Towards Correct Smart Contracts: A Case Study on Formal Verification of Access Control

Schiffl, Jonas; Grundmann, Matthias; Leinweber, Marc; Stengele, Oliver; Friebe, Sebastian; Beckert, Bernhard

doi:10.1145/3450569.3463574

Cited by 6 publications

(2 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To formally verify smart contracts, such framing conditions are provided with formal specifications of contracts. D Functional Annotations are functional pre-and post-conditions that specify what conditions must hold before and after a function executes [17,89,177]. Such annotations are defined with each function according to its specific functionality.…”

Section: User-specified Propertiesmentioning

confidence: 99%

“…Such annotations are defined with each function according to its specific functionality. An example of a precondition is to assert that the contract assumes that the sum of individual balances is equal to the total balance [89], or that the caller must have access rights to the function [177]. An example of a post-condition is that a storage variable must not be modified unless certain preconditions are satisfied [177].…”

Section: User-specified Propertiesmentioning

confidence: 99%

See 1 more Smart Citation

Pre-deployment Analysis of Smart Contracts -- A Survey

Munir¹,

Taha²

2023

Preprint

View full text Add to dashboard Cite

Smart contracts are programs that execute transactions involving independent parties and cryptocurrencies. As programs, smart contracts are susceptible to a wide range of errors and vulnerabilities. Such vulnerabilities can result in significant losses. Furthermore, by design, smart contract transactions are irreversible. This creates a need for methods to ensure the correctness and security of contracts pre-deployment. Recently there has been substantial research into such methods. The sheer volume of this research makes articulating state-of-the-art a substantial undertaking. To address this challenge, we present a systematic review of the literature. A key feature of our presentation is to factor out the relationship between vulnerabilities and methods through properties. Specifically, we enumerate and classify smart contract vulnerabilities and methods by the properties they address. The methods considered include static analysis as well as dynamic analysis methods and machine learning algorithms that analyze smart contracts before deployment.Several patterns about the strengths of different methods emerge through this classification process.CCS Concepts: • General and reference → Surveys and overviews; • Software and its engineering → Automated static analysis; Dynamic analysis; Software verification.

show abstract

Section: User-specified Propertiesmentioning

confidence: 99%