Cross-contract static analysis for detecting practical reentrancy vulnerabilities in smart contracts
Yinxing Xue, Mingliang Ma, Yun Lin, Yulei Sui, Jiaming Ye, Tianyong Peng
Abstract
Reentrancy bugs, one of the most severe vulnerabilities in smart contracts, have caused huge financial loss in recent years. Researchers have proposed many approaches to detecting them. However, empirical studies have shown that these approaches suffer from undesirable false positives and false negatives, when the code under detection involves the interaction between multiple smart contracts.
Topics & Concepts
False positive paradoxComputer scienceComputer securityStatic analysisFalse positives and false negativesSmart contractEmpirical researchCode (set theory)Machine learningProgramming languagePhilosophySet (abstract data type)BlockchainEpistemologyAdvanced Malware Detection TechniquesBlockchain Technology Applications and SecuritySecurity and Verification in Computing