SlideShare a Scribd company logo

Security challenges in Ethereum smart contract programming (ver. 2)

S
Sergei Tikhomirov

An updated version of https://www.slideshare.net/SergeiTikhomirov/security-challenges-in-ethereum-smart-contract-programming Video (Russian): https://youtu.be/FbZTJE7b5e8

Software
1 of 55
Download to read offline
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 1/36 Security challenges in Ethereum smart contract programming Sergei Tikhomirov SnT, University of Luxembourg
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 2/36 Outline Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 3/36 Who am I: Sergei Tikhomirov PhD researcher (University of Luxembourg) Topics: blockchain security and privacy Previously in code analysis / bug detection
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 4/36 Blockchain is a hype Total market cap 9X since 1 January 2017 ICO boom, innovative dApps
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 5/36 Security issues New execution paradigm: trustless network of nodes
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 5/36 Security issues New execution paradigm: trustless network of nodes A whole software stack developed from scratch (consensus layer, compilers, VM)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 5/36 Security issues New execution paradigm: trustless network of nodes A whole software stack developed from scratch (consensus layer, compilers, VM) Financially motivated anonymous attackers
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 6/36 Massive security breaches The DAO hack (2016) Parity wallet bug (2017)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract) Nodes store state (balances, code, data), execute code, extend blockchain (PoW)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract) Nodes store state (balances, code, data), execute code, extend blockchain (PoW) Developers write contracts in Solidity, compile to bytecode, deploy to blockchain
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract) Nodes store state (balances, code, data), execute code, extend blockchain (PoW) Developers write contracts in Solidity, compile to bytecode, deploy to blockchain Users interact with contracts via transactions (e.g., send ether, perform computation)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 8/36 Three types of blockchain devs Core protocol developers create basic infrastructure (virtual machine, compilers, consensus)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 8/36 Three types of blockchain devs Core protocol developers create basic infrastructure (virtual machine, compilers, consensus) Contract developers create contracts on top of basic infrastructure (assuming it works as specified)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 8/36 Three types of blockchain devs Core protocol developers create basic infrastructure (virtual machine, compilers, consensus) Contract developers create contracts on top of basic infrastructure (assuming it works as specified) Dapp developers create blockchain-interfacing apps
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 9/36 Six security challenges in Solidity
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 10/36 Challenge 1: External calls Ethereum contracts can call other contracts Those can be malicious!
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 11/36 Re-entrancy attack: problem 1 mapping (address => uint) private balances; 2 // msg.sender is a user withdrawing funds 3 function withdraw () public { 4 uint amount = balances[msg.sender ]; 5 if (!( msg.sender.call.value(amount)())) { 6 revert; 7 } 8 balances[msg.sender] = 0; 9 }
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 11/36 Re-entrancy attack: problem 1 mapping (address => uint) private balances; 2 // msg.sender is a user withdrawing funds 3 function withdraw () public { 4 uint amount = balances[msg.sender ]; 5 if (!( msg.sender.call.value(amount)())) { 6 revert; 7 } 8 balances[msg.sender] = 0; 9 } External contract at msg.sender calls withdraw again (line 4), while balance[msg.sender] is still non zero.
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 12/36 Re-entrancy attack: solution 1 mapping (address => uint) private balance; 2 function withdraw () public { 3 uint amount = balance[msg.sender ]; 4 balance[msg.sender] = 0; 5 if (!( msg.sender.call.value(amount)())) { 6 revert; 7 } 8 } First update balance[msg.sender] (line 4), then do actual withdraw (line 5) Checks – effects – interactions
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether);
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether); call.value – forwards all gas (re-entrancy)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether); call.value – forwards all gas (re-entrancy) send – 2300 gas stipend (check return value!)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether); call.value – forwards all gas (re-entrancy) send – 2300 gas stipend (check return value!) transfer = if (!send() revert;) – preferable
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 14/36 Challenge 2: Miners’ influence Miners can: Censor transactions (→ DoS)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 14/36 Challenge 2: Miners’ influence Miners can: Censor transactions (→ DoS) Re-order transactions (→ front-running)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 14/36 Challenge 2: Miners’ influence Miners can: Censor transactions (→ DoS) Re-order transactions (→ front-running) Manipulate environment variables (→ insecure PRNG)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 15/36 Insecure randomness: problem 1 function determineWinner (address player1 , address player2) 2 returns (address winner) { 3 if (block.timestamp % 2 == 0) { 4 return player1; 5 } else { 6 return player2; 7 } 8 }
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 16/36 Insecure randomness: solution Implement a commit-reveal scheme Use secure randomness sources RANDAO Bitcoin blocks via BTCRelay trusted oracles
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 17/36 Challenge 3: Immutability Q: Isn’t immutability a good thing?
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 17/36 Challenge 3: Immutability Q: Isn’t immutability a good thing? A: Yes, but there is a caveat...
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 17/36 Challenge 3: Immutability Q: Isn’t immutability a good thing? A: Yes, but there is a caveat... A deployed contract can’t be patched
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 18/36 Example: Black hole contract 1 contract BlackHole { 2 function () payable { } 3 function getBalance () 4 constant 5 returns (uint) { 6 return this.balance; 7 } 8 } The contract can receive ether (line 2), but there is no way to withdraw it (though you can check the balance).
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 19/36 Deal with immutability Test contracts fully before deployment Revert payments you don’t expect Avoid unrecoverable states
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 20/36 Challenge 4: Privacy All transactions are broadcast in plaintext Anyone can download and analyze history Blockchain analysis tools only get better The private modifier does not hide the variable, it only prevents external contracts from changing it
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 21/36 Challenge 5: Execution cost Users pay gas for every execution step Centralized clouds are much cheaper
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 21/36 Challenge 5: Execution cost Users pay gas for every execution step Centralized clouds are much cheaper Ethereum is not a ”world computer”... ...and definitely not a cloud storage
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 22/36 Gas costs defined in Yellow paper
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 23/36 Example: using storage inside loop 1 uint [255] res; 2 function costlyFunction () { 3 for (uint8 i = 0; i < 255; i++) { 4 res[i] = (255 - i) * i; 5 } 6 } Running this costlyFunction is $601 1 5m gas @ 35 gwei, $330 / ETH
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 23/36 Example: using storage inside loop 1 uint [255] res; 2 function costlyFunction () { 3 for (uint8 i = 0; i < 255; i++) { 4 res[i] = (255 - i) * i; 5 } 6 } Running this costlyFunction is $601 More importantly, tx’s calling costlyFunction will likely never be confirmed (block limit is around 6.7m gas) 1 5m gas @ 35 gwei, $330 / ETH
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 24/36 Optimizing contracts for gas costs Avoid iterating over large arrays Avoid using permanent storage Measure and optimize gas consumption Move all except security critical computations off-chain
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 25/36 Challenge 6: Subtleties Solidity / EVM subtleties cause bugs if not accounted for.
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 26/36 Example: Loop 1 for (var i = 0; i < 300; i++) { 2 foo(); 3 }
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 26/36 Example: Loop 1 for (var i = 0; i < 300; i++) { 2 foo(); 3 } Type of i is inferred to uint8 Overflow at step 256
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 27/36 Example: Balance 1 mapping(address => uint) balances; 2 if (this.balance == expectedBalance) { 3 foo(); 4 }
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 27/36 Example: Balance 1 mapping(address => uint) balances; 2 if (this.balance == expectedBalance) { 3 foo(); 4 } Ether can be forcibly sent to account (mining or selfdestruct) Do not compare balances for strict equality
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 28/36 Six issues: takeaway External = dangerous Miners influence execution Contracts are immutable Blockchain is not private On-chain computation is expensive Solidity & EVM have their subtleties
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 29/36 Writing secure contracts: practical advice
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 30/36 Step 1. Write specification Describe what you want before implementing it: you can’t fix incorrect code without defining correct Is public blockchain the right tool? Can you use a database? Permissioned blockchain? Private instance of Ethereum?
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 31/36
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 32/36 Step 2. Check source code Adhere to best practices Update software (compiler, framework) Run analysis tools (Oyente, Securify, Solgraph) Do external audits
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 33/36 Step 3. Check bytecode Compiler may have bugs Bytecode is what is actually executed Run analysis tools (Dr Y’s analyzer) Run verification tools (not yet available)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 34/36 Step 4. Check dApp as a whole Create tests at early development stages Truffle framework: truffle test Make sure to cover all cases (solidity-coverage)
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 35/36 Conclusion Smart contracts are still a new technology Potential is enormous, but security issues are inevitable Tread carefully!
Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 36/36 Questions? s-tikhomirov.github.io

Recommended

Security challenges in Ethereum smart contract programming
Security challenges in Ethereum smart contract programmingSecurity challenges in Ethereum smart contract programming
Security challenges in Ethereum smart contract programmingSergei Tikhomirov
 
Findel: Secure Derivative Contracts for Ethereum
Findel: Secure Derivative Contracts for EthereumFindel: Secure Derivative Contracts for Ethereum
Findel: Secure Derivative Contracts for EthereumSergei Tikhomirov
 
Workshop on 03 11-2012
Workshop on 03 11-2012Workshop on 03 11-2012
Workshop on 03 11-2012Gaurav Gautam
 
Overflowing attack potential, scoring defence in-depth
Overflowing attack potential, scoring defence in-depthOverflowing attack potential, scoring defence in-depth
Overflowing attack potential, scoring defence in-depthJavier Tallón
 
Nt1310 Unit 6 Powerpoint
Nt1310 Unit 6 PowerpointNt1310 Unit 6 Powerpoint
Nt1310 Unit 6 PowerpointJanet Robinson
 
Hash
HashHash
HashTazo Al
 
CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...
CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...
CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...Kim Hammar
 
You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...
You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...
You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...Priyanka Aash
 

Recommended

Security challenges in Ethereum smart contract programming
Security challenges in Ethereum smart contract programmingSecurity challenges in Ethereum smart contract programming
Security challenges in Ethereum smart contract programmingSergei Tikhomirov
 
Findel: Secure Derivative Contracts for Ethereum
Findel: Secure Derivative Contracts for EthereumFindel: Secure Derivative Contracts for Ethereum
Findel: Secure Derivative Contracts for EthereumSergei Tikhomirov
 
Workshop on 03 11-2012
Workshop on 03 11-2012Workshop on 03 11-2012
Workshop on 03 11-2012Gaurav Gautam
 
Overflowing attack potential, scoring defence in-depth
Overflowing attack potential, scoring defence in-depthOverflowing attack potential, scoring defence in-depth
Overflowing attack potential, scoring defence in-depthJavier Tallón
 
Nt1310 Unit 6 Powerpoint
Nt1310 Unit 6 PowerpointNt1310 Unit 6 Powerpoint
Nt1310 Unit 6 PowerpointJanet Robinson
 
Hash
HashHash
HashTazo Al
 
CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...
CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...
CNSM 2022 - An Online Framework for Adapting Security Policies in Dynamic IT ...Kim Hammar
 
You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...
You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...
You May Have Paid more than you imagine: Replay Attacks on Ethereum Smart Con...Priyanka Aash
 
Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021
Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021
Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021Kim Hammar
 
Chapter8 27 nov_2010
Chapter8 27 nov_2010Chapter8 27 nov_2010
Chapter8 27 nov_2010Umang Gupta
 
Intrusion Prevention through Optimal Stopping
Intrusion Prevention through Optimal StoppingIntrusion Prevention through Optimal Stopping
Intrusion Prevention through Optimal StoppingKim Hammar
 
Blockchain Land Audit Report.pdf
Blockchain Land Audit Report.pdfBlockchain Land Audit Report.pdf
Blockchain Land Audit Report.pdfBlockchainLand
 
Nt1330 Unit 4 Dthm Paper
Nt1330 Unit 4 Dthm PaperNt1330 Unit 4 Dthm Paper
Nt1330 Unit 4 Dthm PaperJennifer Reither
 
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]Alex Pruden
 
Oleksii Matiiasevych - Challenges in testing of smart contracts
Oleksii Matiiasevych - Challenges in testing of smart contractsOleksii Matiiasevych - Challenges in testing of smart contracts
Oleksii Matiiasevych - Challenges in testing of smart contractsIevgenii Katsan
 
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITY
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITYBLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITY
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITYijcseit
 
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...Muthusankaranarayana1
 
Best practices to build secure smart contracts
Best practices to build secure smart contractsBest practices to build secure smart contracts
Best practices to build secure smart contractsGautam Anand
 
Learning Intrusion Prevention Policies Through Optimal Stopping
Learning Intrusion Prevention Policies Through Optimal StoppingLearning Intrusion Prevention Policies Through Optimal Stopping
Learning Intrusion Prevention Policies Through Optimal StoppingKim Hammar
 
Blockchain_ver0.5_MIT_security_and Privacy_am_final_upload
Blockchain_ver0.5_MIT_security_and Privacy_am_final_uploadBlockchain_ver0.5_MIT_security_and Privacy_am_final_upload
Blockchain_ver0.5_MIT_security_and Privacy_am_final_uploadAnish Mohammed
 
Daniel Connelly Ethereum Smart Contract Master's Thesis
Daniel Connelly Ethereum Smart Contract Master's ThesisDaniel Connelly Ethereum Smart Contract Master's Thesis
Daniel Connelly Ethereum Smart Contract Master's ThesisDaniel Connelly
 
Varieties of Blockchains
Varieties of BlockchainsVarieties of Blockchains
Varieties of BlockchainsSadegh Dorri N.
 
Introduction to cryptography
Introduction to cryptographyIntroduction to cryptography
Introduction to cryptographyAmir Neziri
 
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64 A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64 IJCNCJournal
 
Privacy & Security Aspects in Mobile Networks
Privacy & Security Aspects in Mobile NetworksPrivacy & Security Aspects in Mobile Networks
Privacy & Security Aspects in Mobile NetworksDefCamp
 
How to be a smart contract engineer
How to be a smart contract engineerHow to be a smart contract engineer
How to be a smart contract engineerOded Noam
 
Self-Learning Systems for Cyber Security
Self-Learning Systems for Cyber SecuritySelf-Learning Systems for Cyber Security
Self-Learning Systems for Cyber SecurityKim Hammar
 
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xu
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xuHuashan chen, marcus pendleton, laurent njilla, and shouhuai xu
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xuIT Strategy Group
 
Smartcheck: Static Analysis of Ethereum Smart Contracts
Smartcheck: Static Analysis of Ethereum Smart ContractsSmartcheck: Static Analysis of Ethereum Smart Contracts
Smartcheck: Static Analysis of Ethereum Smart ContractsSergei Tikhomirov
 
Privacy preserving KYC on Ethereum
Privacy preserving KYC on EthereumPrivacy preserving KYC on Ethereum
Privacy preserving KYC on EthereumSergei Tikhomirov
 

More Related Content

Similar to Security challenges in Ethereum smart contract programming (ver. 2)

Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021
Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021
Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021Kim Hammar
 
Chapter8 27 nov_2010
Chapter8 27 nov_2010Chapter8 27 nov_2010
Chapter8 27 nov_2010Umang Gupta
 
Intrusion Prevention through Optimal Stopping
Intrusion Prevention through Optimal StoppingIntrusion Prevention through Optimal Stopping
Intrusion Prevention through Optimal StoppingKim Hammar
 
Blockchain Land Audit Report.pdf
Blockchain Land Audit Report.pdfBlockchain Land Audit Report.pdf
Blockchain Land Audit Report.pdfBlockchainLand
 
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]Alex Pruden
 
Oleksii Matiiasevych - Challenges in testing of smart contracts
Oleksii Matiiasevych - Challenges in testing of smart contractsOleksii Matiiasevych - Challenges in testing of smart contracts
Oleksii Matiiasevych - Challenges in testing of smart contractsIevgenii Katsan
 
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITY
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITYBLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITY
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITYijcseit
 
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...Muthusankaranarayana1
 
Best practices to build secure smart contracts
Best practices to build secure smart contractsBest practices to build secure smart contracts
Best practices to build secure smart contractsGautam Anand
 
Learning Intrusion Prevention Policies Through Optimal Stopping
Learning Intrusion Prevention Policies Through Optimal StoppingLearning Intrusion Prevention Policies Through Optimal Stopping
Learning Intrusion Prevention Policies Through Optimal StoppingKim Hammar
 
Blockchain_ver0.5_MIT_security_and Privacy_am_final_upload
Blockchain_ver0.5_MIT_security_and Privacy_am_final_uploadBlockchain_ver0.5_MIT_security_and Privacy_am_final_upload
Blockchain_ver0.5_MIT_security_and Privacy_am_final_uploadAnish Mohammed
 
Daniel Connelly Ethereum Smart Contract Master's Thesis
Daniel Connelly Ethereum Smart Contract Master's ThesisDaniel Connelly Ethereum Smart Contract Master's Thesis
Daniel Connelly Ethereum Smart Contract Master's ThesisDaniel Connelly
 
Varieties of Blockchains
Varieties of BlockchainsVarieties of Blockchains
Varieties of BlockchainsSadegh Dorri N.
 
Introduction to cryptography
Introduction to cryptographyIntroduction to cryptography
Introduction to cryptographyAmir Neziri
 
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64 A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64 IJCNCJournal
 
Privacy & Security Aspects in Mobile Networks
Privacy & Security Aspects in Mobile NetworksPrivacy & Security Aspects in Mobile Networks
Privacy & Security Aspects in Mobile NetworksDefCamp
 
How to be a smart contract engineer
How to be a smart contract engineerHow to be a smart contract engineer
How to be a smart contract engineerOded Noam
 
Self-Learning Systems for Cyber Security
Self-Learning Systems for Cyber SecuritySelf-Learning Systems for Cyber Security
Self-Learning Systems for Cyber SecurityKim Hammar
 
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xu
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xuHuashan chen, marcus pendleton, laurent njilla, and shouhuai xu
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xuIT Strategy Group
 

Similar to Security challenges in Ethereum smart contract programming (ver. 2) (20)

Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021
Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021
Learning Intrusion Prevention Policies through Optimal Stopping - CNSM2021
 
Chapter8 27 nov_2010
Chapter8 27 nov_2010Chapter8 27 nov_2010
Chapter8 27 nov_2010
 
Intrusion Prevention through Optimal Stopping
Intrusion Prevention through Optimal StoppingIntrusion Prevention through Optimal Stopping
Intrusion Prevention through Optimal Stopping
 
Blockchain Land Audit Report.pdf
Blockchain Land Audit Report.pdfBlockchain Land Audit Report.pdf
Blockchain Land Audit Report.pdf
 
Nt1330 Unit 4 Dthm Paper
Nt1330 Unit 4 Dthm PaperNt1330 Unit 4 Dthm Paper
Nt1330 Unit 4 Dthm Paper
 
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]
zkStudyClub: Zero-Knowledge Proofs Security, in Practice [JP Aumasson, Taurus]
 
Oleksii Matiiasevych - Challenges in testing of smart contracts
Oleksii Matiiasevych - Challenges in testing of smart contractsOleksii Matiiasevych - Challenges in testing of smart contracts
Oleksii Matiiasevych - Challenges in testing of smart contracts
 
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITY
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITYBLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITY
BLOCK-AD: BLOCKCHAIN ATTACK-DEFENSE CTF COMPETITION FOR NEXT-WEB3 SECURITY
 
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...
Security_evaluation_of_smart_contract_based_Ethereum_wallets___NSS__Camera_re...
 
Best practices to build secure smart contracts
Best practices to build secure smart contractsBest practices to build secure smart contracts
Best practices to build secure smart contracts
 
Learning Intrusion Prevention Policies Through Optimal Stopping
Learning Intrusion Prevention Policies Through Optimal StoppingLearning Intrusion Prevention Policies Through Optimal Stopping
Learning Intrusion Prevention Policies Through Optimal Stopping
 
Blockchain_ver0.5_MIT_security_and Privacy_am_final_upload
Blockchain_ver0.5_MIT_security_and Privacy_am_final_uploadBlockchain_ver0.5_MIT_security_and Privacy_am_final_upload
Blockchain_ver0.5_MIT_security_and Privacy_am_final_upload
 
Daniel Connelly Ethereum Smart Contract Master's Thesis
Daniel Connelly Ethereum Smart Contract Master's ThesisDaniel Connelly Ethereum Smart Contract Master's Thesis
Daniel Connelly Ethereum Smart Contract Master's Thesis
 
Varieties of Blockchains
Varieties of BlockchainsVarieties of Blockchains
Varieties of Blockchains
 
Introduction to cryptography
Introduction to cryptographyIntroduction to cryptography
Introduction to cryptography
 
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64 A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64
A SECURITY ANALYSIS OF IOT ENCRYPTION: SIDECHANNEL CUBE ATTACK ON SIMECK32/64
 
Privacy & Security Aspects in Mobile Networks
Privacy & Security Aspects in Mobile NetworksPrivacy & Security Aspects in Mobile Networks
Privacy & Security Aspects in Mobile Networks
 
How to be a smart contract engineer
How to be a smart contract engineerHow to be a smart contract engineer
How to be a smart contract engineer
 
Self-Learning Systems for Cyber Security
Self-Learning Systems for Cyber SecuritySelf-Learning Systems for Cyber Security
Self-Learning Systems for Cyber Security
 
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xu
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xuHuashan chen, marcus pendleton, laurent njilla, and shouhuai xu
Huashan chen, marcus pendleton, laurent njilla, and shouhuai xu
 

More from Sergei Tikhomirov

Smartcheck: Static Analysis of Ethereum Smart Contracts
Smartcheck: Static Analysis of Ethereum Smart ContractsSmartcheck: Static Analysis of Ethereum Smart Contracts
Smartcheck: Static Analysis of Ethereum Smart ContractsSergei Tikhomirov
 
Privacy preserving KYC on Ethereum
Privacy preserving KYC on EthereumPrivacy preserving KYC on Ethereum
Privacy preserving KYC on EthereumSergei Tikhomirov
 
Bitcoin: money of the future
Bitcoin: money of the futureBitcoin: money of the future
Bitcoin: money of the futureSergei Tikhomirov
 
Financial Domain-Specific Languages
Financial Domain-Specific LanguagesFinancial Domain-Specific Languages
Financial Domain-Specific LanguagesSergei Tikhomirov
 
Computer Science and Blockchain Research at University of Luxembourg
Computer Science and Blockchain Research at University of LuxembourgComputer Science and Blockchain Research at University of Luxembourg
Computer Science and Blockchain Research at University of LuxembourgSergei Tikhomirov
 
Blockchain security research (in 2 minutes)
Blockchain security research (in 2 minutes)Blockchain security research (in 2 minutes)
Blockchain security research (in 2 minutes)Sergei Tikhomirov
 
Pethreon: recurring payments on Ethereum
Pethreon: recurring payments on EthereumPethreon: recurring payments on Ethereum
Pethreon: recurring payments on EthereumSergei Tikhomirov
 
Bitcoin: деньги будущего
Bitcoin: деньги будущегоBitcoin: деньги будущего
Bitcoin: деньги будущегоSergei Tikhomirov
 

More from Sergei Tikhomirov (8)

Smartcheck: Static Analysis of Ethereum Smart Contracts
Smartcheck: Static Analysis of Ethereum Smart ContractsSmartcheck: Static Analysis of Ethereum Smart Contracts
Smartcheck: Static Analysis of Ethereum Smart Contracts
 
Privacy preserving KYC on Ethereum
Privacy preserving KYC on EthereumPrivacy preserving KYC on Ethereum
Privacy preserving KYC on Ethereum
 
Bitcoin: money of the future
Bitcoin: money of the futureBitcoin: money of the future
Bitcoin: money of the future
 
Financial Domain-Specific Languages
Financial Domain-Specific LanguagesFinancial Domain-Specific Languages
Financial Domain-Specific Languages
 
Computer Science and Blockchain Research at University of Luxembourg
Computer Science and Blockchain Research at University of LuxembourgComputer Science and Blockchain Research at University of Luxembourg
Computer Science and Blockchain Research at University of Luxembourg
 
Blockchain security research (in 2 minutes)
Blockchain security research (in 2 minutes)Blockchain security research (in 2 minutes)
Blockchain security research (in 2 minutes)
 
Pethreon: recurring payments on Ethereum
Pethreon: recurring payments on EthereumPethreon: recurring payments on Ethereum
Pethreon: recurring payments on Ethereum
 
Bitcoin: деньги будущего
Bitcoin: деньги будущегоBitcoin: деньги будущего
Bitcoin: деньги будущего
 

Recently uploaded

%in Harare+277-882-255-28 abortion pills for sale in Harare
%in Harare+277-882-255-28 abortion pills for sale in Harare%in Harare+277-882-255-28 abortion pills for sale in Harare
%in Harare+277-882-255-28 abortion pills for sale in Hararemasabamasaba
 
%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...
%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...
%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...masabamasaba
 
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...Health
 
Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...
Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...
Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...Nitya salvi
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️Delhi Call girls
 
Software Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsSoftware Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsArshad QA
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️Delhi Call girls
 
AI & Machine Learning Presentation Template
AI & Machine Learning Presentation TemplateAI & Machine Learning Presentation Template
AI & Machine Learning Presentation TemplatePresentation.STUDIO
 
OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...
OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...
OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...Shane Coughlan
 
Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...
Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...
Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...SelfMade bd
 
Generic or specific? Making sensible software design decisions
Generic or specific? Making sensible software design decisionsGeneric or specific? Making sensible software design decisions
Generic or specific? Making sensible software design decisionsBert Jan Schrijver
 
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...masabamasaba
 
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisamasabamasaba
 
%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburg
%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburg%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburg
%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburgmasabamasaba
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Modelsaagamshah0812
 
Introducing Microsoft’s new Enterprise Work Management (EWM) Solution
Introducing Microsoft’s new Enterprise Work Management (EWM) SolutionIntroducing Microsoft’s new Enterprise Work Management (EWM) Solution
Introducing Microsoft’s new Enterprise Work Management (EWM) SolutionOnePlan Solutions
 
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...masabamasaba
 
Define the academic and professional writing..pdf
Define the academic and professional writing..pdfDefine the academic and professional writing..pdf
Define the academic and professional writing..pdfPearlKirahMaeRagusta1
 
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisamasabamasaba
 

Recently uploaded (20)

Microsoft AI Transformation Partner Playbook.pdf
Microsoft AI Transformation Partner Playbook.pdfMicrosoft AI Transformation Partner Playbook.pdf
Microsoft AI Transformation Partner Playbook.pdf
 
%in Harare+277-882-255-28 abortion pills for sale in Harare
%in Harare+277-882-255-28 abortion pills for sale in Harare%in Harare+277-882-255-28 abortion pills for sale in Harare
%in Harare+277-882-255-28 abortion pills for sale in Harare
 
%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...
%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...
%+27788225528 love spells in Boston Psychic Readings, Attraction spells,Bring...
 
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
+971565801893>>SAFE AND ORIGINAL ABORTION PILLS FOR SALE IN DUBAI AND ABUDHAB...
 
Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...
Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...
Chinsurah Escorts ☎️8617697112 Starting From 5K to 15K High Profile Escorts ...
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
 
Software Quality Assurance Interview Questions
Software Quality Assurance Interview QuestionsSoftware Quality Assurance Interview Questions
Software Quality Assurance Interview Questions
 
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
call girls in Vaishali (Ghaziabad) 🔝 >༒8448380779 🔝 genuine Escort Service 🔝✔️✔️
 
AI & Machine Learning Presentation Template
AI & Machine Learning Presentation TemplateAI & Machine Learning Presentation Template
AI & Machine Learning Presentation Template
 
OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...
OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...
OpenChain - The Ramifications of ISO/IEC 5230 and ISO/IEC 18974 for Legal Pro...
 
Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...
Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...
Crypto Cloud Review - How To Earn Up To $500 Per DAY Of Bitcoin 100% On AutoP...
 
Generic or specific? Making sensible software design decisions
Generic or specific? Making sensible software design decisionsGeneric or specific? Making sensible software design decisions
Generic or specific? Making sensible software design decisions
 
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
%+27788225528 love spells in Atlanta Psychic Readings, Attraction spells,Brin...
 
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
 
%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburg
%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburg%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburg
%in Lydenburg+277-882-255-28 abortion pills for sale in Lydenburg
 
Unlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language ModelsUnlocking the Future of AI Agents with Large Language Models
Unlocking the Future of AI Agents with Large Language Models
 
Introducing Microsoft’s new Enterprise Work Management (EWM) Solution
Introducing Microsoft’s new Enterprise Work Management (EWM) SolutionIntroducing Microsoft’s new Enterprise Work Management (EWM) Solution
Introducing Microsoft’s new Enterprise Work Management (EWM) Solution
 
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
%+27788225528 love spells in Colorado Springs Psychic Readings, Attraction sp...
 
Define the academic and professional writing..pdf
Define the academic and professional writing..pdfDefine the academic and professional writing..pdf
Define the academic and professional writing..pdf
 
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa%in tembisa+277-882-255-28 abortion pills for sale in tembisa
%in tembisa+277-882-255-28 abortion pills for sale in tembisa
 

Security challenges in Ethereum smart contract programming (ver. 2)

  • 1. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 1/36 Security challenges in Ethereum smart contract programming Sergei Tikhomirov SnT, University of Luxembourg
  • 2. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 2/36 Outline Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion
  • 3. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 3/36 Who am I: Sergei Tikhomirov PhD researcher (University of Luxembourg) Topics: blockchain security and privacy Previously in code analysis / bug detection
  • 4. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 4/36 Blockchain is a hype Total market cap 9X since 1 January 2017 ICO boom, innovative dApps
  • 5. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 5/36 Security issues New execution paradigm: trustless network of nodes
  • 6. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 5/36 Security issues New execution paradigm: trustless network of nodes A whole software stack developed from scratch (consensus layer, compilers, VM)
  • 7. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 5/36 Security issues New execution paradigm: trustless network of nodes A whole software stack developed from scratch (consensus layer, compilers, VM) Financially motivated anonymous attackers
  • 8. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 6/36 Massive security breaches The DAO hack (2016) Parity wallet bug (2017)
  • 9. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract)
  • 10. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract) Nodes store state (balances, code, data), execute code, extend blockchain (PoW)
  • 11. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract) Nodes store state (balances, code, data), execute code, extend blockchain (PoW) Developers write contracts in Solidity, compile to bytecode, deploy to blockchain
  • 12. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 7/36 Ethereum in one slide Account: controlled by key (like in Bitcoin) or by code (smart contract) Nodes store state (balances, code, data), execute code, extend blockchain (PoW) Developers write contracts in Solidity, compile to bytecode, deploy to blockchain Users interact with contracts via transactions (e.g., send ether, perform computation)
  • 13. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 8/36 Three types of blockchain devs Core protocol developers create basic infrastructure (virtual machine, compilers, consensus)
  • 14. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 8/36 Three types of blockchain devs Core protocol developers create basic infrastructure (virtual machine, compilers, consensus) Contract developers create contracts on top of basic infrastructure (assuming it works as specified)
  • 15. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 8/36 Three types of blockchain devs Core protocol developers create basic infrastructure (virtual machine, compilers, consensus) Contract developers create contracts on top of basic infrastructure (assuming it works as specified) Dapp developers create blockchain-interfacing apps
  • 16. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 9/36 Six security challenges in Solidity
  • 17. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 10/36 Challenge 1: External calls Ethereum contracts can call other contracts Those can be malicious!
  • 18. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 11/36 Re-entrancy attack: problem 1 mapping (address => uint) private balances; 2 // msg.sender is a user withdrawing funds 3 function withdraw () public { 4 uint amount = balances[msg.sender ]; 5 if (!( msg.sender.call.value(amount)())) { 6 revert; 7 } 8 balances[msg.sender] = 0; 9 }
  • 19. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 11/36 Re-entrancy attack: problem 1 mapping (address => uint) private balances; 2 // msg.sender is a user withdrawing funds 3 function withdraw () public { 4 uint amount = balances[msg.sender ]; 5 if (!( msg.sender.call.value(amount)())) { 6 revert; 7 } 8 balances[msg.sender] = 0; 9 } External contract at msg.sender calls withdraw again (line 4), while balance[msg.sender] is still non zero.
  • 20. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 12/36 Re-entrancy attack: solution 1 mapping (address => uint) private balance; 2 function withdraw () public { 3 uint amount = balance[msg.sender ]; 4 balance[msg.sender] = 0; 5 if (!( msg.sender.call.value(amount)())) { 6 revert; 7 } 8 } First update balance[msg.sender] (line 4), then do actual withdraw (line 5) Checks – effects – interactions
  • 21. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether);
  • 22. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether); call.value – forwards all gas (re-entrancy)
  • 23. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether); call.value – forwards all gas (re-entrancy) send – 2300 gas stipend (check return value!)
  • 24. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 13/36 Methods of ether transter What’s the difference? 1 address.call.value (1 ether); 2 address.send (1 ether); 3 address.transfer (1 ether); call.value – forwards all gas (re-entrancy) send – 2300 gas stipend (check return value!) transfer = if (!send() revert;) – preferable
  • 25. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 14/36 Challenge 2: Miners’ influence Miners can: Censor transactions (→ DoS)
  • 26. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 14/36 Challenge 2: Miners’ influence Miners can: Censor transactions (→ DoS) Re-order transactions (→ front-running)
  • 27. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 14/36 Challenge 2: Miners’ influence Miners can: Censor transactions (→ DoS) Re-order transactions (→ front-running) Manipulate environment variables (→ insecure PRNG)
  • 28. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 15/36 Insecure randomness: problem 1 function determineWinner (address player1 , address player2) 2 returns (address winner) { 3 if (block.timestamp % 2 == 0) { 4 return player1; 5 } else { 6 return player2; 7 } 8 }
  • 29. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 16/36 Insecure randomness: solution Implement a commit-reveal scheme Use secure randomness sources RANDAO Bitcoin blocks via BTCRelay trusted oracles
  • 30. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 17/36 Challenge 3: Immutability Q: Isn’t immutability a good thing?
  • 31. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 17/36 Challenge 3: Immutability Q: Isn’t immutability a good thing? A: Yes, but there is a caveat...
  • 32. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 17/36 Challenge 3: Immutability Q: Isn’t immutability a good thing? A: Yes, but there is a caveat... A deployed contract can’t be patched
  • 33. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 18/36 Example: Black hole contract 1 contract BlackHole { 2 function () payable { } 3 function getBalance () 4 constant 5 returns (uint) { 6 return this.balance; 7 } 8 } The contract can receive ether (line 2), but there is no way to withdraw it (though you can check the balance).
  • 34. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 19/36 Deal with immutability Test contracts fully before deployment Revert payments you don’t expect Avoid unrecoverable states
  • 35. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 20/36 Challenge 4: Privacy All transactions are broadcast in plaintext Anyone can download and analyze history Blockchain analysis tools only get better The private modifier does not hide the variable, it only prevents external contracts from changing it
  • 36. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 21/36 Challenge 5: Execution cost Users pay gas for every execution step Centralized clouds are much cheaper
  • 37. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 21/36 Challenge 5: Execution cost Users pay gas for every execution step Centralized clouds are much cheaper Ethereum is not a ”world computer”... ...and definitely not a cloud storage
  • 38. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 22/36 Gas costs defined in Yellow paper
  • 39. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 23/36 Example: using storage inside loop 1 uint [255] res; 2 function costlyFunction () { 3 for (uint8 i = 0; i < 255; i++) { 4 res[i] = (255 - i) * i; 5 } 6 } Running this costlyFunction is $601 1 5m gas @ 35 gwei, $330 / ETH
  • 40. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 23/36 Example: using storage inside loop 1 uint [255] res; 2 function costlyFunction () { 3 for (uint8 i = 0; i < 255; i++) { 4 res[i] = (255 - i) * i; 5 } 6 } Running this costlyFunction is $601 More importantly, tx’s calling costlyFunction will likely never be confirmed (block limit is around 6.7m gas) 1 5m gas @ 35 gwei, $330 / ETH
  • 41. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 24/36 Optimizing contracts for gas costs Avoid iterating over large arrays Avoid using permanent storage Measure and optimize gas consumption Move all except security critical computations off-chain
  • 42. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 25/36 Challenge 6: Subtleties Solidity / EVM subtleties cause bugs if not accounted for.
  • 43. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 26/36 Example: Loop 1 for (var i = 0; i < 300; i++) { 2 foo(); 3 }
  • 44. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 26/36 Example: Loop 1 for (var i = 0; i < 300; i++) { 2 foo(); 3 } Type of i is inferred to uint8 Overflow at step 256
  • 45. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 27/36 Example: Balance 1 mapping(address => uint) balances; 2 if (this.balance == expectedBalance) { 3 foo(); 4 }
  • 46. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 27/36 Example: Balance 1 mapping(address => uint) balances; 2 if (this.balance == expectedBalance) { 3 foo(); 4 } Ether can be forcibly sent to account (mining or selfdestruct) Do not compare balances for strict equality
  • 47. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 28/36 Six issues: takeaway External = dangerous Miners influence execution Contracts are immutable Blockchain is not private On-chain computation is expensive Solidity & EVM have their subtleties
  • 48. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 29/36 Writing secure contracts: practical advice
  • 49. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 30/36 Step 1. Write specification Describe what you want before implementing it: you can’t fix incorrect code without defining correct Is public blockchain the right tool? Can you use a database? Permissioned blockchain? Private instance of Ethereum?
  • 50. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 31/36
  • 51. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 32/36 Step 2. Check source code Adhere to best practices Update software (compiler, framework) Run analysis tools (Oyente, Securify, Solgraph) Do external audits
  • 52. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 33/36 Step 3. Check bytecode Compiler may have bugs Bytecode is what is actually executed Run analysis tools (Dr Y’s analyzer) Run verification tools (not yet available)
  • 53. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 34/36 Step 4. Check dApp as a whole Create tests at early development stages Truffle framework: truffle test Make sure to cover all cases (solidity-coverage)
  • 54. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 35/36 Conclusion Smart contracts are still a new technology Potential is enormous, but security issues are inevitable Tread carefully!
  • 55. Ethereum security challenges Sergei Tikhomirov Introduction Six security challenges in Solidity External calls Miners’ influence Immutability Privacy Execution cost Subtleties Writing secure contracts: practical advice Conclusion 36/36 Questions? s-tikhomirov.github.io