Litcius/Paper detail

Fuzz on the Beach: Fuzzing Solana Smart Contracts

Sven Smolka, Jens-Rene Giesen, Pascal Winkler, Oussama Draissi, Lucas Davi, Ghassan Karame, Klaus Pohl

202324 citationsDOI

Abstract

Solana has quickly emerged as a popular platform for building decentralized applications (DApps), such as marketplaces for non-fungible tokens (NFTs). A key reason for its success are Solana's low transaction fees and high performance, which is achieved in part due to its stateless programming model. Although the literature features extensive tooling support for smart contract security, current solutions are largely tailored for the Ethereum Virtual Machine. Unfortunately, the very stateless nature of Solana's execution environment introduces novel attack patterns specific to Solana requiring a rethinking for building vulnerability analysis methods.

Topics & Concepts

Stateless protocolDatabase transactionFuzz testingVulnerability (computing)Computer scienceComputer securityDatabaseOperating systemSoftwareNetwork packetSecurity and Verification in ComputingBlockchain Technology Applications and SecurityDistributed systems and fault tolerance
Fuzz on the Beach: Fuzzing Solana Smart Contracts | Litcius