An Efficient Detection Model for Smart Contract Reentrancy Vulnerabilities

Li, Yuan; Guo, Ran; Wang, Guopeng; Zhang, Lejun; Qiu, Jing; Su, Shen; Liu, Yuan; Xu, Guangxia; Chen, Huiling

doi:10.1007/978-3-031-28124-2_33

Cited by 1 publication

(1 citation statement)

References 46 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While these methods offer rapid and accurate vulnerability detection, they often lack a comprehensive comparison with the existing techniques. More recent works, such as by Li et al [17,18], have started addressing this gap by offering extensive evaluations and comparisons, enriching the field.…”

Section: Related Workmentioning

confidence: 99%

VdaBSC: A Novel Vulnerability Detection Approach for Blockchain Smart Contract by Dynamic Analysis

Sosu,

Chen,

Boahen

et al. 2023

IET Software

View full text Add to dashboard Cite

Smart contracts have gained immense popularity in recent years as self-executing programs that operate on a blockchain. However, they are not immune to security flaws, which can result in significant financial losses. These flaws can be detected using dynamic analysis methods that extract various aspects from smart contract bytecode. Methods currently used for identifying vulnerabilities in smart contracts mostly rely on static analysis methods that search for predefined vulnerability patterns. However, these patterns often fail to capture complex vulnerabilities, leading to a high rate of false negatives. To overcome this limitation, researchers have explored machine learning-based methods. However, the accurate interpretation of complex logic and structural information in smart contract code remains a challenge. In this study, we present a technique that combines real-time runtime batch normalization and data augmentation for data preprocessing, along with n-grams and one-hot encoding for feature extraction of opcode sequence information from the bytecode. We then combined bidirectional long short-term memory (BiLSTM), convolutional neural network, and the attention mechanism for vulnerability detection and classification. Additionally, our model includes a gated recurrent units memory module that enhances efficiency using historical execution data from the contract. Our results demonstrate that our proposed model effectively identifies smart contract vulnerabilities.

show abstract

Section: Related Workmentioning

confidence: 99%