Securing Smart Contract with Runtime Validation

被引：45

作者：

Li, Ao ^{[1
]}

Choi, Jemin Andrew ^{[1
]}

Long, Fan ^{[1
]}

机构：

[1] Univ Toronto, Toronto, ON, Canada

来源：

PROCEEDINGS OF THE 41ST ACM SIGPLAN CONFERENCE ON PROGRAMMING LANGUAGE DESIGN AND IMPLEMENTATION (PLDI '20) | 2020年

关键词：

runtime validation; smart contract; compiler;

D O I：

10.1145/3385412.3385982

中图分类号：

TP31 [计算机软件];

学科分类号：

081202 ; 0835 ;

摘要：

We present Solythesis, a source to source Solidity compiler which takes a smart contract code and a user specified invariant as the input and produces an instrumented contract that rejects all transactions that violate the invariant. The design of Solythesis is driven by our observation that the consensus protocol and the storage layer are the primary and the secondary performance bottlenecks of Ethereum, respectively. Solythesis operates with our novel delta update and delta check techniques to minimize the overhead caused by the instrumented storage access statements. Our experimental results validate our hypothesis that the overhead of runtime validation, which is often too expensive for other domains, is in fact negligible for smart contracts. The CPU overhead of Solythesis is only 0.1% on average for our 23 benchmark contracts.

引用

页码：438 / 453

页数：16

共 50 条

[31] Securing communications in the smart home
Argyroudis, PG
O'Mahony, D
EMBEDDED AND UBIQUITOUS COMPUTING, PROCEEDINGS, 2004, 3207 : 891 - 902
[32] Securing Smart Cities with Monitors
Creado, Orhio Mark
Phu Dung Le
VISION 2020: SUSTAINABLE ECONOMIC DEVELOPMENT, INNOVATION MANAGEMENT, AND GLOBAL GROWTH, VOLS I-IX, 2017, 2017, : 3972 - 3991
[33] Smart Contract Firewall: Protecting the on-Chain Smart Contract Projects
Su, Shen
Xue, Yue
Lin, Liansheng
Wang, Chao
Lu, Hui
Qiu, Jing
Sun, Yanbin
Liu, Yuan
Tian, Zhihong
IEEE CONFERENCE ON GLOBAL COMMUNICATIONS, GLOBECOM, 2023, : 5122 - 5128
[34] Smart Payment Contract Mechanism Based on Blockchain Smart Contract Mechanism
Ge, Xianyun
SCIENTIFIC PROGRAMMING, 2021, 2021
[35] Securing Smart Contracts in Blockchain
Kongmanee, Jaturong
Kijsanayothin, Phongphun
Hewett, Rattikorn
2019 34TH IEEE/ACM INTERNATIONAL CONFERENCE ON AUTOMATED SOFTWARE ENGINEERING WORKSHOPS (ASEW 2019), 2019, : 69 - 76
[36] A case for runtime validation of hardware
Malik, Sharad
HARDWARE AND SOFTWARE VERIFICATION AND TESTING, 2006, 3875 : 30 - 42
[37] SECURING SMART GRID TECHNOLOGY
Krishna, Chaitanya E.
Reddy, Kosaleswara T.
Reddy, M. YogaTeja
Reddy, Sreerama G. M.
MadhuSudhan, E.
AlMuhteb, Sulaiman
INTERNATIONAL CONFERENCE ON GRAPHIC AND IMAGE PROCESSING (ICGIP 2012), 2013, 8768
[38] Blockchain for Securing Smart Grids
Aldabbagh, Ghadah
Bamasag, Omaimah
Almasari, Lola
Alsaidalani, Rabab
Redwan, Afnan
Alsaggaf, Amaal
INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2021, 21 (04): : 255 - 263
[39] Partial Validation of Configurations at Runtime
Jahanbanifar, Azadeh
Khendek, Ferhat
Toeroe, Maria
2015 IEEE 18TH INTERNATIONAL SYMPOSIUM ON REAL-TIME DISTRIBUTED COMPUTING (ISORC), 2015, : 288 - 291
[40] SECURING A UNION CONTRACT - IMPACT OF THE UNION ORGANIZER
REED, TF
INDUSTRIAL RELATIONS, 1993, 32 (02): : 188 - 203

← 1 2 3 4 5 →