关键路径预搜索的符号执行智能合约漏洞检测

doi:10.3969/j.issn.0255-8297.2024.02.016

应用科学学报 ›› 2024, Vol. 42 ›› Issue (2): 364-374.doi: 10.3969/j.issn.0255-8297.2024.02.016

• 计算机科学与应用 • 上一篇

关键路径预搜索的符号执行智能合约漏洞检测

王泽旭^1,2,3, 文斌^1,3

1. 海南师范大学数据科学与智慧教育教育部重点实验室, 海南海口 571158;
2. 中山大学软件工程学院, 广东珠海 519082;
3. 海南师范大学信息科学技术学院, 海南海口 571158

收稿日期:2022-08-14 出版日期:2024-03-31 发布日期:2024-03-28
通信作者: 文斌,教授,研究方向为区块链生态安全、数据安全。E-mail:binwen@hainnu.edu.cn E-mail:binwen@hainnu.edu.cn
基金资助:
国家自然科学基金（No.62362029）；海南省自然科学基金（No.623RC485）资助

Smart Contract Vulnerability Detection of Symbol Execution with Critical Path Pre-searching

WANG Zexu^1,2,3, WEN Bin^1,3

1. Key Laboratory of Data Science and Smart Education, Ministry of Education, Hainan Normal University, Haikou 571158, Hainan, China;
2. School of Software Engineering, Sun Yat-sen University, Zhuhai 519082, Guangdong, China;
3. School of Information Science and Technology, Hainan Normal University, Haikou 571158, Hainan, China

Received:2022-08-14 Online:2024-03-31 Published:2024-03-28

摘要/Abstract

摘要： 针对传统符号执行在不必要、不相关的路径上消耗大量时间与资源，效率低等问题，提出了利用静态检测预扫描智能合约关键路径优化符号执行验证，避免非必要路径搜索增加的资源消耗，实现基于关键路径预搜索的符号执行。该方法与现有主流检测工具进行对比实验，结果显示：Gas耗尽拒绝服务漏洞覆盖率达98%，检测准确度为84.3%，远高于均值37.2%；对存储覆盖漏洞合约的全覆盖，检测准确率为86.1%，验证了该方法的高效性与稳定性。

关键词: 智能合约, 漏洞检测, 符号执行, 关键路径预搜索, 区块链安全

Abstract: This paper proposes a pre-searching paths for symbolic execution method to guide the critical path symbol execution of scanning smart contract vulnerabilities through static detection. This approach aims to avoid unnecessary resource consumption of path search, thereby achieving accurate and fast smart contract vulnerability detection. This method is compared with existing mainstream detection tools. The results show that the Gas exhaustion denial of service vulnerability coverage reaches 98%, with a detection accuracy of 84.3%, which is far higher than the average value of 37.2%. Furthermore, the full coverage of storage coverage vulnerability contracts is realized with a detection accuracy of 86.1%, which validates the efficiency and stability of this method.

Key words: smart contract, vulnerability detection, symbol execution, pre-search of critical path, blockchain security

中图分类号:

P751.1

王泽旭, 文斌. 关键路径预搜索的符号执行智能合约漏洞检测[J]. 应用科学学报, 2024, 42(2): 364-374.

WANG Zexu, WEN Bin. Smart Contract Vulnerability Detection of Symbol Execution with Critical Path Pre-searching[J]. Journal of Applied Sciences, 2024, 42(2): 364-374.

参考文献

[1] Zheng Z B, Xie S A, Dai H N, et al. An overview of blockchain technology:architecture, consensus, and future trends [C]//2017 IEEE International Congress on Big Data (BigData Congress). IEEE, 2017:557-564.
[2] Kushwaha S S, Joshi S, Singh D, et al. Ethereum smart contract analysis tools:a systematic review [J]. IEEE Access, 2022, 10:57037-57062.
[3] Wan Z Y, Xia X, Lo D, et al. Smart contract security:a practitioners' perspective [C]//2021 IEEE/ACM 43rd International Conference on Software Engineering (ICSE). IEEE, 2021:1410-1422.
[4] Mariano B, Chen Y J, Feng Y, et al. Demystifying loops in smart contracts [C]//202035th IEEE/ACM International Conference on Automated Software Engineering. IEEE, 2020:262-274.
[5] Baldoni R, Coppa E, D'elia D C, et al. A survey of symbolic execution techniques [J]. ACM Computing Surveys, 51(3):1-39.
[6] 魏昂, 黄忠义, 周鸣爱. 智能合约安全与实施规范研究[J]. 网络空间安全, 2020, 11(3):44-49. Wei A, Huang Z Y, Zhou M A. Research on the security and implementation of smart contract [J]. Information Security and Technology, 2020, 11(3):44-49.(in Chinese)
[7] 倪远东, 张超, 殷婷婷. 智能合约安全漏洞研究综述[J]. 信息安全学报, 2020, 5(3):78-99. Ni Y D, Zhang C, Yin T T. A survey of smart contract vulnerability research [J]. Journal of Cyber Security, 2020, 5(3):78-99.(in Chinese)
[8] Luu L, Chu D H, Olickel H, et al. Making smart contracts smarter [C]//2016 ACM SIGSAC conference on Computer and Communications Security, 2016:254-269.
[9] Chen T, Feng Y Z, Li Z H, et al. GasChecker:scalable analysis for discovering gas-inefficient smart contracts [J]. IEEE Transactions on Emerging Topics in Computing, 2021, 9(3):1433-1448.
[10] 陈霄汉, 赵相福, 张登记, 等. SlightDetection:一种以太坊智能合约安全漏洞的静态分析工具[J]. 应用科学学报, 2022, 40(4):695-712. Chen X H, Zhao X F, Zhang D J, et al. SlightDetection:a static analysis tool for smart contracts security vulnerabilities on ethereum [J]. Journal of Applied Sciences, 2022, 40(4):695-712. (in Chinese)
[11] 张登记, 赵相福, 陈中育, 等. 基于Ethereum智能合约的安全策略分析[J]. 应用科学学报, 2021, 39(1):151-163. Zhang D J, Zhao X F, Chen Z Y, et al. Analysis of security strategies for smart contracts based on ethereum [J]. Journal of Applied Sciences, 2021, 39(1):151-163. (in Chinese)
[12] 林锦滨, 张晓菲, 刘晖. 符号执行技术研究[C]//全国计算机安全学术交流会, 2009:412-416.
[13] 付梦琳, 吴礼发, 洪征, 等. 智能合约安全漏洞挖掘技术研究[J]. 计算机应用, 2019, 39(7):1959-1966. Fu M L, Wu L F, Hong Z, et al. Research on vulnerability mining technique for smart contracts [J]. Journal of Computer Applications, 2019, 39(7):1959-1966. (in Chinese)
[14] 袁勇, 王飞跃. 区块链技术发展现状与展望[J]. 自动化学报, 2016, 42(4):481-494. Yuan Y, Wang F Y. Blockchain:the state of the art and future trends [J]. Acta Automatica Sinica, 2016, 42(4):481-494.(in Chinese)
[15] Liu Y, Zhou X, Gong W W. A survey of search strategies in the dynamic symbolic execution [J]. ITM Web of Conferences, 2017, 12:03025.
[16] Nassirzadeh B, Sun H, Banescu S, et al. Gas gauge:a security analysis tool for smart contract out-of-gas vulnerabilities [DB/OL]. 2021[2022-08-14]. http://arxiv.org/abs/2112.14771.
[17] Feist J, Grieco G, Groce A. Slither:a static analysis framework for smart contracts [C]//2019 IEEE/ACM 2nd International Workshop on Emerging Trends in Software Engineering for Blockchain (WETSEB). IEEE, 2019:8-15.
[18] Mossberg M, Manzano F, Hennenfent E, et al. Manticore:a user-friendly symbolic execution framework for binaries and smart contracts [C]//201934th IEEE/ACM International Conference on Automated Software Engineering (ASE). IEEE, 2019:1186-1189.
[19] Zhang W, Banescu S, Pasos L, et al. Mpro:combining static and symbolic analysis for scalable testing of smart contract [C]//2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE). IEEE, 2019:456-462.
[20] Zhang W, Banescu S, Pasos L, et al. MPro:combining static and symbolic analysis for scalable testing of smart contract [C]//2019 IEEE 30th International Symposium on Software Reliability Engineering (ISSRE). IEEE, 2019:456-462.
[21] Tsankov P, Dan A, Drachsler-Cohen D, et al. Securify:practical security analysis of smart contracts [C]//Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, 2018:67-82.
[22] Tikhomirov S, Voskresenskaya E, Ivanitskiy I, et al. SmartCheck:static analysis of ethereum smart contracts [C]//2018 IEEE/ACM 1st International Workshop on Emerging Trends in Software Engineering for Blockchain (WETSEB). IEEE, 2018:9-16.

关键路径预搜索的符号执行智能合约漏洞检测

Smart Contract Vulnerability Detection of Symbol Execution with Critical Path Pre-searching

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价

[1]	潘亮, 陈彬, 代明军, 王滔滔, 张胜利. 基于区块链智能合约的动态频谱共享[J]. 应用科学学报, 2023, 41(4): 590-600.
[2]	刘红, 张靖宇, 雷梦婷, 肖云鹏. 基于区块链的公平和可验证电子投票智能合约[J]. 应用科学学报, 2023, 41(4): 541-562.
[3]	张勇, 姚中原, 王超, 郭尚坤, 郭晓涵, 斯雪明. 面向复杂应用场景的联盟链多链协同方案[J]. 应用科学学报, 2023, 41(4): 601-613.
[4]	王锋, 刘琳琳, 刘扬, 白浩, 张强. 基于区块链的高校校际联盟图书资源共享系统[J]. 应用科学学报, 2023, 41(3): 515-526.
[5]	赵海鸿, 姚中原, 祝卫华, 朱自强, 潘长风, 斯雪明. 一种基于区块链的电子合同共享方案[J]. 应用科学学报, 2023, 41(2): 359-368.
[6]	王华建, 黎人玮, 周寰, 阳国贵. 基于承诺方案的去中心化可信众包平台设计与实现[J]. 应用科学学报, 2023, 41(1): 141-152.
[7]	陈霄汉, 赵相福, 张登记, 费佳佳. SlightDetection：一种以太坊智能合约安全漏洞的静态分析工具[J]. 应用科学学报, 2022, 40(4): 695-712.
[8]	朱自强, 姚中原, 祝卫华, 赵海鸿, 潘长风, 斯雪明. 匿名可追溯的区块链数据交易方案[J]. 应用科学学报, 2022, 40(4): 653-665.
[9]	吴欧, 张贺, 王岩泽, 李昊明, 李杉杉. 异构多链场景下跨境海产品供应链平台的架构设计与实现[J]. 应用科学学报, 2022, 40(4): 539-554.
[10]	王诚, 郑红, 黄建华, 钱诗慧. 基于双区块链的PKI模型[J]. 应用科学学报, 2022, 40(3): 528-538.
[11]	张登记, 赵相福, 陈中育, 童向荣. 基于Ethereum智能合约的安全策略分析[J]. 应用科学学报, 2021, 39(1): 151-163.
[12]	周正强, 陈玉玲, 李涛, 任晓军, 卿欣艺. 基于联盟链的医疗数据安全共享方案[J]. 应用科学学报, 2021, 39(1): 123-134.
[13]	向伟静, 蔡维德. 法律智能合约平台模型的研究与设计[J]. 应用科学学报, 2021, 39(1): 109-122.
[14]	王思源, 邹仕洪. 多域物联网中基于区块链和权能的访问控制机制[J]. 应用科学学报, 2021, 39(1): 55-69.
[15]	赵颖琪, 朱雪阳, 李广元, 高雅, 包玉龙. 带时间约束的智能合约验证[J]. 应用科学学报, 2021, 39(1): 1-16.