Using symbolic execution for automative vulnerability searching in Ethereum smart contracts
Jazyk: | ruština |
---|---|
Rok vydání: | 2019 |
Předmět: |
smart contract vulnerabilities
безопаноÑÑÑ ÑаÑпÑеделеннÑÑ Ð¿Ñиложений ethereum blockchain solidity smt-ÑеÑаÑÐµÐ»Ñ z3 ÑимволÑное вÑполнение decentralized application security авÑомаÑизиÑованнÑй поиÑк ÑÑзвимоÑÑей vuknerability searching automatization ÑмаÑÑ-конÑаÑкÑÑ smart contract z3 smt-solver symbolic execution блокÑейн ethereum ÑÑзвимоÑÑи в ÑмаÑÑ-конÑÑакÑÐ°Ñ |
DOI: | 10.18720/spbpu/3/2019/vr/vr19-39 |
Popis: | Ð ÑабоÑе пÑедложено иÑполÑзованием ÑимволÑного вÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð´Ð»Ñ Ð°Ð²ÑомаÑизиÑованного обнаÑÑÐ¶ÐµÐ½Ð¸Ñ ÑÑзвимоÑÑей в ÑмаÑÑ-конÑÑакÑÐ°Ñ . Ðго оÑлиÑиÑелÑной оÑобенноÑÑÑÑ ÑвлÑеÑÑÑ ÑмÑлÑÑÐ¸Ñ Ð¸Ð½ÑÑÑÑкÑий виÑÑÑалÑной маÑÐ¸Ð½Ñ Ethereum Ñ ÑÑеÑом ÑимволÑнÑÑ Ð¿ÐµÑеменнÑÑ . РазÑабоÑан пÑоÑоÑип пÑогÑаммÑ, коÑоÑÑй позволÑÐµÑ Ð¾Ð±Ð½Ð°ÑÑживаÑÑ Ð¿ÑÑÑ ÑазлиÑнÑÑ ÑÑзвимоÑÑей в ÑмаÑÑ-конÑÑакÑÐ°Ñ Ð±Ð»Ð¾ÐºÑейна Ethereum. An approach of using symbolic execution to automotive vulnerability detection in smart contracts is proposed. Its distinctive feature is Ethereum virtual machine instructions emulation using symbolic variables. A prototype of the program was developed. Its implementation allows five different vulnerabilities detection in smart contracts of Ethereum blockchain. |
Databáze: | OpenAIRE |
Externí odkaz: |