← Concepts
General Security ConceptsSY0-701 · Task 1.4

Blockchain — SY0-701

CompTIA Security+ SY0-701 blockchain reference: what it is, how cryptographic linking creates tamper evidence, and the exam traps to avoid.

WHAT IT IS

Blockchain is a distributed digital ledger of cryptographically-signed transactions that are grouped into blocks. Each block is cryptographically linked to the previous one — making it tamper evident — after validation and undergoing a consensus decision. As new blocks are added, older blocks become progressively harder to modify. New blocks replicate across copies of the ledger held by nodes in the network, and conflicts are resolved automatically using established rules.

Source: NIST CSRC Glossary, citing NISTIR 8202 / NIST SP 800-160 Vol. 2 Rev. 1

Mental model

Think of a blockchain as a chain of safety-deposit boxes where each box's lock is stamped with the combination of the previous box. If anyone quietly swaps a box in the middle, every subsequent lock no longer matches — the tampering is instantly detectable. The "chain" is what makes the ledger tamper evident, not just tamper resistant.

When to use it

Blockchain is not a universal database replacement. The exam tests whether you can match the property being protected to the right technology.

Property neededBlockchain?Why
Tamper-evident audit trail, distributed trustYesCryptographic linking makes past records detectable if altered
Centralized, high-speed transaction processingNoConsensus across distributed nodes adds latency
Certificate lifecycle managementNoThat is the role of Public Key Infrastructure
Confidential data exchange between two partiesNoUse asymmetric encryption or symmetric encryption; blockchain is not designed for confidentiality
Automated contract execution on a ledgerPossiblySmart contracts are code deployed on a blockchain network, executed by nodes with results recorded on the chain

Block structure and the cryptographic link

Blockchain block linkage diagram Three sequential blocks. Each block contains its own hash and the hash of the previous block. An arrow connects each block to the next, illustrating the cryptographic chain. Block 1 Prev hash: 0000… Transactions Hash: A3F7… links to Block 2 Prev hash: A3F7… Transactions Hash: B91C… links to Block 3 Prev hash: B91C… Transactions Hash: D04E…

Each block stores the previous block's hash — altering any block breaks all subsequent links

Each block stores the hash of the prior block. A hash function produces a fixed-length output that is computationally infeasible to reverse or to find two inputs that produce the same output (NIST FIPS 186-5). Changing any earlier block changes its hash, which invalidates every subsequent "prev hash" field — the chain breaks visibly.

COMMON MISCONCEPTION

Blockchain is not the same as immutability, and it does not guarantee confidentiality.

The NIST definition uses the precise phrase tamper evident, defined as "a process which makes alterations to the data easily detectable" (NISTIR 8202). That is a detection guarantee, not a prevention guarantee. An attacker with enough computational resources and control of the network could theoretically rewrite the chain; the design makes this detectable and increasingly difficult as the chain grows — not cryptographically impossible.

A separate trap: because blockchain uses cryptographically-signed transactions (digital signatures), candidates often assume the ledger keeps data secret. Digital signatures, per NIST SP 800-63-4, provide "authenticity protection, integrity protection, and non-repudiation support but not confidentiality." Blockchain inherits this property: transactions are signed and verifiable, but the ledger content itself is not encrypted by default.

How it shows up on the exam

The cognitive target for blockchain questions is distinguishing the security properties blockchain provides from those it does not. Candidates who have only a surface-level understanding tend to over-attribute capabilities.

Watch for these signal phrases in question stems:

  • "cannot be altered without detection" — points toward blockchain's tamper-evident property
  • "distributed, no single point of trust" — the consensus and replication architecture
  • "automatically executed when conditions are met" — smart contracts (code deployed on the blockchain, executed by nodes, results recorded on-chain per NISTIR 8202)
  • "keeps data confidential" — a common misconception; blockchain is not a confidentiality control

A well-constructed distractor will describe a scenario where tamper evidence is needed but then offer blockchain as the answer to a confidentiality or access-control requirement. Grounding your reasoning in what NIST says blockchain actually provides — tamper-evident, distributed, cryptographically linked records — keeps you from being pulled by plausible-sounding wrong answers.

Related concepts

  • Public Key Infrastructure — manages the certificate lifecycle that blockchain's digital signatures depend on
  • Asymmetric Encryption — underpins the cryptographic signing of each transaction in the ledger
  • Symmetric Encryption — often confused with blockchain's signing mechanism; provides confidentiality that blockchain itself does not

Sources

Every claim on this page traces to the public exam blueprint and official documentation:

CutScore is an independent study tool and is not affiliated with, authorized by, endorsed by, or sponsored by Amazon Web Services. “AWS” and “AWS Certified AI Practitioner” are trademarks of Amazon.com, Inc. or its affiliates. All content is independently authored from the public exam blueprint and official documentation — no real exam content is used.

The exam-readiness instrument. Know if you’re ready before you book.

Product
PricingConceptsBlog
Legal
PrivacyTermsRefund policy
Company
Contact
© 2026 The Plain Works Co.AWS and AWS Certified AI Practitioner are trademarks of Amazon.com, Inc. or its affiliates. CutScore is independent and not affiliated with, endorsed by, or sponsored by Amazon Web Services.