TokenHook: Secure ERC-20 smart contract

Rahimian, Reza; Clark, Jeremy

doi:10.48550/arxiv.2107.02997

Cited by 4 publications

(3 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…and evaluate the performance of analysis tools [64,85,87,101,106,111,137,169,227]. All of these surveys focus on Ethereum smart contracts written in Solidity, except the study of Yamashita, Kazuhiro et al [227], which investigates the potential risks of Hyperledger Fabric blockchain.…”

Section: Studymentioning

confidence: 99%

Pre-deployment Analysis of Smart Contracts -- A Survey

Munir¹,

Taha²

2023

Preprint

View full text Add to dashboard Cite

Smart contracts are programs that execute transactions involving independent parties and cryptocurrencies. As programs, smart contracts are susceptible to a wide range of errors and vulnerabilities. Such vulnerabilities can result in significant losses. Furthermore, by design, smart contract transactions are irreversible. This creates a need for methods to ensure the correctness and security of contracts pre-deployment. Recently there has been substantial research into such methods. The sheer volume of this research makes articulating state-of-the-art a substantial undertaking. To address this challenge, we present a systematic review of the literature. A key feature of our presentation is to factor out the relationship between vulnerabilities and methods through properties. Specifically, we enumerate and classify smart contract vulnerabilities and methods by the properties they address. The methods considered include static analysis as well as dynamic analysis methods and machine learning algorithms that analyze smart contracts before deployment.Several patterns about the strengths of different methods emerge through this classification process.CCS Concepts: • General and reference → Surveys and overviews; • Software and its engineering → Automated static analysis; Dynamic analysis; Software verification.

show abstract

Section: Studymentioning

confidence: 99%

Pre-deployment Analysis of Smart Contracts -- A Survey

Munir¹,

Taha²

2023

Preprint

View full text Add to dashboard Cite

show abstract

“…Thousands of deployed token contracts have referenced the Ethereum official website (now fixed) and the non-standard template code given by OpenZeppelin. Many function implementations did not follow the ERC20 specification, which resulted in serious compatibility issues such as unable to transfer normally when the Solidity compiler was upgraded to 0.4.22 [32].…”

Section: Token Analysismentioning

confidence: 99%

Anomaly Analysis of Blockchain-based Decentralized Applications of Transportation

2023

AJCIS

View full text Add to dashboard Cite

Decentralized applications (DApps) refer to open-source applications that utilize blockchain technology. DApps of Transportation (DoT), as an important application of blockchain-based IntelligentTransportation Systems (ITS), is a new focus for current research. The survival analysis and activeness analysis of DoT are common life cycle analysis methods to give an overall understanding of the development of DoT, while the abnormal transactions analysis and token analysis help to discover possible problems in transactions of DoT. This paper conducts an anomaly analysis of DoT from four aspects: survival, activeness, abnormal transactions, and tokens. The survival, activeness, and abnormal transaction analysis are based on the graph, which provides analyzers with intuitive visualizations to discover problems. Specifically, we propose a framework in which a graph of DoT transaction network is constructed and an efficient algorithm is adopted to detect abnormal patterns in the graph. Additionally, the token analysis is done to find the problematic tokens of DoT and provide correction suggestions to developers. Our work presents exquisite visualizations as well as solid analysis for DoT market. The results show our methods can locate abnormal transactions and tokens that deviate from standards.

show abstract

“…Despite recent advancements in the SC programming languages, they still have a lot of problems to overcome, and several concerns continue to undermine their adoption. For example, Vyper does not support Inheritance, Inline Assembly, Function and Operator Overloading, Recurring Calls, etc [18], [19]. A significant challenge that developers encounter in the Ethereum platform is the dilemma of deploying code to a system that is immutable while the development platform itself continues to evolve.…”

Section: Introductionmentioning

confidence: 99%

SCEditor: A Graphical Editor Prototype for Smart Contract Design and Development

Hsain,

Laaz,

Mbarki

2024

IJACSA

View full text Add to dashboard Cite

In recent years, particularly with the Ethereum blockchain's advent, smart contracts have gained significant interest as a means of regulating exchanges among multiple parties via code. This surge has prompted the emergence of various smart contract (SC) programming languages, each possessing distinct philosophies, grammatical structures, and components. Consequently, developers are increasingly involved in SC programming. However, these languages are platform specific, implying that a transition to another platform necessitates the use of different languages. Additionally, developers require a certain level of control over SCs to address encountered bugs and ensure maintenance. To address these developer-centric challenges, this paper presents SCEditor, a novel Eclipse Sirius-based prototype editor designed for the visualization, design, and creation of SCs. The editor proposes a means of standardizing the usage of SC programming languages through the incorporation of graphical syntax and a metamodel conforming to Model-Driven Engineering (MDE) principles and SC construction rules to generate an abstract SC model. The efficacy of this editor is demonstrated through testing on a voting SC written in Vyper and Solidity languages. Furthermore, the editor holds potential for future exploitation in model transformation and code generation for various SC languages.

show abstract

TokenHook: Secure ERC-20 smart contract

Cited by 4 publications

References 8 publications

Pre-deployment Analysis of Smart Contracts -- A Survey

Pre-deployment Analysis of Smart Contracts -- A Survey

Anomaly Analysis of Blockchain-based Decentralized Applications of Transportation

SCEditor: A Graphical Editor Prototype for Smart Contract Design and Development

Contact Info

Product

Resources

About