Security Issues of Smart Contracts in Ethereum Platforms

Smart contracts belong to the most rapidly growing aspect of the world of cryptocurrencies. This phenomenon attracts great attention from researchers but also the business community, and the development brings daily a lot of novel applications. Smart contracts allow running contract code transparently for all parties, without the need for a centralized authority. One of the smart contract applications is the issuance of digital assets, so-called tokens, serving as fundraising fuel for Initial Coin Offerings. ICOs bring a new easy, and bureaucracyless way for startups to raise considerable funds from crowds with incredible speed. However, the technology hides a dark side in the form of speculative scams, hardly distinguishable from genuine fundraising activities. Evaluation audit of ICOs associated with the underlying security of smart contracts is a complex issue requiring many efforts. This paper focuses on one of the most popular blockchain frameworks, Ethereum, a prominent ICO and smart contract platform, and its dominant programming language, Solidity.

[1]  Lajos Rónyai,et al.  Trie: An alternative data structure for data mining algorithms , 2003 .

[2]  Nick Webb,et al.  A Fork in the Blockchain: Income Tax and the Bitcoin/Bitcoin Cash Hard Fork , 2018 .

[3]  Jun Sun,et al.  Security Assurance for Smart Contract , 2018, 2018 9th IFIP International Conference on New Technologies, Mobility and Security (NTMS).

[4]  Usman W. Chohan,et al.  Initial Coin Offerings (ICOs): Risks, Regulation, and Accountability , 2017, Cryptofinance and Mechanisms of Exchange.

[5]  Daniel Davis Wood,et al.  ETHEREUM: A SECURE DECENTRALISED GENERALISED TRANSACTION LEDGER , 2014 .

[6]  Sergei Tikhomirov,et al.  SmartCheck: Static Analysis of Ethereum Smart Contracts , 2018, 2018 IEEE/ACM 1st International Workshop on Emerging Trends in Software Engineering for Blockchain (WETSEB).

[7]  Uwe Zdun,et al.  Smart contracts: security patterns in the ethereum ecosystem and solidity , 2018, 2018 International Workshop on Blockchain Oriented Software Engineering (IWBOSE).

[8]  Xiapu Luo,et al.  Under-optimized smart contracts devour your money , 2017, 2017 IEEE 24th International Conference on Software Analysis, Evolution and Reengineering (SANER).

[9]  Ivan Kotuliak,et al.  On Transition between PoW and PoS , 2018, 2018 International Symposium ELMAR.

[10]  Péter Hegedűs,et al.  Towards Analyzing the Complexity Landscape of Solidity Based Ethereum Smart Contracts , 2018, 2018 IEEE/ACM 1st International Workshop on Emerging Trends in Software Engineering for Blockchain (WETSEB).

[11]  Michele Marchesi,et al.  The ICO phenomenon and its relationships with ethereum smart contract environment , 2018, 2018 International Workshop on Blockchain Oriented Software Engineering (IWBOSE).

[12]  Albert Rubio,et al.  GASOL: Gas Analysis and Optimization for Ethereum Smart Contracts , 2014, TACAS.

[13]  Robin Doss,et al.  Security Analysis Methods on Ethereum Smart Contract Vulnerabilities: A Survey , 2019, ArXiv.

[14]  Miguel Correia,et al.  A Survey on Blockchain Interoperability: Past, Present, and Future Trends , 2020, ACM Comput. Surv..

[15]  Daniel S. Demidenko,et al.  ISO as a real source of funding. Pricing issues , 2018, 2018 International Conference on Information Networking (ICOIN).

[16]  Xiaofeng Wang,et al.  Evaluation of initial cryptoasset offerings: the state of the practice , 2018, 2018 International Workshop on Blockchain Oriented Software Engineering (IWBOSE).

[17]  Stéphane Ducasse,et al.  SmartInspect: solidity smart contract inspector , 2018, 2018 International Workshop on Blockchain Oriented Software Engineering (IWBOSE).

[18]  Shouhuai Xu,et al.  A Survey on Ethereum Systems Security: Vulnerabilities, Attacks and Defenses , 2019 .

[19]  Chris Dannen,et al.  Introducing Ethereum and Solidity: Foundations of Cryptocurrency and Blockchain Programming for Beginners , 2017 .

[20]  Can Özturan,et al.  Design of a Smart Contract Based Autonomous Organization for Sustainable Software , 2017, 2017 IEEE 13th International Conference on e-Science (e-Science).

[21]  Ying Wang,et al.  An Adaptive Gas Cost Mechanism for Ethereum to Defend Against Under-Priced DoS Attacks , 2017, ISPEC.

[22]  Ivan Kotuliak,et al.  Blockchain Based Car-Sharing Platform , 2019, 2019 International Symposium ELMAR.

[23]  Peng Jiang,et al.  A Survey on the Security of Blockchain Systems , 2017, Future Gener. Comput. Syst..

[24]  Yiyang Bian,et al.  Smart Contract Security: A Software Lifecycle Perspective , 2019, IEEE Access.