Research on Security Vulnerability Detection of Smart Contract

Jia, Dongfang; Liu, Zhicong; Zhang, Zhengqi; Ye, Jun

doi:10.1007/978-981-16-7469-3_108

Dongfang Jia⁵,
Zhicong Liu⁵,
Zhengqi Zhang⁶ &
…
Jun Ye⁵

Part of the book series: Lecture Notes on Data Engineering and Communications Technologies ((LNDECT,volume 103))

1247 Accesses

Abstract

In recent years, the second-generation blockchain platforms and applications represented by smart contracts have seen explosive growth, but frequent smart contract vulnerability incidents have seriously threatened the ecological security of blockchain. In view of the low efficiency of code audit based on expert experience, it is important to develop a general automation tool to mine smart contract vulnerabilities. In the beginning, the security threats of smart contracts should be investigated and analyzed, and many smart contract vulnerabilities and attack modes that occur frequently, such as code reentrant, access control, integer overflow, etc., were summarized. Then, the technology method of smart contract vulnerability detection conforming to The Times is obtained, and the current samples of smart contract vulnerability detection are summarized. The current investigation includes too few types of vulnerabilities, with a variety of inaccuracies and deviations. It is only carried out through manual audit. Through these methods, according to the state of including after put forward the general ideas of this kind of situation, and puts forward a kind of symbolic execution auxiliary fuzzy test framework, can reduce the symbolic execution channel congestion and fuzzy test code coverage degree is too little, so as to improve test efficiency, easy to dig holes of large and medium-sized intelligent contracts quality improvement.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic

EUR 32.99 /Month

Get 10 units per month
Download Article/Chapter or Ebook
1 Unit = 1 Article or 1 Chapter
Cancel anytime

Subscribe now

Buy Now

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 189.00; Price excludes VAT (USA)

Softcover Book: USD 249.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Security Analysis of Blockchain Smart Contract: Taking Reentrancy Vulnerability as an Example

The Vulnerabilities in Smart Contracts: A Survey

Investigation on Vulnerabilities Location in Solidity Smart Contracts

References

Ding M, Li P, Li S et al (2021) HFContractFuzzer: fuzzing hyperledger fabric smart contracts for vulnerability detection
Google Scholar
Fu M, Wu L, Hong Z et al (2019) A critical-path-coverage-based vulnerability detection method for smart contracts. IEEE Access 99:1–1
Google Scholar
Ye J, Ma M, Peng T et al, A software analysis based vulnerability detection system for smart contracts. The University of Science and Technology of China, Hefei, China
Google Scholar
Masi M (2019) Contract fuzzer: fuzzing smart contracts for vulnerability detection. Comput Rev 60(12):467–468
Google Scholar
Ashizawa N, Yanai N, Cruz JP et al (2021) Eth2Vec: learning contract-wide code representations for vulnerability detection on ethereum smart contracts
Google Scholar
Huang Y, Jiang B, Chan WK (2020) EOS fuzzer: fuzzing EOSIO smart contracts for vulnerability detection. IEEE
Google Scholar
Wang D, Jiang B, Chan WK (2020) WANA: Symbolic execution of wasm bytecode for cross-platform smart contract vulnerability detection
Google Scholar
Xu X, Chang L, Qian F et al (2017) Neural network-based graph embedding for cross-platform binary code similarity detection
Google Scholar
Song J, He H, Lv Z et al (2019) An efficient vulnerability detection model for ethereum smart contracts
Google Scholar
Lutz O, Chen H, Fereidooni H et al (2021) ESCORT: ethereum smart contracts vulnerability detection using deep neural network and transfer learning
Google Scholar
Kim D-H, Ha J-E et al (2017) Multi-lane detection using convolutional neural networks and transfer learning. J Inst Control Robot Syst
Google Scholar
Menglin FU, Lifa WU, Hong Z et al (2019) Research on vulnerability mining technique for smart contracts. J Comput Appl
Google Scholar
Liu Z, Qian P, Wang X et al (2021) Smart contract vulnerability detection: from pure neural network to interpretable graph feature and expert pattern fusion
Google Scholar

Download references

Acknowledgements

This work is partially supported by the National Natural Science Foundation of China (62162020), the Science Project of Hainan University (KYQD(ZR)20021).

Author information

Authors and Affiliations

School of Cyberspace Security, Hainan University, Haikou, China
Dongfang Jia, Zhicong Liu & Jun Ye
Science and Technology Department, Shanwei Institute of Technology, Shanghai, China
Zhengqi Zhang

Authors

Dongfang Jia
View author publications
You can also search for this author in PubMed Google Scholar
Zhicong Liu
View author publications
You can also search for this author in PubMed Google Scholar
Zhengqi Zhang
View author publications
You can also search for this author in PubMed Google Scholar
Jun Ye
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Jun Ye .

Editor information

Editors and Affiliations

School of Computer Science, Univ of Oklahoma, Sch of Comp Science, Norman, OK, USA
Mohammed Atiquzzaman
University of Aizu, Aizuwakamatsu, Japan
Neil Yen
Shanghai Polytechnic University, Shanghai, China
Zheng Xu

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Jia, D., Liu, Z., Zhang, Z., Ye, J. (2022). Research on Security Vulnerability Detection of Smart Contract. In: Atiquzzaman, M., Yen, N., Xu, Z. (eds) 2021 International Conference on Big Data Analytics for Cyber-Physical System in Smart City. Lecture Notes on Data Engineering and Communications Technologies, vol 103. Springer, Singapore. https://doi.org/10.1007/978-981-16-7469-3_108

Download citation

DOI: https://doi.org/10.1007/978-981-16-7469-3_108
Published: 01 January 2022
Publisher Name: Springer, Singapore
Print ISBN: 978-981-16-7468-6
Online ISBN: 978-981-16-7469-3
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)

Publish with us

Policies and ethics

Research on Security Vulnerability Detection of Smart Contract

Abstract

Access this chapter

Subscribe and save

Buy Now

Similar content being viewed by others

Security Analysis of Blockchain Smart Contract: Taking Reentrancy Vulnerability as an Example

The Vulnerabilities in Smart Contracts: A Survey

Investigation on Vulnerabilities Location in Solidity Smart Contracts

References

Acknowledgements

Author information

Authors and Affiliations

Corresponding author

Editor information

Editors and Affiliations

Rights and permissions

Copyright information

About this paper

Cite this paper

Download citation

Publish with us

Subscribe and save

Buy Now

Navigation

Research on Security Vulnerability Detection of Smart Contract

Abstract

Access this chapter

Subscribe and save

Buy Now

Similar content being viewed by others

Security Analysis of Blockchain Smart Contract: Taking Reentrancy Vulnerability as an Example

The Vulnerabilities in Smart Contracts: A Survey

Investigation on Vulnerabilities Location in Solidity Smart Contracts

References

Acknowledgements

Author information

Authors and Affiliations

Corresponding author

Editor information

Editors and Affiliations

Rights and permissions

Copyright information

About this paper

Cite this paper

Download citation

Share this paper

Publish with us

Search

Navigation