University of Cagliari
A survey of attacks on Ethereum smart contracts (SoK)
ATZEI, NICOLA;BARTOLETTI, MASSIMO;CIMOLI, TIZIANA
2017-01-01
Abstract
Smart contracts are computer programs that can be correctly executed by a network of mutually distrusting nodes, without the need of an external trusted authority. Since smart contracts handle and transfer assets of considerable value, besides their correct execution it is also crucial that their implementation is secure against attacks which aim at stealing or tampering the assets. We study this problem in Ethereum, the most well-known and used framework for smart contracts so far. We analyse the security vulnerabilities of Ethereum smart contracts, providing a taxonomy of common programming pitfalls which may lead to vulnerabilities. We show a series of attacks which exploit these vulnerabilities, allowing an adversary to steal money or cause other damage.
Files in This Item:
| File | Size | Format | |
|---|---|---|---|
| ethereum-survey.pdf Solo gestori archivio
Description: Articolo principale
Type: versione pre-print
Size 312.98 kB
Format Adobe PDF
|
312.98 kB | Adobe PDF | & nbsp; View / Open Request a copy |
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.