsidered regardless of technical merit.
Sunk Cost Fallacy
The tendency to continue investing in a project because of previously invested resources (time, money, effort) rather than based on future expected returns.
Why it matters: Once organizations have invested significantly in blockchain development, they often continue even when evidence suggests the project will not deliver expected benefits.
Example: "We've already spent $2 million on this blockchain platform — we can't switch now" — even when a $200,000 database solution would serve the actual needs better.
Supply Chain Use Case
The application of blockchain to track products from origin to consumer, creating a shared, tamper-evident record of provenance, handling, and custody across multiple organizations.
Why it matters: Supply chain is one of blockchain's most discussed use cases, with mixed results. Success depends on solving the "last mile" problem — ensuring physical goods match their digital records.
Example: Walmart's food traceability system using Hyperledger Fabric reduced the time to trace produce from farm to store from 7 days to 2.2 seconds — a genuine but narrow success story.
Survivorship Bias
The tendency to focus on successful examples that survived a selection process while overlooking those that did not, creating a distorted view of typical outcomes.
Why it matters: Blockchain case studies overwhelmingly feature survivors. For every publicized success, dozens of failed projects go unreported, creating a misleadingly optimistic picture of adoption outcomes.
Example: A conference presentation on "Blockchain Success Stories" features five companies but neglects to mention the fifty that tried and quietly abandoned their blockchain initiatives.
Symmetric Encryption
An encryption method where the same secret key is used for both encrypting and decrypting data. Fast and efficient, but requires a secure way to share the key between parties.
Why it matters: Symmetric encryption is used within blockchain systems for data storage and communication efficiency, though the key-sharing problem is why asymmetric methods are used for identity and signatures.
Example: AES-256, used to encrypt hard drives and VPN connections, is a symmetric algorithm — both sides must possess the identical secret key.
Tamper Evidence
A system property that makes unauthorized changes detectable, though not necessarily preventable. Blockchain provides tamper evidence through hash chains and distributed consensus.
Why it matters: Tamper evidence is often confused with tamper prevention. Blockchain makes changes visible but cannot stop someone from entering false data initially — the "garbage in, garbage out" problem persists.
Example: A sealed envelope is tamper-evident — you can tell if someone opened it, even though the seal cannot prevent someone from opening it.
Technology Evaluation
A systematic process for assessing whether a specific technology is appropriate for a given business need, considering technical capabilities, costs, risks, maturity, and alternatives.
Why it matters: Structured technology evaluation prevents both hype-driven adoption and reflexive rejection. It ensures decisions are based on evidence and aligned with actual business requirements.
Technology Readiness Level
A systematic measurement framework (originally from NASA) that assesses the maturity of a technology on a scale from 1 (basic principles observed) to 9 (actual system proven in operational environment).
Why it matters: TRL assessment prevents premature deployment of immature technology. Many blockchain applications remain at TRL 4-6 (lab to prototype), which is insufficient for critical business operations.
Throughput vs Latency
The distinction between how many transactions a system processes per time unit (throughput) and how long each individual transaction takes to confirm (latency). Both matter for different use cases.
Why it matters: High throughput with high latency might work for batch settlement but fails for point-of-sale payments. Evaluators must match both metrics to their specific business requirements.
Token
A digital asset created and managed on a blockchain, representing anything from currency to voting rights to ownership claims. Tokens follow standards (like ERC-20) for interoperability.
Why it matters: Tokens enable new business models but also enable fraud and speculation. Evaluators must distinguish between tokens that represent genuine value and those that are purely speculative.
Tokenization
The process of representing real-world assets (real estate, securities, art) as digital tokens on a blockchain, potentially enabling fractional ownership and easier transfer.
Why it matters: Tokenization is one of blockchain's most promising business applications, but it requires legal frameworks, regulatory compliance, and market infrastructure that are still developing.
Total Cost of Ownership
The complete cost of implementing and operating a technology solution over its entire lifecycle, including acquisition, development, operation, maintenance, training, and eventual migration or decommission.
Why it matters: TCO analysis frequently reveals that blockchain implementations cost 5-10 times more than initially projected, primarily due to underestimated operational complexity and integration costs.
Tradeoff Point
An architectural decision that simultaneously affects multiple quality attributes in opposing directions — improving one while degrading another.
Why it matters: Tradeoff points are where the hardest decisions live. In blockchain, increasing block size improves throughput but increases centralization risk and storage requirements.
Traditional PKI vs DLT
A comparison of centralized public key infrastructure against distributed ledger technology for identity and certificate management, evaluating security, performance, cost, and governance tradeoffs.
Why it matters: PKI is the most relevant comparison for blockchain-based identity systems. It is mature, widely deployed, and well-understood — any proposed replacement must demonstrably improve upon it.
Transaction
A signed record of an action on a blockchain, such as transferring value or executing a smart contract function. Transactions are the atomic units of state change.
Why it matters: Transaction structure, cost, and processing speed vary dramatically across blockchain platforms. These differences directly impact whether a blockchain solution is practical for a given use case.
Transaction Cost
The total cost of executing a transaction on a blockchain, including network fees, computational costs, and the economic cost of confirmation delay. Varies significantly by network and congestion.
Why it matters: Transaction costs must be compared against alternatives. If a centralized database transaction costs a fraction of a cent and a blockchain transaction costs several dollars, the premium needs justification.
Transaction Throughput
The number of transactions a blockchain network can process per unit of time, typically measured in transactions per second (TPS). A key performance metric.
Why it matters: Throughput is where many blockchain proposals fail. Visa processes roughly 65,000 TPS; Bitcoin handles about 7 TPS. This gap must be addressed honestly in any business case.
Example: During the 2017 CryptoKitties craze, Ethereum's low throughput caused severe network congestion, with pending transactions backing up for hours.
Transaction Validation
The process by which nodes verify that a transaction is properly formatted, cryptographically signed, and adheres to protocol rules before including it in the ledger.
Why it matters: Validation rules determine what the network accepts as legitimate. Understanding validation helps evaluators distinguish between technical correctness (valid format) and real-world accuracy (truthful data).
Trust
A willingness to accept vulnerability based on positive expectations of another party's behavior. In technology systems, trust is encoded through rules, cryptography, and institutional agreements rather than personal relationships.
Why it matters: Every technology architecture embeds assumptions about who is trusted, how much, and under what conditions. Making these assumptions explicit is essential for sound evaluation.
Example: When you swipe a credit card, you trust the bank to process the charge correctly, the merchant to deliver goods, and the network to protect your data — all without verifying each step yourself.
Trust Anchor
A foundational entity or piece of information that is assumed trustworthy without requiring external validation. All trust systems depend on at least one trust anchor.
Why it matters: Every system — including blockchain — requires trust anchors. The question is not whether trust anchors exist, but whether they are explicit, well-chosen, and appropriately governed.
Example: In Bitcoin, the trust anchor is the protocol itself and the assumption that the majority of mining power is honest.
Utility Tree
A hierarchical representation of a system's quality attribute requirements, organized by quality attribute, refined into specific concerns, and linked to concrete scenarios with priority and difficulty ratings.
Why it matters: Utility trees make implicit priorities explicit and reveal where stakeholders disagree about what matters most — essential for honest technology evaluation.
Utility Tree Construction
The collaborative process of building a utility tree with stakeholders, eliciting and organizing quality attribute priorities, and identifying the scenarios most critical to architecture evaluation.
Why it matters: The construction process itself is valuable — it surfaces hidden assumptions, conflicting priorities, and unstated requirements before expensive implementation decisions are made.
Vendor Assessment
The process of evaluating technology vendors on criteria including capability, stability, references, pricing, support, roadmap, and the risk of vendor lock-in or vendor failure.
Why it matters: The blockchain vendor landscape is volatile, with frequent acquisitions, pivots, and failures. Thorough vendor assessment protects against investing in platforms that may not exist in five years.
Vendor Lock-In
The situation where a customer becomes dependent on a specific vendor's products or services, making it difficult and expensive to switch to alternatives.
Why it matters: Enterprise blockchain platforms can create lock-in through proprietary features, data formats, and smart contract languages. Evaluators should assess exit strategies and portability.
Verifiable Credential
A tamper-evident digital credential whose authorship, issuance, and claims can be cryptographically verified. Based on W3C standards, often used with decentralized identifiers.
Why it matters: Verifiable credentials represent a practical application of trust technology that can work with or without blockchain, offering portable, privacy-respecting digital identity.
Example: A university issues a verifiable credential for a degree that an employer can instantly verify as authentic without contacting the university.
Wallet
Software or hardware that stores private keys and enables users to interact with blockchain networks — sending, receiving, and managing digital assets.
Why it matters: Wallet usability is a major barrier to blockchain adoption. Lost keys mean lost assets with no recovery mechanism, a fundamental UX challenge that traditional banking does not have.
When Not to Use Blockchain
Criteria for identifying situations where blockchain is inappropriate: single-organization control, trusted participants, need for high performance, privacy requirements, or when simpler alternatives suffice.
Why it matters: The most valuable output of a technology evaluation is sometimes the recommendation not to use blockchain. This requires the confidence to say "no" when the evidence points that way.
X.509 Certificate
The standard format for digital certificates used in PKI, containing the subject's public key, identity information, validity period, and the issuing certificate authority's signature.
Why it matters: X.509 certificates power most internet security today. Evaluators should understand this mature standard before assuming blockchain-based alternatives are necessary.
Zero-Knowledge Proof
A cryptographic method allowing one party to prove they know a value or meet a condition without revealing the value itself or any additional information beyond the statement's truth.
Why it matters: Zero-knowledge proofs address blockchain's privacy problem, enabling verification without disclosure. They are increasingly important for regulatory compliance and business confidentiality on shared ledgers.
Example: A zero-knowledge proof could verify that a customer is over 21 without revealing their actual age, birthdate, or any other personal information.