ContractWard: Automated Vulnerability Detection Models for Ethereum Smart Contracts
نویسندگان
چکیده
Smart contracts are decentralized applications running on Blockchain. A very large number of smart has been deployed Ethereum. Meanwhile, security flaws have led to huge pecuniary losses and destroyed the ecological stability contract layer It is thus an emerging yet crucial issue effectively efficiently detect vulnerabilities in contracts. Existing detection methods like Oyente Securify mainly based symbolic execution or analysis. These time-consuming, as requires exploration all executable paths analysis dependency graphs a contract. In this work, we propose ContractWard with machine learning techniques. First, extract bigram features from simplified operation codes Second, employ five algorithms two sampling build models. evaluated 49502 real-world The experimental results demonstrate effectiveness efficiency ContractWard. predictive Micro-F1 Macro-F1 over 96% average time 4 seconds each when use XGBoost for training models SMOTETomek balancing sets.
منابع مشابه
Tool Demonstration: FSolidM for Designing Secure Ethereum Smart Contracts
Blockchain-based distributed computing platforms enable the trusted execution of computation—defined in the form of smart contracts—without trusted agents. Smart contracts are envisioned to have a variety of applications, ranging from financial to IoT asset tracking. Unfortunately, the development of smart contracts has proven to be extremely error prone. In practice, contracts are riddled with...
متن کاملA survey of attacks on Ethereum smart contracts
Smart contracts are computer programs that can be correctly executed by a network of mutually distrusting nodes, without the need of an external trusted authority. Since smart contracts handle and transfer assets of considerable value, besides their correct execution it is also crucial that their implementation is secure against attacks which aim at stealing or tampering the assets. We study th...
متن کاملA Survey of Attacks on Ethereum Smart Contracts (SoK)
Smart contracts are computer programs that can be correctly executed by a network of mutually distrusting nodes, without the need of an external trusted authority. Since smart contracts handle and transfer assets of considerable value, besides their correct execution it is also crucial that their implementation is secure against attacks which aim at stealing or tampering the assets. We study th...
متن کاملFindel: Secure Derivative Contracts for Ethereum
Blockchain-based smart contracts are considered a promising technology for handling financial agreements securely. In order to realize this vision, we need a formal language to unambiguously describe contract clauses. We introduce Findel – a purely declarative financial domain-specific language (DSL) well suited for implementation in blockchain networks. We implement an Ethereum smart contract ...
متن کاملA Semantic Framework for the Security Analysis of Ethereum smart contracts
Smart contracts are programs running on cryptocurrency (e.g., Ethereum) blockchains, whose popularity stem from the possibility to perform financial transactions, such as payments and auctions, in a distributed environment without need for any trusted third party. Given their financial nature, bugs or vulnerabilities in these programs may lead to catastrophic consequences, as witnessed by recen...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: IEEE Transactions on Network Science and Engineering
سال: 2021
ISSN: ['2334-329X', '2327-4697']
DOI: https://doi.org/10.1109/tnse.2020.2968505