A survey of attacks on Ethereum smart contracts (SoK)

ATZEI, NICOLA;BARTOLETTI, MASSIMO;CIMOLI, TIZIANA
2017-01-01

Abstract

Smart contracts are computer programs that can be correctly executed by a network of mutually distrusting nodes, without the need of an external trusted authority. Since smart contracts handle and transfer assets of considerable value, besides their correct execution it is also crucial that their implementation is secure against attacks which aim at stealing or tampering the assets. We study this problem in Ethereum, the most well-known and used framework for smart contracts so far. We analyse the security vulnerabilities of Ethereum smart contracts, providing a taxonomy of common programming pitfalls which may lead to vulnerabilities. We show a series of attacks which exploit these vulnerabilities, allowing an adversary to steal money or cause other damage.
2017
Inglese
Principles of Security and Trust
978-3-662-54454-9
Springer
LECTURE NOTES IN COMPUTER SCIENCE
10204
164
186
23
WOS:000425526300008
2-s2.0-85018630011
6th Conference on Principles of Security and Trust, POST 2017 held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2017
Contributo
Comitato scientifico
22-29 April 2017
Uppsala, Sweden
internazionale
scientifica
Theoretical computer science; Computer science (all)
no
4 Contributo in Atti di Convegno (Proceeding)::4.1 Contributo in Atti di convegno
Atzei, Nicola; Bartoletti, Massimo; Cimoli, Tiziana
273
3
4.1 Contributo in Atti di convegno
reserved
info:eu-repo/semantics/conferencePaper
Files in This Item:
File Size Format  
ethereum-survey.pdf

Solo gestori archivio

Description: Articolo principale
Type: versione pre-print
Size 312.98 kB
Format Adobe PDF
& nbsp; View / Open   Request a copy
312.98 kB Adobe PDF & nbsp; View / Open   Request a copy

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.

Questionnaire and social

Share on:
Impostazioni cookie