not your grandma s smart contract verification
play

Not Your Grandmas Smart Contract Verification Florian Hubert Dana - PowerPoint PPT Presentation

Mar 20, 2023 •441 likes •641 views

Not Your Grandmas Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur Quentin Petar Martin Buenzli Ritzdorf Cohen Dan Gervais Hibon Tsankov Vechev http://blockchainsecurity.ethz.ch Smart Contract Security

  1. Not Your Grandma’s Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur Quentin Petar Martin Buenzli Ritzdorf Cohen Dan Gervais Hibon Tsankov Vechev http://blockchainsecurity.ethz.ch

  2. Smart Contract Security Bugs in the News

  3. Unpri rivileged write to storage Wallet Contract address owner = ...; Any user may function initWallet(address _owner) { change the owner = _owner; wallet’s owner } function withdraw(uint amount) { if (msg.sender == owner) { owner.transfer(amount); Only owner can } send ether } An attacker used a similar bug to steal $30M in July

  4. More Security Bugs … Unexpected ether flows

  5. More Security Bugs … Unexpected ether flows Insecure coding, such as unprivileged writes (e.g., Multisig Parity bug)

  6. More Security Bugs … Unexpected ether flows Insecure coding, such as unprivileged writes (e.g., Multisig Parity bug) Use of unsafe inputs (e.g., reflection, hashing, … )

  7. More Security Bugs … Unexpected ether flows Insecure coding, such as unprivileged writes (e.g., Multisig Parity bug) Use of unsafe inputs (e.g., reflection, hashing, … ) Reentrant method calls (e.g., DAO bug)

  8. More Security Bugs … Unexpected ether flows Insecure coding, such as unprivileged writes (e.g., Multisig Parity bug) Use of unsafe inputs (e.g., reflection, hashing, … ) Reentrant method calls (e.g., DAO bug) Manipulating ether flows via transaction reordering

  9. Transaction re reordering Token Contract uint price = 10; address owner; The owner can function setPrice(uint newPrice) { change the price if (msg.sender == owner) price = newPrice; } A user can buy with function sellToken() { the current price msg.sender.transfer(price); } The two operations do not commute

  10. Automated Security Analysis

  11. Automated Security Analysis Approaches All possible contract Security behaviors Bugs Problem : Cannot enumerate all possible contract behaviors …

  12. Security Analysis Approaches Testing Dynamic (symbolic) analysis Automated verification Report true bugs Report true bugs Can report false alarms Can miss bugs Can miss bugs No missed bugs

  13. Current State of Automated Analysis for Ethereum Smart Contracts

  14. Security Analysis Approaches Populus Oyente Testing Dynamic (symbolic) analysis Automated verification Report true bugs Report true bugs Can report false alarms Can miss bugs Can miss bugs No missed bugs

  15. Fully automated , one-click, formal verification system for Ethereum smart contracts www.securify.ch

  16. Demo

  17. Securify: Under the Hood Security patterns Captures key expressed in a semantic facts about designated security the contract language 00: 60 00: x = Balance MemTag (0x20, Balance ) 02: 5b 02: y = 0x20 MemTag (0x40, Const ) 04: 42 04: If (x == 0x00) VarTag (z, Const ) 06: 80 06: MStore (y, x) VarTag (k, Gas ) Static Infer Decomp. 08: 90 08: z = y Assign (s, 0x20) Analysis 0a: 56 0a: goto 0x42 Call (s{0x20}, k{ Gas }) ⋮ ⋮ ⋮ Securify Securify Intermediate Securify Semantic EVM Report Representation Representation Binary Fully automated, easily extensible

  18. ChainSecurity Swiss-based startup that provides intelligent security solutions for blockchains and smart contracts Automated Comprehensive Security Analysis Smart Contract Systems Auditing https://chainsecurity.com

  19. Summary Research Product Fully automated Get in touch with our team of security / blockchain / Strong guarantees program analysis experts Extensible https://chainsecurity.com contact@chainsecurity.com @chain_security https://www.securify.ch

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract

Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract

Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract Verification Why? More examples of bugs! How? Beyond bugs in code: networks, miners and incentives Attacks by miners: reorder, delay,

405 views • 24 slides
Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou Security Consultant Smart contract audits Nmap/Ncrack contributor Certs: OSCE, OSCP, OSWP Blockchain Basics Front Running

642 views • 30 slides
COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract Demo/Walkthrough OVERVIEW What is a Blockchain? Bitcoin. Blockchain design considerations. Smart contract. ERC-20 Ethereum Smart Contract demonstration.

549 views • 26 slides
Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content

Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content

Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content Legal Tech What is a Smart Contract? The need for Smart Contract Dispute Resolution? How Smart Contract Dispute Resolution works Automated

868 views • 40 slides
WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean? What does Decentralization mean? Decentralized Marketing is formed on a smart contract that provides complete security and resilience. A Smart

766 views • 14 slides
Ontology Aided Smart Contract Execution for Unexpected Situations Farhad Mohsin, Xingjian Zhao,

Ontology Aided Smart Contract Execution for Unexpected Situations Farhad Mohsin, Xingjian Zhao,

Ontology Aided Smart Contract Execution for Unexpected Situations Farhad Mohsin, Xingjian Zhao, Zhuo (Robin) Hong, Geeth de Mel, Lirong Xia, and Oshani Seneviratne Blockchain and Smart Contract Blockchain enables trustworthy data sharing

478 views • 14 slides
Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] .

Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] .

Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] . Lorenz Breidenbach ETH Zurich, Cornell [Tech] . Florian Tramer . Stanford . Smart Contract Security - The Prongs Formal Verification (+Specification)

960 views • 28 slides
Verification Contract RFP 2 nd Kickoff January 12, 2017 Disclaimer: Information in this

Verification Contract RFP 2 nd Kickoff January 12, 2017 Disclaimer: Information in this

Verification Contract RFP 2 nd Kickoff January 12, 2017 Disclaimer: Information in this presentation is not final and is subject to change. Construction Timeline: July 2017 to late 2019 Estimated Project Cost: $50 million Resurface 6

640 views • 11 slides
Smart Contracts September 23, 2019 guha.jayachandran@sjsu.edu Whats a Contract? Whats a

Smart Contracts September 23, 2019 guha.jayachandran@sjsu.edu Whats a Contract? Whats a

Smart Contracts September 23, 2019 guha.jayachandran@sjsu.edu Whats a Contract? Whats a Contract? A legally binding agreement which recognizes and governs the rights and duties of the parties to the agreement Pacta sunt servanda

511 views • 27 slides
ON THE FEASIBILITY OF DECENTRALIZED DERIVATIVE MARKETS 1st Workshop on Trusted Smart Contract

ON THE FEASIBILITY OF DECENTRALIZED DERIVATIVE MARKETS 1st Workshop on Trusted Smart Contract

SHAYAN ESKANDARI, JEREMY CLARK, VIGNESH SUNDARESAN, MOE ADHAM ON THE FEASIBILITY OF DECENTRALIZED DERIVATIVE MARKETS 1st Workshop on Trusted Smart Contract In Association with Financial Cryptography 17 Malta - April 07, 2017 ON THE

502 views • 19 slides
1 100% decentralized The best Smart Contract in the market Peer to peer system Commissions paid

1 100% decentralized The best Smart Contract in the market Peer to peer system Commissions paid

THE ONE OF A KIND YOU HAVE BEEN WAITING FOR! The fastest and easiest way to earn over 2million TRON (TRX) https://t.me/x3mTRON https://youtu.be/2XaqD4ev-eg X3mtron.com 1 100% decentralized The best Smart Contract in the market Peer to peer

262 views • 10 slides
Small Number is a 5 year-old boy who gets into a lot of mischief. He lives with his Grandma and

Small Number is a 5 year-old boy who gets into a lot of mischief. He lives with his Grandma and

Small Number is a 5 year-old boy who gets into a lot of mischief. He lives with his Grandma and Grandpa, who patiently put up with his antics, in a small settlement with 7 tipis arranged in a circle. Ama sahkomapii anista Poksskaaksini.

284 views • 12 slides
OFFICIAL PRESENTATION PLAN What is Voomo? Voomo is the most innovative smart contract ever, what

OFFICIAL PRESENTATION PLAN What is Voomo? Voomo is the most innovative smart contract ever, what

OFFICIAL PRESENTATION PLAN What is Voomo? Voomo is the most innovative smart contract ever, what makes it unique are the Multiple forms of income it has , you can earn from four differents systems investing just 0.1 Eth. The system is developed

520 views • 12 slides
Contract-based Specification and Verification of Dataflow Programs Jonatan Wiik Pontus Bostrm

Contract-based Specification and Verification of Dataflow Programs Jonatan Wiik Pontus Bostrm

Contract-based Specification and Verification of Dataflow Programs Jonatan Wiik Pontus Bostrm bo Akademi University, Finland Nordic Workshop on Programming Theory 2015 1 / 20 Introduction Modern software systems are increasingly

612 views • 25 slides
Top 10 Cancer Causing Foods You 60 Year Old Grandma Looks 30 Eat Every Day Lifefactopia Please

Top 10 Cancer Causing Foods You 60 Year Old Grandma Looks 30 Eat Every Day Lifefactopia Please

Naturalon Her Life & Beauty Top 10 Cancer Causing Foods You 60 Year Old Grandma Looks 30 Eat Every Day Lifefactopia Please Don't Pay Full Price for Must Wrinkle Free Face The Best Way To Remove Eye Bags Have Michael Kors Bags. Here's

238 views • 6 slides
zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Coffee with the Counselors Great Grandma

zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Coffee with the Counselors Great Grandma

zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Coffee with the Counselors Great Grandma Grabner Benld, IL 1956 Substance Abuse Prevention Substance Abuse is an on-going problem among middle school aged students. Join a professional in

320 views • 21 slides
Photonics/Hit-Maker Time Bug Jake Feintzeig 1 2 Contents This talk covers two separate but

Photonics/Hit-Maker Time Bug Jake Feintzeig 1 2 Contents This talk covers two separate but

Photonics/Hit-Maker Time Bug Jake Feintzeig 1 2 Contents This talk covers two separate but related bugs, one in photonics and one in hit-maker Photonics time transformation bug Overview Details Time transformation plot

498 views • 12 slides
Bug Report Analytics David Lo School of Information Systems Singapore Management University

Bug Report Analytics David Lo School of Information Systems Singapore Management University

Bug Report Analytics David Lo School of Information Systems Singapore Management University davidlo@smu.edu.sg 38 th ACM/IEEE International Conference on Software Engineering, Austin, Texas, USA Problems with Bug Reports Bugs are reported

466 views • 29 slides
Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels Meng Xu , Chenxiong Qian,

Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels Meng Xu , Chenxiong Qian,

Precise and Scalable Detection of Double-Fetch Bugs in OS Kernels Meng Xu , Chenxiong Qian, Kangjie Lu + , Michael Backes*, Taesoo Kim Georgia Tech | University of Minnesota + | CISPA, Germany* 1 What is Double-Fetch? Address Space

1.21k views • 67 slides
The Human Component in Automated Bug Finding Christian Holler (:decoder) Staff Security Engineer

The Human Component in Automated Bug Finding Christian Holler (:decoder) Staff Security Engineer

The Human Component in Automated Bug Finding Christian Holler (:decoder) Staff Security Engineer ~ 16M lines source code ~ 16M lines source code Last month: 340 authors with 2,475 commits Interfaces Media Formats Markup Fonts Languages

1.12k views • 72 slides
Priori&es saying NO Genera&onal change

Priori&es saying NO Genera&onal change

Priori&es saying NO Genera&onal change Inclusiveness Ini&a&ves to add developers Bug bounty Pay for feature GSoC All

122 views • 8 slides
CSE306 Software Quality in Practice Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall

CSE306 Software Quality in Practice Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall

CSE306 Software Quality in Practice Dr. Carl Alphonce alphonce@buffalo.edu 343 Davis Hall Announcements Syllabus: posted on website Academic Integrity PRE posted on website Team formation - how's it going? Grades will be in UBLearns

333 views • 31 slides
Classification: Introduction David Dalpiaz STAT 430, Fall 2017 1 Announcements BVT Review

Classification: Introduction David Dalpiaz STAT 430, Fall 2017 1 Announcements BVT Review

Classification: Introduction David Dalpiaz STAT 430, Fall 2017 1 Announcements BVT Review Regression Questions? General Questions? 2 Statistical Learning Supervised Learning Regression Classification

876 views • 29 slides
CS184b: Computer Architecture [Single Threaded Architecture: abstractions, quantification, and

CS184b: Computer Architecture [Single Threaded Architecture: abstractions, quantification, and

CS184b: Computer Architecture [Single Threaded Architecture: abstractions, quantification, and optimizations] Day10: February 6, 2000 VLIW Caltech CS184b Winter2001 -- DeHon 1 Today Trace Scheduling VLIW uArch Evidence for

433 views • 14 slides

More recommend