Litcius/Paper detail

A Survey of Ethereum Smart Contract Security: Attacks and Detection

Tengyun Jiao, Zhiyu Xu, Minfeng Qi, Sheng Wen, Yang Xiang, Gary Nan

2024Distributed Ledger Technologies Research and Practice28 citationsDOIOpen Access PDF

Abstract

A smart contract is a computerised transaction agreement that carries out predefined terms without human involvement or third-party intermediaries. It serves as a trust intermediary in several industries, including finance, insurance, and supply chain management, in the blockchain 2.0 era. With the increasing interest in smart contracts, security has become a serious problem. Examining typical vulnerability types and vulnerability detection methodologies is of special importance. In this research, a comprehensive evaluation of common smart contract security vulnerabilities is conducted, and a three-tier threat model is then provided to classify the vulnerabilities. In addition, we examine fourteen existing smart contract analysis tools for finding vulnerabilities and classify them according to the main technique they apply. This article is designed to serve as a reference for people who wish to analyse deployed code and enhance existing detection techniques. At the conclusion, open issues and future research paths regarding smart contract vulnerability detection are presented.

Topics & Concepts

Computer securitySmart contractComputer scienceBusinessBlockchainBlockchain Technology Applications and SecurityAdvanced Steganography and Watermarking TechniquesCybercrime and Law Enforcement Studies