Authors: Zhiyang Chen, Ye Liu, Sidi Mohamed Beillahi, Yi Li, Fan Long
Published on: April 22, 2024
Impact Score: 7.6
Arxiv code: Arxiv:2404.14580
Summary
- What is new: Trace2Inv’s approach to dynamically generating customized invariants for smart contracts to prevent exploits is a novel contribution, significantly outperforming current techniques in accuracy and practicality.
- Why this is important: The empirical effectiveness of runtime invariants for stopping anomalous transactions related to security attacks on smart contracts is largely unexplored.
- What the research proposes: The Trace2Inv tool, which dynamically generates new invariants customized for given contracts based on historical transaction data, effectively preventing a significant number of exploits.
- Results: Successfully blocked 18 out of 27 distinct exploits with minimal gas overhead and achieved false positive rates as low as 0.32%, also identifying two unreported exploit transactions.
Technical Details
Technological frameworks used: Trace2Inv tool for dynamic invariant generation
Models used: Empirical analysis of 23 prevalent invariants across 8 categories
Data used: Historical transaction data from 42 smart contracts on Ethereum blockchain
Potential Impact
Blockchain security firms, smart contract development platforms, and cryptocurrency markets could greatly benefit from adopting the Trace2Inv tool for enhanced security measures.
Want to implement this idea in a business?
We have generated a startup concept here: GuardWise.
Leave a Reply