Atzei, Nicola and Bartoletti, Massimo and Cimoli, Tiziana (2017) A survey of attacks on Ethereum smart contracts. In: Principles of Security and Trust - 6th International Conference, Uppsala, Sweden.
![[img]](http://blossom.informatik.uni-rostock.de/style/images/fileicons/text.png) |
Text
p254-luu.pdf Restricted to Registered users only Download (1MB) |
Abstract
Smart contracts are computer programs that can be correctly executed by a network of mutually distrusting nodes, without the need of an external trusted authority. Since smart contracts handle and transfer assets of considerable value, besides their correct execution it is also crucial that their implementation is secure against attacks which aim at stealing or tampering the assets. We study this problem in Ethereum, the most well-known and used framework for smart contracts so far. We analyse the security vulnerabilities of Ethereum smart contracts, providing a taxonomy of common programming pitfalls which may lead to vulnerabilities. We show a series of attacks which exploit these vulnerabilities, allowing an adversary to steal money or cause other damage.
| Item Type: | Conference or Workshop Item (Paper) |
|---|---|
| Subjects: | Projects > BloSSom 2019 Main Topics > Ethereum Main Topics > Security Main Topics > Smart Contracts |
| Divisions: | Computer Science |
| Depositing User: | Unnamed user with email richard.dabels@uni-rostock.de |
| Date Deposited: | 04 Sep 2019 16:33 |
| Last Modified: | 04 Sep 2019 16:33 |
| URI: | http://blossom.informatik.uni-rostock.de/id/eprint/66 |
Actions (login required)
 |
View Item |
