IELE: A Rigorously Designed Language and Tool Ecosystem for the Blockchain

Kasampalis, Theodoros; Guth, Dwight; Moore, B.; Şerbănuţă, Traian Florin; Zhang, Yi; Filaretti, Daniele; Serbanuta, Virgil; Johnson, Ralph E.; Roşu, Grigore

doi:10.1007/978-3-030-30942-8_35

Cited by 16 publications

(15 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Although this may suffice for many smart contracts, Obsidian provides a richer, Turing-complete environment. Likewise, IELE [Kasampalis et al 2019] is an intermediate language with a compiler that translates from Solidity. IELE is intended to facilitate automatic formal verification of properties that are specified in the K framework [Roşu and Şerbănută 2010].…”

Section: Smart Contract Languagesmentioning

confidence: 99%

Obsidian

Coblenz

Oei

Etzel

et al. 2020

ACM Trans. Program. Lang. Syst.

View full text Add to dashboard Cite

Blockchain platforms are coming into use for processing critical transactions among participants who have not established mutual trust. Many blockchains are programmable, supporting smart contracts, which maintain persistent state and support transactions that transform the state. Unfortunately, bugs in many smart contracts have been exploited by hackers. Obsidian is a novel programming language with a type system that enables static detection of bugs that are common in smart contracts today. Obsidian is based on a core calculus, Silica, for which we proved type soundness. Obsidian uses typestate to detect improper state manipulation and uses linear types to detect abuse of assets. We integrated a permissions system that encodes a notion of ownership to allow for safe, flexible aliasing. We describe two case studies that evaluate Obsidian's applicability to the domains of parametric insurance and supply chain management, finding that Obsidian's type system facilitates reasoning about high-level states and ownership of resources. We compared our Obsidian implementation to a Solidity implementation, observing that the Solidity implementation requires much boilerplate checking and tracking of state, whereas Obsidian does this work statically.

show abstract

Section: Smart Contract Languagesmentioning

confidence: 99%

Obsidian

Coblenz

Oei

Etzel

et al. 2020

ACM Trans. Program. Lang. Syst.

View full text Add to dashboard Cite

show abstract

“…Since arithmetic issues are often caused by non-validated function arguments, their identification is entrusted to pre-and postconditions [105,115,151,160] and assertions [78,183]. The (formally certified [175,220]) SafeMath [157] Solidity library implements similar checks via the require statements.…”

Section: Properties Classification By Domainsmentioning

confidence: 99%

“…Sun et al [187] additionally check that the value to be transferred is greater than zero, a crowdfunding specified by Kalra et al [114] only accepts investments bigger than a threshold limit, while Dickerson et al [71] require user balances to be non-negative. The latter property can be found in specifications of banking contracts [9,115], while wallets usually require the opposite: the authors of [50,114] request a user to respect the limit of Ether that can be transferred out of a contract within a transaction or a contract lifetime, respectively. A wallet specification by Kalra et al [114] does not permit users to transfer funds to themselves, while ERC20-K [111] allows self-transfers but considers it a special case.…”

Section: Financementioning

confidence: 99%

A Survey of Smart Contract Formal Specification and Verification

Tolmach

Lin

et al. 2020

Preprint

View full text Add to dashboard Cite

A smart contract is a computer program which allows users to define and execute transactions automatically on top of the blockchain platform. Given the significance of smart contracts in supporting important activities across industry sectors including supply chain, finance, legal and medical services, there is a strong demand for verification and validation techniques. Yet, the vast majority of smart contracts lack any kind of formal specification, which is essential for establishing their correctness. In this survey, we investigate formal models and specifications of smart contracts presented in the literature and present a systematic overview in order to understand the common trends. We also discuss the current approaches used in verifying such property specifications and identify gaps with the hope to recognize promising directions for future work.

show abstract

“…KEVM [24] defines the semantic of EVM in K and verifies the smart contract against user defined specifications. IELE [28] presents a smart contract virtual machine with a formal specification described in K which achieves similar performance as EVM and provides verifiability.…”

Section: Related Workmentioning

confidence: 99%

Securing Smart Contract On The Fly

Li,

Choi,

Long

2019

Preprint

View full text Add to dashboard Cite

We present Solythesis, a source to source Solidity compiler which takes a smart contract code and a user specified invariant as the input and produces an instrumented contract that rejects all transactions that violate the invariant. The design of Solythesis is driven by our observation that the consensus protocol and the storage layer are the primary and the secondary performance bottlenecks of Ethereum, respectively. Solythesis operates with our novel delta update and delta check techniques to minimize the overhead caused by the instrumented storage access statements. Our experimental results validate our hypothesis that the overhead of runtime validation, which is often too expensive for other domains, is in fact negligible for smart contracts. The CPU overhead of Solythesis is only 0.12% on average for our 23 benchmark contracts.

show abstract

IELE: A Rigorously Designed Language and Tool Ecosystem for the Blockchain

Cited by 16 publications

References 13 publications

Obsidian

Obsidian

A Survey of Smart Contract Formal Specification and Verification

Securing Smart Contract On The Fly

Contact Info

Product

Resources

About