designing secure ethereum smart contracts a finite state
play

Designing Secure Ethereum Smart Contracts: A Finite State Machine - PowerPoint PPT Presentation

Feb 11, 2023 •356 likes •575 views

Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia Mavridou 1 and Aron Laszka 2 1 Vanderbilt University 2 University of Houston 2 Smart Contract Insecurity Smart contracts are riddled with bugs and

  1. Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach Anastasia Mavridou 1 and Aron Laszka 2 1 Vanderbilt University 2 University of Houston

  2. 2

  3. Smart Contract Insecurity Smart contracts are riddled with bugs and security vulnerabilities • A recent automated analysis of 19,336 Ethereum contracts • 8,333 contracts suffer from at least one security issue • Luu, Loi, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, and Aquinas Hobor. "Making smart contracts smarter." ACM CCS , 2016. 3

  4. Ethereum Smart Contracts • S mart contracts are riddled with bugs and security vulnerabilities A recent automated analysis of 19,336 Ethereum contracts • 8,333 contracts suffer from at least one security issue • Luu, Loi, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, and Aquinas Hobor. "Making smart contracts smarter." In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, pp. 254-269. ACM, 2016. Nikolic, Ivica, Aashish KolluriChu, Ilya Sergey, Prateek Saxena, and Aquinas Hobor. “Finding the Greedy, Prodigal, and Suicidal Contracts at Scale.”arXiv:1802.06038, 2018. 4

  5. Security Vulnerabilities are a Serious Issue Smart contracts handle financial assets of significant value • Value held by Ethereum contracts is 12,205,706 ETH or $10B • Smart contract bugs cannot be patched • Once a contract is deployed, its code cannot be changed • Blockchain transactions cannot be rolled back • Once a malicious transaction is recorded it cannot be removed • Well… actually… • It can be rolled back with a hard fork of the blockchain • 5

  6. Common Vulnerabilities Examples of common vulnerabilities [1] • Reentrancy • Transaction-Ordering Dependency • [1] Luu, Loi, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, and Aquinas Hobor. "Making smart contracts smarter." ACM CCS , 2016. 6

  7. Reentrancy In Ethereum, when there is a function call • The caller has to wait for the call to finish • A malicious callee might take advantage of this • Bank function withdraw(uint amount) { if (credit[msg.sender]>= amount) { msg.sender.call.value(amount)(); credit[msg.sender]-=amount; }}} 7

  8. Reentrancy In Ethereum, when there is a function call • The caller has to wait for the call to finish • A malicious callee might take advantage of this • withdraw Bank Mallory call T function withdraw(uint amount) { if (credit[msg.sender]>= amount) { msg.sender.call.value(amount)(); credit[msg.sender]-=amount; }}} 8

  9. Reentrancy In Ethereum, when there is a function call • The caller has to wait for the call to finish • A malicious callee might take advantage of this • withdraw Bank Mallory call T withdraw function withdraw(uint amount) { function() { if (credit[msg.sender]>= amount) { bank dao.withdraw(dao.queryCredit(this)); } bank msg.sender.call.value(amount)(); } credit[msg.sender]-=amount; }}} 9

  10. Transaction Ordering Dependency Also known as unpredictable state vulnerability • The order of execution of function calls cannot be predicted • No prior knowledge of a contract’s state during call execution • createO ff er (sell 10 tokens for 1 ether) Market acceptO ff er T Seller Buyer 10

  11. Transaction Ordering Dependency Also known as unpredictable state vulnerability • The order of execution of function calls cannot be predicted • No prior knowledge of a contract’s state during call execution • createO ff er (sell 10 tokens for 1 ether) Market acceptO ff er T updateO ff er (sell1 token for 1 ether) Seller Buyer 11

  12. Our Motivation Vulnerabilities often arise due to the semantic gap • The assumptions developers make about execution semantics • The actual semantics • Prior work: • Tools for identifying existing vulnerabilities • Tools for static analysis • Design patterns, e.g., Checks-Effects-Interactions • We explore a different avenue • We want to help developers to create secure smart contracts • Correctness-by-design • 12

  13. 9/22/2017 demo / BIP_test 9/22/2017 demo / BIP_test 9/22/2017 demo / BIP_test 9/22/2017 demo / BIP_test 9/22/2017 demo / BIP_test 9/22/2017 demo / BIP_test close reveal 9/22/2017 demo / BIP_test [now > creationTime + 5 days] [values.length == secret.length] bid 9/22/2017 demo / BIP_test ABB RB close reveal [now > creationTime + 5 days] [values.length == secret.length] finish bid close reveal ABB RB close reveal cancelABB [now >= creationTime + 10 days] [now > creationTime + 5 days] [values.length == secret.length] bid cancelRB ABB RB [now > creationTime + 5 days] [values.length == secret.length] bid ABB RB close reveal close reveal [now > creationTime + 5 days] [values.length == secret.length] bid ABB RB [now > creationTime + 5 days] finish close [values.length == secret.length] reveal bid ABB close RB reveal unbid cancelABB [now > creationTime + 5 days] [now >= creationTime + 10 days] C [values.length == secret.length] finish bid F [now > creationTime + 5 days] ABB RB [values.length == secret.length] cancelRB bid finish ABB RB withdraw cancelABB [now >= creationTime + 10 days] cancelRB cancelABB [now >= creationTime + 10 days] cancelRB finish finish cancelABB [now >= creationTime + 10 days] unbid C finish cancelABB cancelRB [now >= creationTime + 10 days] F finish cancelRB unbid withdraw C cancelABB [now >= creationTime + 10 days] F cancelABB [now >= creationTime + 10 days] cancelRB unbid C withdraw cancelRB F withdraw unbid C F unbid C F withdraw unbid C withdraw F unbid C F withdraw withdraw Our Approach - Model Based Design We introduce a formal, transition-based language for smart contracts • label, [guard], action • A contract can be naturally represented by a transition system A Smart Contract is a tuple • le ( S, s 0 , C, I, O, → ) , is a finite set of states • – S is the initial state • – s 0 ∈ S ∈ and are finite sets of contract, input, and output variables • – C , I , a d O Is a transition relation • – → ⊆ S × G × F × S → ⊆ • G B Is a set of guards and is a set of action sets • G = • • F 13 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1

  14. 9/22/2017 demo / BIP_test Example: Blind Auction Contract as a Transition System close reveal [now > creationTime + 5 days] [values.length == secret.length] bid ABB RB finish cancelABB [now >= creationTime + 10 days] cancelRB unbid C F withdraw 14 https://editor.webgme.org/?project=demo%2BBIP_test&branch=master&node=%2Ff%2F1%2FD&visualizer=BIPEditor&tab=1&layout=DefaultLayout&selection= 1/1

  15. Our Approach - Model Based Design Advantages • High-level model → adequate level of abstraction • Rigorous semantics → amenable to formal verification • Code generation from transition systems to Solidity code • Plugins that implement security features and design patterns • 15

  16. Common Vulnerabilities and Design Patterns Examples of common vulnerabilities [1] • Reentrancy • Transaction-Ordering Dependency • Most common design patterns [2] • Authorization • Time constraints • [1] Luu, Loi, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, and Aquinas Hobor. "Making smart contracts smarter." ACM CCS , 2016. [2] Bartoletti, Massimo, and Livio Pompianu. "An empirical analysis of smart contracts: platforms, applications, and design patterns." TSC in FC , 2017. 16

  17. Examples of FSolidM Plugins • Locking • Transition counter += bool private locked = false; += uint private transitionCounter = 0; modifier locking { modifier transitionCounting(uint nextTransitionNumber) { require(nextTransitionNumber == transitionCounter); require(!locked); transitionCounter += 1; locked = true; _; _; } locked = false; } • Reentrancy • Transaction-Ordering Dependency 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Ethereum Smart Contracts Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical

Ethereum Smart Contracts Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical

Ethereum Smart Contracts Saravanan Vijayakumaran sarva@ee.iitb.ac.in Department of Electrical Engineering Indian Institute of Technology Bombay September 4, 2018 1 / 14 Ethereum Contracts Contract = Collection of functions and state at a

179 views • 14 slides
Ethereum Transactions and Smart Contracts Prof. Tom Austin San Jos State University

Ethereum Transactions and Smart Contracts Prof. Tom Austin San Jos State University

Cryptocurrencies & Security on the Blockchain Ethereum Transactions and Smart Contracts Prof. Tom Austin San Jos State University Transactions Transactions Signed messages triggered by EOA Atomic If they fail, they roll back

536 views • 22 slides
Smart Contracts and Ethereum Winter School on Cryptocurrency Loi Luu and Blockchain Technologies

Smart Contracts and Ethereum Winter School on Cryptocurrency Loi Luu and Blockchain Technologies

Smart Contracts and Ethereum Winter School on Cryptocurrency Loi Luu and Blockchain Technologies National University of Singapore Shanghai, Jan. 15-17 2017 Some slides are courtesy of Vitalik Buterin 1 Agenda Smart contracts and

1.12k views • 79 slides
Findel: Secure Derivative Contracts for Tikhomirov Ethereum Introduction Financial Languages

Findel: Secure Derivative Contracts for Tikhomirov Ethereum Introduction Financial Languages

Findel: Ethereum Derivatives Biryukov, Khovratovich, Findel: Secure Derivative Contracts for Tikhomirov Ethereum Introduction Financial Languages Composable Contracts Ethereum Alex Biryukov Dmitry Khovratovich Our Contribution Sergei

579 views • 27 slides
Ethereum and smart contracts Prof. Raluca Ada Popa Sept 12, 2018 Material based on the Ethereum

Ethereum and smart contracts Prof. Raluca Ada Popa Sept 12, 2018 Material based on the Ethereum

CS261: Security in Computer Systems Ethereum and smart contracts Prof. Raluca Ada Popa Sept 12, 2018 Material based on the Ethereum white paper Cryptocurrencies we cover in this class Four very di ff erent cryptocurrencies each introducing di

472 views • 16 slides
Ethereum Workshop An Introduction to T ools, Solidity & Smart Contracts 1 / 40 Preparation

Ethereum Workshop An Introduction to T ools, Solidity & Smart Contracts 1 / 40 Preparation

Ethereum Workshop An Introduction to T ools, Solidity & Smart Contracts 1 / 40 Preparation Follow the instructions on: http://bit.ly/2um6cGA 2 / 40 Agenda 1) A brief introduction to Ethereum 2) Setting up a private blockchain 3)

619 views • 40 slides
Working with Smart Contracts in Ethereum Was prepared with the assistance of Mohammad H.

Working with Smart Contracts in Ethereum Was prepared with the assistance of Mohammad H.

A hands-on tutorial: Working with Smart Contracts in Ethereum Was prepared with the assistance of Mohammad H. Tabatabaei from the University of Oslo Different tools provide different functionality Tools Remix Ganache MyEtherWallet Geth

717 views • 50 slides
Certifying functional correctness of Ethereum smart contracts Dr. Petar Tsankov Co-founder and

Certifying functional correctness of Ethereum smart contracts Dr. Petar Tsankov Co-founder and

Certifying functional correctness of Ethereum smart contracts Dr. Petar Tsankov Co-founder and Chief scientist, ChainSecurity Senior researcher, ICE center, ETH Zurich @ptsankov Inter-disciplinary research center at Next-generation blockchain

566 views • 33 slides
V ERI S OLID : Correct-by-Design Smart Contracts for Ethereum Anastasia Mavridou 1 , Aron

V ERI S OLID : Correct-by-Design Smart Contracts for Ethereum Anastasia Mavridou 1 , Aron

V ERI S OLID : Correct-by-Design Smart Contracts for Ethereum Anastasia Mavridou 1 , Aron Laszka 2 , Emmanouela Stachtiari 3 , Abhishek Dubey 4 1 NASA Ames 2 University of Houston 3 Aristotle University of Thessaloniki 4 Vanderbilt University

555 views • 18 slides
V ERI S OLID : Correct-by-Design Smart Contracts for Ethereum Aron Laszka 1 , Anastasia Mavridou 2

V ERI S OLID : Correct-by-Design Smart Contracts for Ethereum Aron Laszka 1 , Anastasia Mavridou 2

V ERI S OLID : Correct-by-Design Smart Contracts for Ethereum Aron Laszka 1 , Anastasia Mavridou 2 , Scott Eisele 3 , Emmanouela Stachtiari 4 , Abhishek Dubey 3 1 University of Houston 2 NASA Ames 3 Vanderbilt University 4 Aristotle University of

506 views • 21 slides
Smart Contract PL 2018-08-20 Blockchain intro Bitcoin Ethereum

Smart Contract PL 2018-08-20 Blockchain intro Bitcoin Ethereum

SIGPL Smart Contract PL 2018-08-20 Blockchain intro Bitcoin Ethereum Hyperledger Transaction Model State + account model Framework State n Transaction State n+1 + EVM (Ethereum Virtual Machine) -

625 views • 38 slides
Defining the Ethereum Virtual Machine for Interactive Theorem Provers Yoichi Hirai Ethereum

Defining the Ethereum Virtual Machine for Interactive Theorem Provers Yoichi Hirai Ethereum

Overview Some Technicality Own Evaluation Summary Defining the Ethereum Virtual Machine for Interactive Theorem Provers Yoichi Hirai Ethereum Foundation Workshop on Trusted Smart Contracts Malta, Apr. 7, 2017 1/32 Yoichi Hirai Defining

538 views • 32 slides
Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] .

Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] .

Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] . Lorenz Breidenbach ETH Zurich, Cornell [Tech] . Florian Tramer . Stanford . Smart Contract Security - The Prongs Formal Verification (+Specification)

960 views • 28 slides
Ethereum: A blockchain-based smart contract platform Tien Dat Le Questions Bitcoin vs

Ethereum: A blockchain-based smart contract platform Tien Dat Le Questions Bitcoin vs

Ethereum: A blockchain-based smart contract platform Tien Dat Le Questions Bitcoin vs Ethereum ? Why Ethereum and Decentralized application (Dapps) ? How Ethereum work ? What is new challenges in Dapps context ? 20.03.2018 3

916 views • 44 slides
Oracles Thus Far Bitcoin Ethereum Recap Bitcoin Script: Dest Address in UTXO

Oracles Thus Far Bitcoin Ethereum Recap Bitcoin Script: Dest Address in UTXO

Oracles Thus Far Bitcoin Ethereum Recap Bitcoin Script: Dest Address in UTXO Timelock What else? Recap Ethereum Smart contracts Examples? Real-World When the temperature hits XF, pay $. When player X

682 views • 45 slides
Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all

Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all

Writing Smart Contracts Dionysis Zindros Smart Contracts Day Athens, March 2017 We talked all about what smart contracts are... ...but what does a real smart contract look like? Lets talk about writing actual Smart Contracts with code

809 views • 50 slides
Smart Jump: Automated Navigation Suggestion for Videos in MOOCs Han Zhang , Maosong Sun ,

Smart Jump: Automated Navigation Suggestion for Videos in MOOCs Han Zhang , Maosong Sun ,

Smart Jump: Automated Navigation Suggestion for Videos in MOOCs Han Zhang , Maosong Sun , Xiaochen Wang , Zhengyang Song , Jie Tang , Jimeng Sun Tsinghua University Georgia Institute of Technology 1 MOOCs 808

626 views • 20 slides
A Note on the Performance Distribution of Affine Schedules Louis-Nol Pouchet 1 , Cdric Bastoul

A Note on the Performance Distribution of Affine Schedules Louis-Nol Pouchet 1 , Cdric Bastoul

A Note on the Performance Distribution of Affine Schedules Louis-Nol Pouchet 1 , Cdric Bastoul 1 , John Cavazos 2 and Albert Cohen 1 1 ALCHEMY, INRIA Futurs / University of Paris-Sud XI, France 2 Computer and Information Sciences, University of

823 views • 24 slides
Methods to Better Account for Land Use in Planning Multimodal Transportation Systems and

Methods to Better Account for Land Use in Planning Multimodal Transportation Systems and

Transportation Res esearch Boa Board ADD DD30 - Transportation an and La Land De Develo lopment Com Committee Methods to Better Account for Land Use in Planning Multimodal Transportation Systems and Sustainable Communities Moderator:

1.31k views • 75 slides
Artificial I Intelligence f for S Smart Transp sportation Yan Liu Associate Professor

Artificial I Intelligence f for S Smart Transp sportation Yan Liu Associate Professor

Artificial I Intelligence f for S Smart Transp sportation Yan Liu Associate Professor Computer Science Department University of Southern California Yan Liu (USC) ARTIFICIAL INTELLIGENCE FOR SMART TRANSPORTATION ARTIFICIAL INTELLIGENCE

710 views • 54 slides
k N Wo r d S o c r a t i c S e mi n a r ( D a y 1 ) . n o t e b o

k N Wo r d S o c r a t i c S e mi n a r ( D a y 1 ) . n o t e b o

k N Wo r d S o c r a t i c S e mi n a r ( D a y 1 ) . n o t e b o o J a n u a r y 2 9 , 2 0 1 3 J a n 2 4 8 : 2 3 A M 1 k N Wo r d S o c r a t i c S e mi n a r (

329 views • 8 slides
Announcements Today: Last lecture , special topic on smart transportation security Attention:

Announcements Today: Last lecture , special topic on smart transportation security Attention:

Announcements Today: Last lecture , special topic on smart transportation security Attention: Its within the scope of final exam Final exam: 12/12, 1:30-3:30 PM Should be in this class room (HSLH 100A) Bring your photo ID with

766 views • 52 slides
University Of Bristol 1 What to talk about? 2 What to talk about? Theory vs Practice vs

University Of Bristol 1 What to talk about? 2 What to talk about? Theory vs Practice vs

(Or Living Between a Rock and a Hard Place) Nigel Smart University Of Bristol 1 What to talk about? 2 What to talk about? Theory vs Practice vs Theory and Practice A key problem is someones theory is someone elses practice,

1.66k views • 68 slides
Mastering the Diversity in Smart Homes A Practical Approach Kai Kreuzer, Deutsche Telekom AG

Mastering the Diversity in Smart Homes A Practical Approach Kai Kreuzer, Deutsche Telekom AG

Mastering the Diversity in Smart Homes A Practical Approach Kai Kreuzer, Deutsche Telekom AG Olaf Weinmann, Bosch SI Eclipse SmartHome Project Lead Eclipse Vorto Project Lead 1 http://imgs.xkcd.com/comics/standards.png INTRANET OF THINGS

390 views • 15 slides

More recommend