IDEAS home Printed from https://ideas.repec.org/a/plo/pone00/0315759.html
   My bibliography  Save this article

Enterprise internal audit data encryption based on blockchain technology

Author

Listed:
  • Lixia Gao

Abstract

Internal auditing demands innovative and secure solutions in today’s business environment, with increasing competitive pressure and frequent occurrences of risky and illegal behaviours. Blockchain along with secure databases like encryption improves internal audit security through immutability and transparency. Hence integrating blockchain with homomorphic encryption and multi-factor authentication improves privacy and mitigates computational overhead. Recently, blockchain applications for internal audits in the enterprise sector are still emerging. Thus, blockchain technology in auditing provides the benefits of enhanced transparency and immutability in data processing, which can establish new solutions for internal auditing but still lacks encryption techniques. The research proposed a framework called “BlockCryptoAudit” to enhance internal audit processes through cryptographic encryption methods and blockchain technology, ensuring secure and transparent audit operations. The proposed approach integrates an additive homomorphic Paillier encryption scheme with blockchain to create a safe and tamper-resident audit trail. Utilizing homomorphic Paillier encryption, BlockCryptoAudit ensures that computations may be performed on encrypted audit data while safeguarding data privacy. The applied blockchain hyperledger component guarantees the immutability and transparency of encrypted audit records, resulting in a decentralized and tamper-resistant record. By limiting data accessibility to authorized individuals based on specified responsibilities, role-based access restrictions handled using smart contracts further strengthen security. The study protects audit data’s security and confidentiality by encrypting it and putting it on a blockchain. The study compares the proposed BlockCryptoAudit with models like B-OAP, BSE-DF, and EG-FLB regarding risk mitigation, audit quality, security overhead, and audit trail effectiveness. With little security overhead, BlockCryptoAudit beats out B-OAP, BSE-DF, and EG-FLB in terms of risk mitigation (98%) and audit quality (99%). It is an effective way to improve internal audit processes and guarantee data integrity due to its high performance.

Suggested Citation

  • Lixia Gao, 2025. "Enterprise internal audit data encryption based on blockchain technology," PLOS ONE, Public Library of Science, vol. 20(1), pages 1-24, January.
  • Handle: RePEc:plo:pone00:0315759
    DOI: 10.1371/journal.pone.0315759
    as

    Download full text from publisher

    File URL: https://journals.plos.org/plosone/article?id=10.1371/journal.pone.0315759
    Download Restriction: no

    File URL: https://journals.plos.org/plosone/article/file?id=10.1371/journal.pone.0315759&type=printable
    Download Restriction: no

    File URL: https://libkey.io/10.1371/journal.pone.0315759?utm_source=ideas
    LibKey link: if access is restricted and if your library uses this service, LibKey will redirect you to where you can use your library subscription to access this item
    ---><---

    More about this item

    Statistics

    Access and download statistics

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:plo:pone00:0315759. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    We have no bibliographic references for this item. You can help adding them by using this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: plosone (email available below). General contact details of provider: https://journals.plos.org/plosone/ .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.