Peng Qian,Zhenguang Liu,Qinming He,Butian Huang,Duanzheng Tian,Xun Wang

DOI: https://doi.org/10.13328/j.cnki.jos.006375

2022-01-01

Journal of Software

Abstract: Smart contract, one of the most successful applications of blockchain, is taking the world by storm, playing an essential role in the blockchain ecosystem. However, frequent smart contract security incidents not only result in tremendous economic losses but also destroy the blockchain-based credit system. The security and reliability of smart contracts thus gain extensive attention from researchers worldwide. In this survey, we first summarize the common types and typical cases of smart contract vulnerabilities from three levels, i.e., Solidity code layer, EVM execution layer, and Block dependency layer. Further, we review the research progress of smart contract vulnerability detection and classify existing counterparts into five categories, i.e., formal verification, symbolic execution, fuzzing detection, intermediate representation, and deep learning. Empirically, we take 300 real-world smart contracts deployed on Ethereum as the test samples and compare the representative methods in terms of accuracy, F1-Score, and average detection time. Finally, we discuss the challenges in the field of smart contract vulnerability detection and combine with the deep learning technology to look forward to future research directions.

Jinoh Kim,Makiya Nakashima,Wenjun Fan,Simeon Wuthier,Xiaobo Zhou,Ikkyun Kim,Sang-Yoon Chang

DOI: https://doi.org/10.1109/tnsm.2022.3173598

2022-10-15

IEEE Transactions on Network and Service Management

Abstract:While blockchain technology provides strong cryptographic protection on the ledger and the system operations, the underlying blockchain networking remains vulnerable due to potential threats such as denial of service (DoS), Eclipse, spoofing, and Sybil attacks. Effectively detecting such malicious events should thus be an essential task for securing blockchain networks and services. Due to its importance, several studies investigated anomaly detection in Bitcoin and blockchain networks, but their analyses mainly focused on the blockchain ledger in the application context (e.g., transactions) and targets specific types of attacks (e.g., double-spending, deanonymization, etc). In this study, we present a security mechanism based on the analysis of blockchain network traffic statistics (rather than ledger data) to detect malicious events, through the functions of data collection and anomaly detection. The data collection engine senses the underlying blockchain traffic and generates multi-dimensional data streams in a periodic, real-time manner. The anomaly detection engine then detects anomalies from the created data instances based on semi-supervised learning, which is capable of detecting previously unseen patterns, and we introduce our profiling-based detection engine implemented on top of AutoEncoder (AE). Our experimental results evaluated with real and simulated traffic data support the effectiveness of our security mechanism and design choices based on the AE structure, with the approximate detection performance to the supervised learning methods only through the profiling of normal instances. The measured time complexity is sufficiently cheap to perform real-time analysis, with less than 1.4 msec for per-instance testing on a single core setting.

computer science, information systems

Qi Liang,Ning Shi,Yu-an Tan,Chunying Li,Chen Liang

DOI: https://doi.org/10.3390/electronics13132523

IF: 2.9

2024-06-27

Electronics

Abstract:With the widespread adoption of blockchain technology, its public ledger characteristic enhances transaction transparency but also amplifies the risk of privacy breaches. Attackers can infer users' real identities and behaviors by analyzing public transaction patterns and address relationships, posing a severe threat to users' privacy and security, and thus hindering further advancements in blockchain applications. To address this challenge, covert communication has emerged as an effective strategy for safeguarding the privacy of blockchain users and preventing information leakage. But existing blockchain-based covert communication schemes rely solely on the immutability of blockchain itself for robustness and suffer from low transmission efficiency. To tackle these issues, this paper proposes a stealthy communication model with blockchain smart contract for bidding systems. The model initiates by preprocessing sensitive information using a secret-sharing algorithm-the Shamir (t, n) threshold scheme-and subsequently embeds this information into bidding amounts, facilitating the covert transfer of sensitive data. We implemented and deployed this model on the Ethereum platform and conducted comprehensive performance evaluations. To assess the stealthiness of our approach, we employed a suite of statistical tests including the CDF, the Kolmogorov–Smirnov test, Welch's t-test and K–L divergence. These analyses confirmed that amounts carrying concealed information were statistically indistinguishable from regular transactions, thus validating the effectiveness of our solution in maintaining the anonymity and confidentiality of information transmission within the blockchain ecosystem.

engineering, electrical & electronic,physics, applied,computer science, information systems

Teng Hu,Xiaolei Liu,Ting Chen,Xiaosong Zhang,Xiaoming Huang,Weina Niu,Jiazhong Lu,Kun Zhou,Yuan Liu

DOI: https://doi.org/10.1016/j.ipm.2020.102462

2021-03-01

Abstract:<p>Blockchain technology brings innovation to various industries. Ethereum is currently the second blockchain platform by market capitalization, it's also the largest smart contract blockchain platform. Smart contracts can simplify and accelerate the development of various applications, but they also bring some problems. For example, smart contracts are used to commit fraud, vulnerability contracts are deliberately developed to undermine fairness, and there are numerous duplicative contracts that waste performance with no actual purpose. In this paper, we propose a transaction-based classification and detection approach for Ethereum smart contract to address these issues. We collected over 10,000 smart contracts from Ethereum and focused on the data behavior generated by smart contracts and users. We identified four behavior patterns from the transactions by manual analysis, which can be used to distinguish the difference between different types of contracts. Then 14 basic features of a smart contract are constructed from these. To construct the experimental dataset, we propose a data slicing algorithm for slicing the collected smart contracts. After that, we use an LSTM network to train and test our datasets. The extensive experimental results show that our approach can distinguish different types of contracts and can be applied to anomaly detection and malicious contract identification with satisfactory precision, recall, and f1-score.</p>

computer science, information systems,information science & library science

Nasser Alsalami,Bingsheng Zhang

DOI: https://doi.org/10.1109/iwqos49365.2020.9213064

2020-01-01

Abstract:Public blockchains can be abused to covertly store and disseminate potentially harmful digital content which poses a serious regulatory issue. In this work, we show the severity of the problem by demonstrating that blockchains can be exploited to surreptitiously distribute arbitrary content. More specifically, all major blockchain systems use randomized cryptographic primitives, such as digital signatures and non-interactive zero-knowledge proofs; we illustrate how the uncontrolled randomness in such primitives can be maliciously manipulated to enable covert communication and hidden persistent storage. To clarify the potential risk, we design, implement and evaluate our technique against the widely-used ECDSA signature scheme, the CryptoNote's ring signature scheme, and Monero's ring confidential transactions. Importantly, the significance of the demonstrated attacks stems from their undetectability, their adverse effect on the future of decentralized blockchains, and their serious repercussions on users' privacy and crypto funds. Finally, we present a generic framework to immunize blockchains against these attacks.

Tong He,Shilong Zhang,Zisen Xu,Gaofei Ruan,Jin'ao Shang,Zian Luo,Xinyu Yang,Yang Liu

DOI: https://doi.org/10.1109/icnsc62968.2024.10759917

2024-01-01

Abstract:In the electricity-carbon blockchain trading system, with the rapid expansion of blockchain technology applications, intrusion events targeting blockchain nodes are becoming increasingly frequent, and security issues are becoming more prominent. The security situation of blockchain systems is increasingly complex and severe. To meet the requirements for real-time and accurate anomaly detection in the electricity-carbon blockchain trading system, this paper proposes an active-passive-combined anomaly detection method. This method comprises two parts: passive anomaly detection and active anomaly detection. Passive anomaly detection collects and analyzes blockchain nodes' network traffic and triggers active anomaly detection when passive anomaly detection identifies an anomaly. In contrast, active anomaly detection collects and evaluates log data from suspicious nodes. This framework can process and analyze large-scale network alerts and host logs under limited bandwidth. Experimental results on real blockchain nodes demonstrate the effectiveness of the proposed method.

Li Duan,Wei Wang,Chunhong Liu,Liu Yang,Wei Ni

DOI: https://doi.org/10.1109/TNSM.2023.3278311

2023-12-01

IEEE Transactions on Network and Service Management

Abstract:Digital assets involved in smart contracts are on the rise. Security vulnerabilities in smart contracts have resulted in significant losses for the blockchain community. Existing smart contract vulnerability detection techniques have been typically single-purposed and focused only on the source code or opcode of contracts. This paper presents a new smart contract vulnerability detection method, which extracts features from different levels of smart contracts to train machine learning models for effective detection of vulnerabilities. Specifically, we propose to extract 2-gram features from the opcodes of smart contracts and token features from the source code using a pre-trained CodeBERT model, thereby capturing the semantic information of smart contracts at different levels. The 2-gram and token features are separately aggregated and then fused and input into machine-learning models to mine the vulnerability features of contracts. Over 10,266 smart contracts are used to verify the proposed method. Widespread reentrancy, timestamp dependence, and transaction-ordering dependence vulnerabilities are considered. Experiments show the fused features can help significantly improve smart contract vulnerability detection compared to the single-level features. The detection accuracy is as high as 98%, 98% and 94% for the three vulnerabilities, respectively. The average detection time is 0.99 second per contract, indicating the proposed method is suitable for automatic batch detection of vulnerabilities in smart contracts.

Computer Science

Zhiqiang Zhao,Yining Liu,Zhixin Zeng,Zhixiong Chen,Huiyu Zhou

DOI: https://doi.org/10.1109/TSG.2023.3246459

2023-02-25

Abstract:In most electricity theft detection schemes, consumers' power consumption data is directly input into the detection center. Although it is valid in detecting the theft of consumers, the privacy of all consumers is at risk unless the detection center is assumed to be trusted. In fact, it is impractical. Moreover, existing schemes may result in some security problems, such as the collusion attack due to the presence of a trusted third party, and malicious data tampering caused by the system operator (SO) being attacked. Aiming at the problems above, we propose a blockchain-based privacy-preserving electricity theft detection scheme without a third party. Specifically, the proposed scheme uses an improved functional encryption scheme to enable electricity theft detection and load monitoring while preserving consumers' privacy; distributed storage of consumers' data with blockchain to resolve security problems such as data tampering, etc. Meanwhile, we build a long short-term memory network (LSTM) model to perform higher accuracy for electricity theft detection. The proposed scheme is evaluated in a real environment, and the results show that it is more accurate in electricity theft detection within acceptable communication and computational overhead. Our system analysis demonstrates that the proposed scheme can resist various security attacks and preserve consumers' privacy.

Cryptography and Security

Rexford Nii Ayitey Sosu,Jinfu Chen,Edward Kwadwo Boahen,Zikang Zhang

DOI: https://doi.org/10.1049/2023/6631967

2023-12-29

IET Software

Abstract:Smart contracts have gained immense popularity in recent years as self-executing programs that operate on a blockchain. However, they are not immune to security flaws, which can result in significant financial losses. These flaws can be detected using dynamic analysis methods that extract various aspects from smart contract bytecode. Methods currently used for identifying vulnerabilities in smart contracts mostly rely on static analysis methods that search for predefined vulnerability patterns. However, these patterns often fail to capture complex vulnerabilities, leading to a high rate of false negatives. To overcome this limitation, researchers have explored machine learning-based methods. However, the accurate interpretation of complex logic and structural information in smart contract code remains a challenge. In this study, we present a technique that combines real-time runtime batch normalization and data augmentation for data preprocessing, along with n-grams and one-hot encoding for feature extraction of opcode sequence information from the bytecode. We then combined bidirectional long short-term memory (BiLSTM), convolutional neural network, and the attention mechanism for vulnerability detection and classification. Additionally, our model includes a gated recurrent units memory module that enhances efficiency using historical execution data from the contract. Our results demonstrate that our proposed model effectively identifies smart contract vulnerabilities.

computer science, software engineering

Natan Katz

2024-08-16

Abstract:Smart contracts are a major tool in Ethereum transactions. Therefore hackers can exploit them by adding code vulnerabilities to their sources and using these vulnerabilities for performing malicious transactions. This paper presents two successful approaches for detecting malicious contracts: one uses opcode and relies on GPT2 and the other uses the Solidity source and a LORA fine-tuned CodeLlama. Finally, we present an XGBOOST model that combines gas properties and Hexa-decimal signatures for detecting malicious transactions. This approach relies on early assumptions that maliciousness is manifested by the uncommon usage of the contracts' functions and the effort to pursue the transaction.

Cryptography and Security,Machine Learning

Yeajun Kang,Wonwoong Kim,Hyunji Kim,Minwoo Lee,Minho Song,Hwajeong Seo

DOI: https://doi.org/10.3390/electronics12183893

IF: 2.9

2023-09-16

Electronics

Abstract:A smart contract is a digital contract on a blockchain. Through smart contracts, transactions between parties are possible without a third party on the blockchain network. However, there are malicious contracts, such as greedy contracts, which can cause enormous damage to users and blockchain networks. Therefore, countermeasures against this problem are required. In this work, we propose a greedy contract detection system based on deep learning. The detection model is trained through the frequency of opcodes in the smart contract. Additionally, we implement Gredeeptector, a lightweight model for deployment on the IoT. We identify important instructions for detection through explainable artificial intelligence (XAI). After that, we train the Greedeeptector through only important instructions. Therefore, Greedeeptector is a computationally and memory-efficient detection model for the IoT. Through our approach, we achieve a high detection accuracy of 92.3%. In addition, the file size of the lightweight model is reduced by 41.5% compared to the base model and there is little loss of accuracy.

engineering, electrical & electronic,computer science, information systems,physics, applied

Zhenan Wu,Han Zheng,Lan Zhang,Xiang-Yang Li

DOI: https://doi.org/10.1109/bigcom.2019.00040

2019-01-01

Abstract:Data trading has become a promising way to bridge numerous data islands and benefit a wide range of data driven applications. However, due to the high risk of data privacy, the easy-to-copy feature of data, and potential malicious behaviors of users, there still lacks data trading solutions to provide privacy protection, copyright/ownership protection and auditability of user behaviors. In this work, we propose a blockchain and smart contract based framework to keep tamper-proof records of data trading transactions, which also preserves users' identity, behavior and data privacy. Data fingerprint is introduced to track data and protect data ownership. A set of protocols are also designed to prevent dishonest behaviors and ensure the security of data trading.

Xiaobing Dai,Jiajing Liu,Xin Liu,Xiaofen Tu,Ruexue Wang

DOI: https://doi.org/10.1016/j.hcc.2024.100201

2024-01-01

High-Confidence Computing

Abstract:In recent years, with the development of blockchain, electronic bidding auction has received more and more attention. Aiming at the possible problems of privacy leakage in the current electronic bidding and auction, this paper proposes an electronic bidding auction system based on blockchain against malicious adversaries, which uses the secure multi-party computation to realize secure bidding auction protocol without any trusted third party. The protocol proposed in this paper is an electronic bidding auction scheme based on the threshold elliptic curve cryptography. It can be implemented without any third party to complete the bidding auction for some malicious behaviors of the participants, which can solve the problem of resisting malicious adversary attacks. The security of the protocol is proved by the real/ideal model paradigm, and the efficiency of the protocol is analyzed. The efficiency of the protocol is verified by simulating experiments, and the protocol has practical value.

Wei Liang,Lijun Xiao,Ke Zhang,Mingdong Tang,Dacheng He,Kuan-Ching Li

DOI: https://doi.org/10.1109/jiot.2021.3053842

IF: 10.6

2021-01-01

IEEE Internet of Things Journal

Abstract:Blockchain technology is rapidly changing the transaction behavior and efficiency of businesses in recent years. Data privacy and system reliability are critical issues that is highly required to be addressed in Blockchain environments. However, anomaly intrusion poses a significant threat to a Blockchain, and therefore, it is proposed in this article a collaborative clustering-characteristic-based data fusion approach for intrusion detection in a Blockchain-based system, where a mathematical model of data fusion is designed and an AI model is used to train and analyze data clusters in Blockchain networks. The abnormal characteristics in a Blockchain data set are identified, a weighted combination is carried out, and the weighted coefficients among several nodes are obtained after multiple rounds of mutual competition among clustering nodes. When the weighted coefficient and a similarity matching relationship follow a standard pattern, an abnormal intrusion behavior is accurately and collaboratively detected. Experimental results show that the proposed algorithm has high recognition accuracy and promising performance in the real-time detection of attacks in a Blockchain.

computer science, information systems,telecommunications,engineering, electrical & electronic

Joerg Osterrieder,Stephen Chan,Jeffrey Chu,Yuanyuan Zhang,Branka Hadji Misheva,Codruta Mare

2024-02-17

Abstract:Blockchain technology, a foundational distributed ledger system, enables secure and transparent multi-party transactions. Despite its advantages, blockchain networks are susceptible to anomalies and frauds, posing significant risks to their integrity and security. This paper offers a detailed examination of blockchain's key definitions and properties, alongside a thorough analysis of the various anomalies and frauds that undermine these networks. It describes an array of detection and prevention strategies, encompassing statistical and machine learning methods, game-theoretic solutions, digital forensics, reputation-based systems, and comprehensive risk assessment techniques. Through case studies, we explore practical applications of anomaly and fraud detection in blockchain networks, extracting valuable insights and implications for both current practice and future research. Moreover, we spotlight emerging trends and challenges within the field, proposing directions for future investigation and technological development. Aimed at both practitioners and researchers, this paper seeks to provide a technical, in-depth overview of anomaly and fraud detection within blockchain networks, marking a significant step forward in the search for enhanced network security and reliability.

Cryptography and Security,General Finance

Raman Wang,Zhaokang Zhang,Yiran Wang,Yin Zhang

DOI: https://doi.org/10.1109/msn60784.2023.00100

2023-01-01

Abstract:Due to the lack of centralized regulatory authorities, the cryptocurrency trading market has witnessed an increase in illicit activities. Recently, more and more researchers have started exploring the application of machine learning techniques to achieve anomaly detection in these transaction networks. However, in this transaction network, it’s hard to find the abnormal nodes because the labeling cost is high, without enough labeled and imbalanced data, which greatly limits the performance of the detection model. Therefore, this paper proposes a Minimal Substitution-based Label Propagation (MSLP) model to provide more labeled data to balance the graph data and complement the sample for downstream anomalous transaction detection in the blockchain networks. Specifically, MSLP is the first method that utilizes the minimal substitution theory from the social computing field to find more minority nodes from the unlabeled nodes. This approach has the potential to obtain more high-quality labeled data with minimal computational cost by utilizing a small amount of labeled graph data. Then, a label evaluation mechanism is proposed to decide the number of samples to be adopted for each class, ensuring the performance of downstream graph neural networks. Finally, extensive experiments were conducted and the proposed model improve the F1 score of illegal transaction node identification by 2.6% to 8.2%.

Weichu Deng,Huanchun Wei,Teng Huang,Cong Cao,Yun Peng,Xuan Hu

DOI: https://doi.org/10.3390/s23167246

IF: 3.9

2023-08-19

Sensors

Abstract:With the rapid development and widespread application of blockchain technology in recent years, smart contracts running on blockchains often face security vulnerability problems, resulting in significant economic losses. Unlike traditional programs, smart contracts cannot be modified once deployed, and vulnerabilities cannot be remedied. Therefore, the vulnerability detection of smart contracts has become a research focus. Most existing vulnerability detection methods are based on rules defined by experts, which are inefficient and have poor scalability. Although there have been studies using machine learning methods to extract contract features for vulnerability detection, the features considered are singular, and it is impossible to fully utilize smart contract information. In order to overcome the limitations of existing methods, this paper proposes a smart contract vulnerability detection method based on deep learning and multimodal decision fusion. This method also considers the code semantics and control structure information of smart contracts. It integrates the source code, operation code, and control-flow modes through the multimodal decision fusion method. The deep learning method extracts five features used to represent contracts and achieves high accuracy and recall rates. The experimental results show that the detection accuracy of our method for arithmetic vulnerability, re-entrant vulnerability, transaction order dependence, and Ethernet locking vulnerability can reach 91.6%, 90.9%, 94.8%, and 89.5%, respectively, and the detected AUC values can reach 0.834, 0.852, 0.886, and 0.825, respectively. This shows that our method has a good vulnerability detection effect. Furthermore, ablation experiments show that the multimodal decision fusion method contributes significantly to the fusion of different modalities.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Darius GaliŞ,Ciprian PungilĂ,Viorel Negru

DOI: https://doi.org/10.1093/jigpal/jzae016

2024-03-19

Abstract:Abstract This paper proposes an innovative approach to achieving real-time polymorphic behavior detection, and its direct application to blockchain-focused smart-contracts. We devise a method based on a non-deterministic finite state machine to perform approximate pattern-matching, using a look-ahead mechanism implemented through a concept similar to that of a sliding window, and using threshold-based similarity checking at every state in the automaton. We introduce and formalize our approach, discuss the challenges we faced and then test it in a real-world environment. The experimental results obtained showed a significant speed-up of our approach, as compared to the classic similarity measures used commonly in such scenarios.

mathematics, applied,logic

Jiliang Li,Yuheng Wang,Yuan Su,Zhou Su,Yuyi Wang,Weizhi Meng,Yinghua Shen

DOI: https://doi.org/10.1016/j.ins.2023.119742

IF: 8.1

2023-01-01

Information Sciences

Abstract:Due to the nature of decentralization, blockchain-based applications are gradually adopted by more and more systems in different fields to replace centralized third-party agencies. Many applications, like blockchain oracles, rely on on-chain transactions to deliver information that is used to make final decisions. There have been many methods proposed to guarantee the correctness of the final results, and most of them are in terms of the management of information providers and the application's design. However, to our notice, only a few works have discussed the security threat caused by rational mining pools that are responsible for packing transactions and information into blocks and uploading them to the blockchain. Therefore in this paper, we propose a possible delayed packing attack carried out by rational mining pools against these transaction information based applications. Game theory analysis is conducted to obtain the Nash equilibrium strategy, and the price of anarchy is calculated to depict the success probability of such an attack under different circumstances. In addition, we design a countermeasure protocol based on cryptography tools to defend against the delayed packing attack. Finally, we carry out a thorough security analysis as well as corresponding experiments to prove the security and feasibility of our countermeasure.

Shuhao Zheng,Yanxi Lin,Yang Yu,Ye Yuan,Yongzheng Jia,Xue Liu

DOI: https://doi.org/10.48550/arxiv.2209.11451

2022-01-01

Abstract:Data markets enable users to own their data and trade their data for profits. Existing data market designs allow these data owners to directly sell or provide computation services on their private data in a secure and privacy-preserving way. However, an important problem that is neglected in previous work is that the transferred data or computation results over the data can leak information about other sensitive features that are not involved in the data market. To tackle this problem, we propose an auditing system based on smart contracts and zero-knowledge proof to measure and manage the sensitive information leakage risk in Web3 data markets. Primary results on the information leakage estimation show that even a small percent of information leakage can lead to significant predictability by simple machine learning models.