< Terug naar vorige pagina


Refactoring solidity smart contracts to protect against reentrancy exploits

Boekbijdrage - Boekabstract Conferentiebijdrage

Solidity is the dominant programming language for specifying smart contracts deployed on the Ethereum blockchain platform. Smart contracts permit the exchange of cryptocurrency, and hence are vulnerable to security attacks, most notably reentrancy exploits. Extensions to the solidity language, therefore, provide safer alternatives via special-purpose syntactic constructs. Based on an analysis of 26,799 contracts actually deployed on the Ethereum platform, it appears that these safer alternatives are indeed adopted. Next, we investigate whether the SMTChecker provided with the Solidity compiler is able to confirm that two safer alternatives (“Check-Effects-Interactions” and “Mutex”) actually prevent against reentrancy exploits.
Boek: Leveraging Applications of Formal Methods, Verification and Validation. Software Engineering. Proceedings of the 11th International Symposium (ISoLA 2022), October 22–30, 2022, Rhodes, Greece
Pagina's: 324 - 344
Jaar van publicatie:2022
Trefwoorden:P1 Proceeding