Loading…
A Semantic Framework for the Security Analysis of Ethereum smart contracts
Smart contracts are programs running on cryptocurrency (e.g., Ethereum) blockchains, whose popularity stem from the possibility to perform financial transactions, such as payments and auctions, in a distributed environment without need for any trusted third party. Given their financial nature, bugs...
Saved in:
| Published in: | arXiv.org 2018-04 |
|---|---|
| Main Authors: | , , |
| Format: | Article |
| Language: | English |
| Subjects: | |
| Online Access: | Get full text |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| cited_by | |
|---|---|
| cites | |
| container_end_page | |
| container_issue | |
| container_start_page | |
| container_title | arXiv.org |
| container_volume | |
| creator | Grishchenko, Ilya Maffei, Matteo Schneidewind, Clara |
| description | Smart contracts are programs running on cryptocurrency (e.g., Ethereum) blockchains, whose popularity stem from the possibility to perform financial transactions, such as payments and auctions, in a distributed environment without need for any trusted third party. Given their financial nature, bugs or vulnerabilities in these programs may lead to catastrophic consequences, as witnessed by recent attacks. Unfortunately, programming smart contracts is a delicate task that requires strong expertise: Ethereum smart contracts are written in Solidity, a dedicated language resembling JavaScript, and shipped over the blockchain in the EVM bytecode format. In order to rigorously verify the security of smart contracts, it is of paramount importance to formalize their semantics as well as the security properties of interest, in particular at the level of the bytecode being executed. In this paper, we present the first complete small-step semantics of EVM bytecode, which we formalize in the F* proof assistant, obtaining executable code that we successfully validate against the official Ethereum test suite. Furthermore, we formally define for the first time a number of central security properties for smart contracts, such as call integrity, atomicity, and independence from miner controlled parameters. This formalization relies on a combination of hyper- and safety properties. Along this work, we identified various mistakes and imprecisions in existing semantics and verification tools for Ethereum smart contracts, thereby demonstrating once more the importance of rigorous semantic foundations for the design of security verification techniques. |
| doi_str_mv | 10.48550/arxiv.1802.08660 |
| format | article |
| fullrecord | <record><control><sourceid>proquest</sourceid><recordid>TN_cdi_proquest_journals_2072069698</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>2072069698</sourcerecordid><originalsourceid>FETCH-LOGICAL-a528-47ae82c6e09d0073ca63c1e7eddb4503e825cb029ea7e91df3467f43acf54e73</originalsourceid><addsrcrecordid>eNotzk1Lw0AUheFBECy1P8DdgOvUm_nOMpTWDwou6r7cTu5gapPozETtvzdgV2fxwOFl7K6EpXJawwPG3_Z7WToQS3DGwBWbCSnLwikhbtgipSMACGOF1nLGXmq-ow773Hq-idjRzxA_eBgiz-80kR9jm8-87vF0Tm3iQ-DrSSKNHU8dxsz90OeIPqdbdh3wlGhx2TnbbdZvq6di-_r4vKq3BWrhCmWRnPCGoGoArPRopC_JUtMclAY5ofYHEBWhpapsglTGBiXRB63Iyjm7_3_9jMPXSCnvj8MYp7y0F2AFmMpUTv4BjZdObQ</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2072069698</pqid></control><display><type>article</type><title>A Semantic Framework for the Security Analysis of Ethereum smart contracts</title><source>Publicly Available Content Database</source><creator>Grishchenko, Ilya ; Maffei, Matteo ; Schneidewind, Clara</creator><creatorcontrib>Grishchenko, Ilya ; Maffei, Matteo ; Schneidewind, Clara</creatorcontrib><description>Smart contracts are programs running on cryptocurrency (e.g., Ethereum) blockchains, whose popularity stem from the possibility to perform financial transactions, such as payments and auctions, in a distributed environment without need for any trusted third party. Given their financial nature, bugs or vulnerabilities in these programs may lead to catastrophic consequences, as witnessed by recent attacks. Unfortunately, programming smart contracts is a delicate task that requires strong expertise: Ethereum smart contracts are written in Solidity, a dedicated language resembling JavaScript, and shipped over the blockchain in the EVM bytecode format. In order to rigorously verify the security of smart contracts, it is of paramount importance to formalize their semantics as well as the security properties of interest, in particular at the level of the bytecode being executed. In this paper, we present the first complete small-step semantics of EVM bytecode, which we formalize in the F* proof assistant, obtaining executable code that we successfully validate against the official Ethereum test suite. Furthermore, we formally define for the first time a number of central security properties for smart contracts, such as call integrity, atomicity, and independence from miner controlled parameters. This formalization relies on a combination of hyper- and safety properties. Along this work, we identified various mistakes and imprecisions in existing semantics and verification tools for Ethereum smart contracts, thereby demonstrating once more the importance of rigorous semantic foundations for the design of security verification techniques.</description><identifier>EISSN: 2331-8422</identifier><identifier>DOI: 10.48550/arxiv.1802.08660</identifier><language>eng</language><publisher>Ithaca: Cornell University Library, arXiv.org</publisher><subject>Contracts ; Cryptography ; Properties (attributes) ; Security ; Semantics ; Software testing ; Trusted third parties</subject><ispartof>arXiv.org, 2018-04</ispartof><rights>2018. This work is published under http://arxiv.org/licenses/nonexclusive-distrib/1.0/ (the “License”). Notwithstanding the ProQuest Terms and Conditions, you may use this content in accordance with the terms of the License.</rights><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://www.proquest.com/docview/2072069698?pq-origsite=primo$$EHTML$$P50$$Gproquest$$Hfree_for_read</linktohtml><link.rule.ids>776,780,25731,27902,36989,44566</link.rule.ids></links><search><creatorcontrib>Grishchenko, Ilya</creatorcontrib><creatorcontrib>Maffei, Matteo</creatorcontrib><creatorcontrib>Schneidewind, Clara</creatorcontrib><title>A Semantic Framework for the Security Analysis of Ethereum smart contracts</title><title>arXiv.org</title><description>Smart contracts are programs running on cryptocurrency (e.g., Ethereum) blockchains, whose popularity stem from the possibility to perform financial transactions, such as payments and auctions, in a distributed environment without need for any trusted third party. Given their financial nature, bugs or vulnerabilities in these programs may lead to catastrophic consequences, as witnessed by recent attacks. Unfortunately, programming smart contracts is a delicate task that requires strong expertise: Ethereum smart contracts are written in Solidity, a dedicated language resembling JavaScript, and shipped over the blockchain in the EVM bytecode format. In order to rigorously verify the security of smart contracts, it is of paramount importance to formalize their semantics as well as the security properties of interest, in particular at the level of the bytecode being executed. In this paper, we present the first complete small-step semantics of EVM bytecode, which we formalize in the F* proof assistant, obtaining executable code that we successfully validate against the official Ethereum test suite. Furthermore, we formally define for the first time a number of central security properties for smart contracts, such as call integrity, atomicity, and independence from miner controlled parameters. This formalization relies on a combination of hyper- and safety properties. Along this work, we identified various mistakes and imprecisions in existing semantics and verification tools for Ethereum smart contracts, thereby demonstrating once more the importance of rigorous semantic foundations for the design of security verification techniques.</description><subject>Contracts</subject><subject>Cryptography</subject><subject>Properties (attributes)</subject><subject>Security</subject><subject>Semantics</subject><subject>Software testing</subject><subject>Trusted third parties</subject><issn>2331-8422</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2018</creationdate><recordtype>article</recordtype><sourceid>PIMPY</sourceid><recordid>eNotzk1Lw0AUheFBECy1P8DdgOvUm_nOMpTWDwou6r7cTu5gapPozETtvzdgV2fxwOFl7K6EpXJawwPG3_Z7WToQS3DGwBWbCSnLwikhbtgipSMACGOF1nLGXmq-ow773Hq-idjRzxA_eBgiz-80kR9jm8-87vF0Tm3iQ-DrSSKNHU8dxsz90OeIPqdbdh3wlGhx2TnbbdZvq6di-_r4vKq3BWrhCmWRnPCGoGoArPRopC_JUtMclAY5ofYHEBWhpapsglTGBiXRB63Iyjm7_3_9jMPXSCnvj8MYp7y0F2AFmMpUTv4BjZdObQ</recordid><startdate>20180423</startdate><enddate>20180423</enddate><creator>Grishchenko, Ilya</creator><creator>Maffei, Matteo</creator><creator>Schneidewind, Clara</creator><general>Cornell University Library, arXiv.org</general><scope>8FE</scope><scope>8FG</scope><scope>ABJCF</scope><scope>ABUWG</scope><scope>AFKRA</scope><scope>AZQEC</scope><scope>BENPR</scope><scope>BGLVJ</scope><scope>CCPQU</scope><scope>DWQXO</scope><scope>HCIFZ</scope><scope>L6V</scope><scope>M7S</scope><scope>PIMPY</scope><scope>PQEST</scope><scope>PQQKQ</scope><scope>PQUKI</scope><scope>PTHSS</scope></search><sort><creationdate>20180423</creationdate><title>A Semantic Framework for the Security Analysis of Ethereum smart contracts</title><author>Grishchenko, Ilya ; Maffei, Matteo ; Schneidewind, Clara</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-a528-47ae82c6e09d0073ca63c1e7eddb4503e825cb029ea7e91df3467f43acf54e73</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2018</creationdate><topic>Contracts</topic><topic>Cryptography</topic><topic>Properties (attributes)</topic><topic>Security</topic><topic>Semantics</topic><topic>Software testing</topic><topic>Trusted third parties</topic><toplevel>online_resources</toplevel><creatorcontrib>Grishchenko, Ilya</creatorcontrib><creatorcontrib>Maffei, Matteo</creatorcontrib><creatorcontrib>Schneidewind, Clara</creatorcontrib><collection>ProQuest SciTech Collection</collection><collection>ProQuest Technology Collection</collection><collection>Materials Science & Engineering Collection</collection><collection>ProQuest Central (Alumni)</collection><collection>ProQuest Central UK/Ireland</collection><collection>ProQuest Central Essentials</collection><collection>AUTh Library subscriptions: ProQuest Central</collection><collection>Technology Collection</collection><collection>ProQuest One Community College</collection><collection>ProQuest Central</collection><collection>SciTech Premium Collection</collection><collection>ProQuest Engineering Collection</collection><collection>ProQuest Engineering Database</collection><collection>Publicly Available Content Database</collection><collection>ProQuest One Academic Eastern Edition (DO NOT USE)</collection><collection>ProQuest One Academic</collection><collection>ProQuest One Academic UKI Edition</collection><collection>Engineering collection</collection><jtitle>arXiv.org</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext</fulltext></delivery><addata><au>Grishchenko, Ilya</au><au>Maffei, Matteo</au><au>Schneidewind, Clara</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>A Semantic Framework for the Security Analysis of Ethereum smart contracts</atitle><jtitle>arXiv.org</jtitle><date>2018-04-23</date><risdate>2018</risdate><eissn>2331-8422</eissn><abstract>Smart contracts are programs running on cryptocurrency (e.g., Ethereum) blockchains, whose popularity stem from the possibility to perform financial transactions, such as payments and auctions, in a distributed environment without need for any trusted third party. Given their financial nature, bugs or vulnerabilities in these programs may lead to catastrophic consequences, as witnessed by recent attacks. Unfortunately, programming smart contracts is a delicate task that requires strong expertise: Ethereum smart contracts are written in Solidity, a dedicated language resembling JavaScript, and shipped over the blockchain in the EVM bytecode format. In order to rigorously verify the security of smart contracts, it is of paramount importance to formalize their semantics as well as the security properties of interest, in particular at the level of the bytecode being executed. In this paper, we present the first complete small-step semantics of EVM bytecode, which we formalize in the F* proof assistant, obtaining executable code that we successfully validate against the official Ethereum test suite. Furthermore, we formally define for the first time a number of central security properties for smart contracts, such as call integrity, atomicity, and independence from miner controlled parameters. This formalization relies on a combination of hyper- and safety properties. Along this work, we identified various mistakes and imprecisions in existing semantics and verification tools for Ethereum smart contracts, thereby demonstrating once more the importance of rigorous semantic foundations for the design of security verification techniques.</abstract><cop>Ithaca</cop><pub>Cornell University Library, arXiv.org</pub><doi>10.48550/arxiv.1802.08660</doi><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext |
| identifier | EISSN: 2331-8422 |
| ispartof | arXiv.org, 2018-04 |
| issn | 2331-8422 |
| language | eng |
| recordid | cdi_proquest_journals_2072069698 |
| source | Publicly Available Content Database |
| subjects | Contracts Cryptography Properties (attributes) Security Semantics Software testing Trusted third parties |
| title | A Semantic Framework for the Security Analysis of Ethereum smart contracts |
| url | http://sfxeu10.hosted.exlibrisgroup.com/loughborough?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-31T19%3A47%3A10IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=A%20Semantic%20Framework%20for%20the%20Security%20Analysis%20of%20Ethereum%20smart%20contracts&rft.jtitle=arXiv.org&rft.au=Grishchenko,%20Ilya&rft.date=2018-04-23&rft.eissn=2331-8422&rft_id=info:doi/10.48550/arxiv.1802.08660&rft_dat=%3Cproquest%3E2072069698%3C/proquest%3E%3Cgrp_id%3Ecdi_FETCH-LOGICAL-a528-47ae82c6e09d0073ca63c1e7eddb4503e825cb029ea7e91df3467f43acf54e73%3C/grp_id%3E%3Coa%3E%3C/oa%3E%3Curl%3E%3C/url%3E&rft_id=info:oai/&rft_pqid=2072069698&rft_id=info:pmid/&rfr_iscdi=true |