Authors: Zhiyang Chen, Ye Liu, Sidi Mohamed Beillahi, Yi Li, Fan Long

Published on: April 22, 2024

Impact Score: 7.6

Arxiv code: Arxiv:2404.14580

Summary

• What is new: Trace2Inv’s approach to dynamically generating customized invariants for smart contracts to prevent exploits is a novel contribution, significantly outperforming current techniques in accuracy and practicality.
• Why this is important: The empirical effectiveness of runtime invariants for stopping anomalous transactions related to security attacks on smart contracts is largely unexplored.
• What the research proposes: The Trace2Inv tool, which dynamically generates new invariants customized for given contracts based on historical transaction data, effectively preventing a significant number of exploits.
• Results: Successfully blocked 18 out of 27 distinct exploits with minimal gas overhead and achieved false positive rates as low as 0.32%, also identifying two unreported exploit transactions.

Technical Details

Technological frameworks used: Trace2Inv tool for dynamic invariant generation

Models used: Empirical analysis of 23 prevalent invariants across 8 categories

Data used: Historical transaction data from 42 smart contracts on Ethereum blockchain

Potential Impact

Blockchain security firms, smart contract development platforms, and cryptocurrency markets could greatly benefit from adopting the Trace2Inv tool for enhanced security measures.

Want to implement this idea in a business?

We have generated a startup concept here: GuardWise.