• Corpus ID: 239768850

Diving Into Blockchain's Weaknesses: An Empirical Study of Blockchain System Vulnerabilities

@article{Yi2021DivingIB,
  title={Diving Into Blockchain's Weaknesses: An Empirical Study of Blockchain System Vulnerabilities},
  author={Xiao Yi and Daoyuan Wu and Lingxiao Jiang and Kehuan Zhang and Wei Zhang},
  journal={ArXiv},
  year={2021},
  volume={abs/2110.12162}
}
  • Xiao Yi, Daoyuan Wu, +2 authors Wei Zhang
  • Published 23 October 2021
  • Computer Science
  • ArXiv
XIAO YI, Department of Information Engineering The Chinese University of Hong Kong DAOYUAN WU∗, Department of Information Engineering The Chinese University of Hong Kong LINGXIAO JIANG, School of Computing and Information Systems Singapore Management University KEHUAN ZHANG, Department of Information Engineering The Chinese University of Hong Kong WEI ZHANG, School of Computer Science Nanjing University of Posts and Telecommunications 

Figures and Tables from this paper

References

SHOWING 1-10 OF 62 REFERENCES
Hyperledger fabric: a distributed operating system for permissioned blockchains
TLDR
This paper describes Fabric, its architecture, the rationale behind various design decisions, its most prominent implementation aspects, as well as its distributed application programming model, and shows that Fabric achieves end-to-end throughput of more than 3500 transactions per second in certain popular deployment configurations.
Sereum: Protecting Existing Smart Contracts Against Re-Entrancy Attacks
TLDR
Sereum is proposed, a novel smart contract security technology, dubbed Sereum (Secure Ethereum), which protects existing, deployed contracts against re-entrancy attacks in a backwards compatible way based on run-time monitoring and validation.
A NEXT GENERATION SMART CONTRACT & DECENTRALIZED APPLICATION PLATFORM
When Satoshi Nakamoto first set the Bitcoin blockchain into motion in January 2009, he was simultaneously introducing two radical and untested concepts. The first is the "bitcoin", a decentralized
IoT Passport: A Blockchain-Based Trust Framework for Collaborative Internet-of-Things
TLDR
IoT Passport is motivated by the familiar use of passports for international travel but with greater dynamism, and enables platforms to establish arbitrary trust relations with each other containing specific rules for intended collaborations, enforced by a combination of smart contracts.
Blockstack: A Global Naming and Storage System Secured by Blockchains
TLDR
This paper describes the experiences operating a large deployment of a decentralized PKI service built on top of the Namecoin blockchain, and presents various challenges pertaining to network reliability, throughput, and security that were needed to overcome while registering and updating over 33,000 entries and 200,000 transactions on the Namecoins blockchain.
Town Crier: An Authenticated Data Feed for Smart Contracts
TLDR
An authenticated data feed system called Town Crier is presented, which acts as a bridge between smart contracts and existing web sites, which are already commonly trusted for non-blockchain applications and defines and proves its basic security properties in the Universal Composibility (UC) framework.
Bug Characteristics in Blockchain Systems: A Large-Scale Empirical Study
TLDR
An empirical study on bug characteristics in eight representative open source blockchain systems finds semantic bugs are the dominant runtime bug category, and frequency distributions of bug types show similar trends across different projects and programming languages.
Understanding Ethereum via Graph Analysis
TLDR
This paper designs a new approach to collect all transaction data, constructs three graphs from the data to characterize major activities on Ethereum, and proposes new approaches based on cross-graph analysis to address two security issues in Ethereum.
AGChain: A Blockchain-based Gateway for Permanent, Distributed, and Secure App Delegation from Existing Mobile App Markets
TLDR
This work proposes a novel blockchain-based gateway, AGChain, to bridge end users and app markets so that existing app markets could still provide services while users enjoy permanent, distributed, and secure app delegation from AGChain.
SODA: A Generic Online Detection Framework for Smart Contracts
TLDR
A novel generic online detection framework named SODA for smart contracts on any blockchains that support Ethereum virtual machine (EVM), which distinguishes itself from existing online approaches through its capability, efficiency, and compatibility.
...
1
2
3
4
5
...