What Is blockchain?
Blockchain is a distributed digital ledger — a continuously growing record of transactions grouped into cryptographically linked blocks and maintained simultaneously across a decentralized network of computers (nodes), with no single controlling authority. Once a block is confirmed and added to the chain, its data cannot be altered or deleted without altering every subsequent block across the majority of the network — a computational impossibility at scale that makes blockchain’s transaction history tamper-resistant by design. Blockchain’s permanent, public, and tamper-resistant record makes it both the infrastructure layer of the global digital asset economy and the forensic evidence trail that law enforcement agencies, compliance teams, and regulators use to investigate financial crime, trace illicit funds, and support criminal prosecutions around the world.
How does blockchain work?
Every blockchain transaction follows the same fundamental sequence: initiation, validation, assembly, consensus, and permanent confirmation. Understanding this process explains both why blockchain is secure and why it produces the durable forensic record that makes it uniquely valuable to investigators.
| Step | Stage | What Happens |
|---|---|---|
| 01 | Transaction Initiated | User broadcasts transaction to the network with a cryptographic signature proving authorization. Transaction enters the mempool — a pool of unconfirmed transactions awaiting inclusion in a block. |
| 02 | Validation by Nodes | Network nodes independently verify the transaction — confirming sufficient balance, valid signature, and no double-spending. No central authority required; peer consensus replaces institutional trust. |
| 03 | Block Assembly | Valid transactions are grouped into a block by a miner (Proof of Work) or validator (Proof of Stake). The block includes a timestamp and a cryptographic hash of the previous block, creating the chain linkage. |
| 04 | Consensus | The network agrees the block is valid through the applicable consensus mechanism — Proof of Work requires computational effort; Proof of Stake requires staked collateral. Invalid blocks are rejected. |
| 05 | Block Added | Confirmed block is appended to the chain. All nodes simultaneously update their copy of the ledger. The transaction is now final and cannot be reversed. |
| 06 | Permanent Record | Transaction is immutable, publicly visible on the blockchain, and forensically auditable — permanently linking sender, recipient, amount, and timestamp in an unalterable record. |
Step 1 — A Transaction Is Initiated
When a user initiates a blockchain transaction — sending Bitcoin, executing a smart contract, recording a supply chain event — the transaction is broadcast to the network as a pending entry. It includes the sender’s public key, the recipient’s address, the transaction amount or data payload, and a cryptographic signature proving the sender authorized it. At this stage, the transaction is unconfirmed and sits in the mempool waiting to be included in the next block.
Step 2 — Nodes Validate the Transaction
Network nodes — computers participating in the blockchain — independently validate the transaction against the blockchain’s history. Validation confirms the sender holds sufficient balance, the transaction is properly signed, and no double-spending attempt is present. This peer-to-peer validation process replaces the role of a trusted intermediary: there is no bank verifying the transfer, no central authority approving the transaction. Every node reaches the same conclusion independently, and the majority consensus determines what enters the blockchain.
Step 3 — Transactions Are Grouped Into a Block
Validated transactions are bundled into a block by a network participant — a miner in Proof of Work networks, a validator in Proof of Stake networks. Each block contains a batch of transactions, a timestamp, and a cryptographic hash of the previous block. That previous block hash is what creates the chain: each block mathematically references its predecessor, making the full sequence tamper-evident. Altering any block changes its hash, invalidating every subsequent block in the chain.
Step 4 — Consensus Is Reached
Before a block is added to the chain, the network must reach consensus — agreement among participants that the block is valid. The consensus mechanism varies by blockchain: Bitcoin uses Proof of Work, requiring miners to expend significant computational power solving a mathematical puzzle before their block is accepted; Ethereum uses Proof of Stake, where validators stake cryptocurrency as collateral and are selected proportionally to validate blocks. Consensus mechanisms determine the security model, energy consumption, and decentralization characteristics of each blockchain network.
Step 5 — The Block Is Added and the Ledger Is Updated
Once consensus is reached, the new block is appended to the chain and broadcast to all nodes, which update their copy of the blockchain simultaneously. The transaction is now confirmed, permanent, and visible to anyone with access to the network. Every node holds a complete, identical copy of the ledger — this distributed architecture means there is no single server to hack, no central database to corrupt, and no administrator who can alter historical records. It is this property — distributed immutability — that makes blockchain data forensically unique.
Key features of blockchain technology
Decentralization
Traditional databases are maintained by a single organization that controls read/write access and can alter records. Blockchain distributes that database across thousands of independent nodes. No single participant controls the ledger; no single point of failure exists; no administrator can alter historical entries. For financial systems, decentralization eliminates the need for trusted intermediaries in value transfer. For law enforcement, it means the transaction record cannot be suppressed or altered by a custodian responding to external pressure — the public ledger is available to anyone running a node.
Immutability
Once a block is confirmed and added to the blockchain, its contents are cryptographically sealed. The hash of each block incorporates the hash of the previous block — altering any transaction would change its block’s hash, invalidating every subsequent block in the chain. Reversing a confirmed transaction on Bitcoin would require re-mining every block added after it while outpacing the honest network — computationally infeasible given the network’s scale. This immutability is what makes blockchain data uniquely valuable as forensic evidence: transactions cannot be backdated, deleted, or falsified after confirmation.
Transparency
Public blockchains are visible to anyone. Every transaction — the sending address, the receiving address, the amount, and the timestamp — is permanently recorded and globally accessible. This transparency makes blockchain more traceable than traditional financial infrastructure: while bank records require legal process to access, blockchain transaction history is available to any investigator, compliance team, or researcher with access to a node or block explorer. Transparency does not mean identity disclosure — wallet addresses are pseudonymous — but it means every financial action leaves a permanent, auditable trail that no party can suppress.
Smart Contracts
Smart contracts are self-executing programs stored on the blockchain that automatically carry out predefined conditions without human intervention. When condition A is met, outcome B executes — no counterparty approval, no institutional intermediary required. Smart contracts are the foundation of decentralized finance (DeFi), NFT markets, tokenized assets, and a growing range of enterprise applications. From a compliance perspective, smart contracts have introduced novel risk categories: vulnerabilities in contract code can be exploited to drain protocol funds in seconds, and smart contract addresses can themselves be designated under sanctions law — as demonstrated by OFAC’s 2022 designation of Tornado Cash.
Distributed Ledger Technology
Blockchain is a specific type of distributed ledger technology (DLT) — a category of systems in which data is recorded, shared, and synchronized across multiple sites or institutions without central administration. Not all DLT implementations use a chain of blocks; some use directed acyclic graphs or other data structures. Blockchain’s specific innovation is the cryptographic chaining of blocks that creates tamper-evidence across the full transaction history, making it the DLT architecture best suited to applications requiring permanent, publicly verifiable records.
Types of blockchain networks
Not all blockchains are structured the same way. The four primary types differ in who can access them, who controls them, and what compliance implications they carry.
| Type | Access | Control | Examples | Compliance Implications |
|---|---|---|---|---|
| Public Blockchain | Open to anyone | Decentralized; no central authority | Bitcoin, Ethereum | Fully transparent; maximum forensic traceability; highest regulatory scrutiny |
| Private Blockchain | Restricted to authorized participants | Centrally administered | Hyperledger Fabric (enterprise) | Controlled access; auditable by operator; less transparent to external parties |
| Consortium Blockchain | Restricted to a defined group | Governed by consortium members | R3 Corda, Quorum | Shared governance; used in financial institution consortia; audit access defined by membership |
| Hybrid Blockchain | Combination of public and private | Varies by implementation | Dragonchain | Selective transparency; organizations control which data is public vs. private |
| Permissioned Blockchain | Requires authorization | Operator-controlled | Hyperledger Fabric, Corda | Identity-verified participants; transaction history auditable by permissioned parties only |
The compliance implication that matters most: public blockchains — Bitcoin and Ethereum — are the networks where the overwhelming majority of cryptocurrency financial crime occurs, and where blockchain analytics provides the highest traceability. Private and permissioned blockchains are used in enterprise contexts where participants are known and transaction history is controlled by the operator, significantly limiting external forensic access.
Blockchain vs. Bitcoin: What’s the difference?
Bitcoin is a cryptocurrency — a decentralized digital currency designed for peer-to-peer value transfer without banks. Blockchain is the distributed ledger technology on which Bitcoin runs. Bitcoin was the first major application of blockchain, but blockchain is not synonymous with Bitcoin: it is the underlying infrastructure that also powers Ethereum’s smart contract ecosystem, enterprise supply chain platforms, DeFi protocols, NFT markets, and a growing range of non-financial applications. The relationship is analogous to the internet and email — email is one application built on internet infrastructure; Bitcoin is one application built on blockchain infrastructure.
| Bitcoin | Blockchain | |
|---|---|---|
| What it is | A cryptocurrency — a decentralized digital currency | A distributed ledger technology — the infrastructure layer |
| Purpose | Peer-to-peer value transfer without banks | Recording and verifying transactions across decentralized networks |
| Creator | Satoshi Nakamoto (2008 whitepaper, 2009 launch) | Conceptually developed by Stuart Haber and W. Scott Stornetta (1991); implemented for Bitcoin by Satoshi Nakamoto |
| Scope | One application built on blockchain | Infrastructure supporting thousands of applications |
| Traceability | Highly traceable via UTXO analysis and blockchain analytics | Provides the permanent public record that makes traceability possible |
Blockchain vs. traditional databases: What’s different?
| Dimension | Traditional Database | Blockchain |
|---|---|---|
| Control | Centrally administered by a single entity | Decentralized; no single controlling party |
| Data Alteration | Authorized administrators can modify or delete records | Immutable; confirmed entries cannot be altered |
| Access | Read/write access controlled by administrators | Public blockchains open to anyone; permissioned blockchains control access |
| Trust Model | Users trust the central administrator | Trustless — consensus mechanism replaces institutional trust |
| Auditability | Dependent on administrator providing records | Self-auditing; full transaction history permanently on-chain |
| Failure Point | Single point of failure if central server compromised | No single point of failure; distributed across thousands of nodes |
| Forensic Value | Records can be altered or suppressed by custodian | Permanent, unalterable forensic record available to investigators without legal process |
How is blockchain used? Real-world applications
Financial Services and Cryptocurrency
The most mature blockchain application is cryptocurrency — decentralized digital currencies including Bitcoin and Ethereum that enable peer-to-peer value transfer without banks. Beyond currency, blockchain underpins DeFi lending and trading protocols, tokenized real-world assets, stablecoin infrastructure, and cross-border payment rails. Tokenized money market assets grew from approximately $2 billion to over $7 billion in a twelve-month period, and the broader tokenized real-world asset market is projected to reach $18.9 trillion by 2033. The Bank for International Settlements, major central banks, and traditional financial institutions are actively exploring blockchain-based settlement systems, tokenized deposits, and central bank digital currencies (CBDCs).
Supply Chain Management
Blockchain provides supply chains with a shared, tamper-resistant record of product provenance — tracking goods from origin through manufacturing, shipping, and retail. Participants at each stage can verify product history without relying on a central record-keeper, reducing fraud, counterfeiting, and document manipulation. Walmart, Maersk, and major pharmaceutical companies have deployed blockchain-based supply chain systems to improve traceability and reduce product recall times. The same immutability that makes blockchain forensically valuable in financial crime investigation makes it operationally valuable in supply chain integrity applications.
Healthcare
Blockchain enables secure sharing of patient records across healthcare providers without a central data repository, giving patients control over their data while maintaining an auditable access history. Clinical trial data recorded on blockchain resists manipulation. Supply chain tracking for pharmaceuticals addresses drug counterfeiting and diversion — applying the same provenance verification model used in goods supply chains to the movement of controlled substances.
Smart Contracts and DeFi
Smart contracts automate complex financial agreements — lending, trading, insurance, derivatives — on the blockchain without institutional intermediaries. The DeFi ecosystem built on Ethereum’s smart contract infrastructure has processed trillions of dollars in transactions. From a compliance perspective, DeFi represents both a significant financial innovation and a new category of regulatory obligation: permissionless protocols require transaction-level monitoring rather than the institutional-level oversight that traditional AML frameworks assume.
NFTs and Digital Ownership
Non-fungible tokens (NFTs) use blockchain to establish verifiable ownership of unique digital assets — artwork, collectibles, intellectual property, gaming items. The NFT represents ownership on-chain; the blockchain record is the title deed. From a compliance perspective, NFT markets have been used for wash trading and money laundering — artificially inflating sale prices to generate apparent losses or transfer value between controlled wallets under the cover of apparent market activity. Blockchain analytics can identify wash trading patterns through address clustering and transaction graph analysis.
Voting Systems
Blockchain-based voting systems offer a tamper-resistant, auditable record of ballots that cannot be altered after submission — addressing the integrity concerns that affect both paper and traditional electronic voting systems. Multiple jurisdictions have piloted blockchain voting for overseas ballots and organizational governance decisions. Challenges include identity verification at enrollment, voter privacy on a public ledger, and ensuring access equity across different technology environments.
Blockchain, financial crime, and law enforcement
Blockchain as Forensic Evidence
The permanent immutability of public blockchain data has transformed financial crime investigation. Unlike bank records — which require legal process to access and can be altered or suppressed by custodians — blockchain transactions are publicly accessible, unalterable, and globally visible. Every transaction leaves a forensic trail: the sending address, receiving address, amount, timestamp, and cryptographic proof of authorization. Blockchain analytics platforms attribute those addresses to real-world entities, trace fund flows through complex transaction graphs, and produce evidence that has supported asset seizures, prosecutions, and sanctions designations globally. The same property that users sometimes misunderstand as anonymity — the pseudonymous public ledger — is, in practice, the most durable financial evidence trail in existence.
Tracing Illicit Funds on the Blockchain
Blockchain analytics is the discipline of extracting investigative intelligence from public blockchain data. Clustering algorithms group wallet addresses controlled by the same entity; attribution databases link those clusters to real-world identities through exchange intelligence, open-source intelligence (OSINT), and law enforcement partnerships; transaction graph analysis traces fund flows from a known starting point — a ransomware wallet, a darknet market deposit address, a sanctioned entity — through layering transactions to the fiat off-ramp where illicit proceeds reach the regulated financial system. This methodology has supported the recovery of billions in illicit cryptocurrency, including the $3.6 billion Bitfinex hack recovery (2022), the Colonial Pipeline ransom recovery (2021), and the attribution and prosecution of major darknet market operators across multiple coordinated international enforcement operations.
Sanctions Compliance on Blockchain Networks
Blockchain’s transparency enables sanctions compliance capabilities that are impossible with traditional financial infrastructure. OFAC maintains designated cryptocurrency wallet addresses on the Specially Designated Nationals (SDN) List — including Lazarus Group Bitcoin and Ethereum addresses, and the Tornado Cash smart contract addresses sanctioned in August 2022. VASPs and financial institutions with digital asset programs are required to screen transactions against these designated addresses in real time, using blockchain analytics tools capable of identifying both direct exposure (transacting with a designated address) and indirect exposure (receiving funds that previously passed through a designated address several hops back in the transaction graph).
The Limits of Blockchain Anonymity
The most consequential misconception about blockchain technology is that it enables anonymous financial activity. Public blockchains are pseudonymous — wallet addresses are visible without inherent identity disclosure — but they are emphatically not anonymous. Every transaction is permanently recorded. Blockchain analytics platforms have repeatedly demonstrated the ability to attribute wallet addresses to real-world identities, particularly when funds interact with regulated exchanges that maintain KYC records. Privacy-enhancing techniques — including mixing services, privacy coins, and cross-chain bridges — increase analytical complexity but have not eliminated traceability. Multiple major criminal convictions have relied on blockchain evidence to follow funds across years of complex layering activity. The investigative record consistently demonstrates: the blockchain remembers everything.
Benefits and limitations of blockchain technology
Benefits
- Tamper-resistant record-keeping: Confirmed transactions cannot be altered without detection across the distributed network
- Elimination of intermediaries: Peer-to-peer value transfer without banks, clearinghouses, or correspondent institutions
- Transparency and auditability: Public blockchains provide a globally accessible, real-time audit trail available without legal process
- Programmability: Smart contracts automate complex multi-party agreements and execute without human intervention
- Resilience: Distributed architecture eliminates single points of failure that central databases face
Limitations
- Scalability: Most public blockchains process significantly fewer transactions per second than centralized payment systems; Layer 2 solutions address this at the cost of additional architectural complexity
- Energy consumption: Proof of Work consensus (Bitcoin) consumes substantial electrical power; Proof of Stake reduces this significantly but introduces different trade-offs
- Irrevocability: Errors in smart contract code or fraudulent transactions cannot be reversed after confirmation; the same immutability that provides forensic value creates operational risk
- Regulatory uncertainty: The legal status of blockchain-based assets and activities varies by jurisdiction and continues to evolve, creating compliance complexity for globally operating organizations
- Interoperability: Different blockchain networks do not natively communicate with each other; cross-chain bridges that address this introduce additional security risk and compliance complexity
The history of blockchain
Blockchain did not emerge fully formed with Bitcoin. Its foundational concepts were developed across decades before Satoshi Nakamoto applied them to create the first functional cryptocurrency.
In 1991, Stuart Haber and W. Scott Stornetta published the first proposal for a cryptographically secured chain of blocks — a system for timestamping digital documents so their contents could not be altered or backdated. Their work established the cryptographic chaining principle that all subsequent blockchain implementations use. In 2008, Satoshi Nakamoto published the Bitcoin whitepaper, describing a peer-to-peer electronic cash system that used blockchain as its transaction ledger — applying Haber and Stornetta’s cryptographic chaining to a decentralized financial system for the first time. Bitcoin launched in January 2009; the genesis block was mined on January 3rd, embedding a reference to a Times of London headline about bank bailouts — a deliberate commentary on the centralized financial system blockchain was designed to circumvent.
In 2015, Ethereum launched with programmable smart contract functionality, expanding blockchain from a currency ledger to a general-purpose computation platform. The subsequent decade produced thousands of blockchain applications, the DeFi ecosystem, NFT markets, and the tokenization of traditional financial assets. In August 2022, OFAC’s designation of Tornado Cash smart contract addresses established that blockchain-native code can be sanctioned under U.S. law — a landmark regulatory precedent that reshaped compliance obligations across the entire digital asset industry. In January 2024, the SEC approved spot Bitcoin ETFs in the United States, extending institutional custody and compliance obligations to traditional asset managers. In July 2025, the U.S. GENIUS Act established a federal regulatory framework for payment stablecoins — the first comprehensive federal stablecoin legislation in U.S. history.
How Chainalysis uses blockchain data to fight financial crime
Chainalysis was founded on a single insight: blockchain’s permanent public record is not a compliance liability — it is the most powerful financial intelligence infrastructure ever built. The entire Chainalysis platform is built to extract that intelligence and put it in the hands of the investigators, compliance teams, and institutions that need it.
Chainalysis Reactor: Investigation platform that uses blockchain’s public ledger to trace fund flows across 400+ blockchain networks, attribute wallet addresses to real-world entities, and produce court-ready forensic evidence. Used by law enforcement agencies in over 100 countries and qualified as expert testimony in Daubert-standard proceedings.
Chainalysis KYT (Know Your Transaction): Real-time blockchain transaction monitoring for VASPs and financial institutions, screening every transaction against sanctions lists, darknet market attribution databases, and behavioral risk indicators across the full chain history.
Chainalysis Address Screening: Pre-transaction blockchain address risk assessment, enabling compliance teams to identify illicit exposure before funds are processed rather than after.
Chainalysis Academy: Free blockchain forensics training for law enforcement, compliance professionals, and investigators at every level — with over 50,000 professionals certified globally.
Frequently asked questions about blockchain
Q: What is blockchain in simple words?
A: Blockchain is a shared digital record book — a ledger — that stores transactions across thousands of computers simultaneously rather than in one central location. Every entry is permanent and cannot be changed after it’s recorded. Bitcoin was the first major use of blockchain, but the technology now underpins cryptocurrency markets, DeFi protocols, supply chains, and a growing range of other applications.
Q: How does blockchain work?
A: When a user initiates a blockchain transaction, it is broadcast to a network of computers (nodes) that independently verify it, group it with other valid transactions into a block, reach consensus on the block’s validity through a mechanism like Proof of Work or Proof of Stake, and add the confirmed block to the chain. Each block contains a cryptographic hash of the previous block, creating a tamper-evident chain of records. Once confirmed, the transaction is permanent and visible to anyone with access to the network.
Q: What is the difference between blockchain and Bitcoin?
A: Bitcoin is a cryptocurrency — a decentralized digital currency — that uses blockchain as its transaction ledger. Blockchain is the underlying distributed ledger technology that Bitcoin runs on. Bitcoin is one application of blockchain; the technology also powers Ethereum, DeFi protocols, NFT markets, supply chain systems, and enterprise data applications. Blockchain predates Bitcoin conceptually — its cryptographic chaining principles were first described by Stuart Haber and W. Scott Stornetta in 1991.
Q: What is the difference between blockchain and a traditional database?
A: A traditional database is controlled by a central administrator who can read, write, and delete records. Blockchain is distributed across thousands of independent nodes — no single party controls it, and confirmed entries cannot be altered without detection. Traditional databases require users to trust the administrator; blockchain is trustless, replacing institutional trust with cryptographic consensus. For forensic purposes, blockchain’s most important difference is permanence: traditional records can be altered or suppressed by custodians; blockchain records cannot.
Q: Why is blockchain considered secure?
A: Blockchain’s security derives from three properties working together: cryptographic hashing (altering any block changes its hash and invalidates every subsequent block), decentralization (no single point of failure or control), and consensus mechanisms (adding new blocks requires agreement from the majority of the network). Reversing a confirmed Bitcoin transaction would require re-mining every block added afterward while outpacing the honest network — computationally infeasible given Bitcoin’s scale.
Q: Can blockchain be used for things other than cryptocurrency?
A: Yes. Blockchain’s core properties — tamper-resistance, decentralization, and transparent auditability — apply to any application requiring a shared, trusted record. Active applications include supply chain provenance tracking, healthcare record sharing, smart contract-based financial services, NFT ownership records, voting systems, and enterprise data management. Cryptocurrency was the first major application of blockchain, but the technology’s scope extends well beyond digital currency.
Q: Can blockchain transactions be traced?
A: Yes — and more effectively than traditional financial transactions. Despite the common misconception that blockchain enables anonymous activity, public blockchains like Bitcoin and Ethereum record every transaction permanently and make it visible to anyone. Blockchain analytics platforms attribute wallet addresses to real-world entities through clustering algorithms, exchange intelligence, and law enforcement data sharing — producing forensic evidence that has supported billions in asset seizures and thousands of criminal convictions globally. Privacy-enhancing tools like mixers and privacy coins increase analytical complexity, but they have not eliminated traceability. Cryptocurrency is, in practice, more traceable than cash: the blockchain never forgets.
Blockchain’s permanent, public transaction record is both the infrastructure of the digital asset economy and the foundation of modern financial crime investigation.
Chainalysis gives law enforcement, financial institutions, and crypto businesses the tools to trace, monitor, and investigate blockchain activity across every major network.
Request a Demo. See how Chainalysis can support your blockchain intelligence program.
Explore Chainalysis Reactor for blockchain investigations.
Learn blockchain fundamentals and forensics with Chainalysis Academy.
Read the 2026 Crypto Crime Report.
See how Chainalysis KYT monitors blockchain transactions in real time.