introduction to smart contract security
play

Introduction to Smart Contract Security Yajin Zhou - PowerPoint PPT Presentation

Oct 20, 2023 •473 likes •1.15k views

Introduction to Smart Contract Security Yajin Zhou (http://yajin.org) Zhejiang University Credits: Campbell R. Harvey, Ashwin Ramachandran, Brent Xu, Anastasia Mavridou, Aron Laszka, KC Tam About Me Professor at Zhejiang University since 2018,

  1. Introduction to Smart Contract Security Yajin Zhou (http://yajin.org) Zhejiang University Credits: Campbell R. Harvey, Ashwin Ramachandran, Brent Xu, Anastasia Mavridou, Aron Laszka, KC Tam

  2. About Me Professor at Zhejiang University since 2018, earned my PhD from NC • State (2015) Published 10 papers in top 4 system security conferences (USENIX • Security, CCS, NDSS and Oakland), with 5700+ citations (Google Scholar). Four best paper awards, including IEEE EuroS&P 2019 • Identify real-world threats (how to hack) and build practical solutions • (how to defend), in the context of software security of embedded systems (firmware) Also interested in emerging threats, e.g., security of smart contracts • http://yajin.org •

  3. Agenda Ethereum • Accounts • Transactions • Smart contracts • EVM • How to deploy a smart contract • How to invoke functions inside a smart contract • Security of smart contracts in real world •

  4. Ethereum

  5. Ethereum It’s more than cryptocurrency. Pic: https://www.ethereum.org/

  6. Basic Concepts Ethereum node • Ethereum • Accounts (Two types) and Wallets • Transactions • Smart Contracts • Solidity: Language used for smart contract development •

  7. Ethereum Node Full node: Validate all transactions and new blocks • Operate in a P2P fashion • Each contains a copy of the entire Blockchain • Light clients - store only block headers • Provide easy verification through tree data structure • Don’t execute transactions, used primarily for balance validation • Implemented in a variety of languages (Go, Rust, etc.) •

  8. Accounts and Wallets Accounts: • Two Kinds: • External Owned Accounts - ( EOA ): owned by person • Contract Accounts: owned by code • Allow for interaction with the blockchain • Wallets: • A set of one or more external accounts • Used to store/transfer Ether •

  9. Accounts and Wallets External Account (EOA, Valid Ethereum Address) • Consist of a public/private key-pair • Can have a balance • Has an associated nonce (amount of transactions sent from the • account) and a balance codeHash - Hash of associated account code, i.e. a computer • program for a smart contract (hash of an empty string for external accounts, EOAs)

  10. Accounts and Wallets Contract Account: Ethereum account that can store and • execute code Has an associated nonce and balance • codeHash - hash of associated account code • storageRoot contains Merkle tree of associated storage data •

  11. Examples

  12. Transactions A request to modify the state of the blockchain • Can run code (contracts) which changes global state • (storage) Launched by an EOA (external transaction) or Contract account • (internal transaction) Types • Fund transfer between EOAs • Deploy a contract on Ethereum network (discuss later) • Execute a function on a deployed contract (discuss later) •

  13. Transactions: Fund Transfer Between EOA https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

  14. Transactions: Fund Transfer Between EOA A real example • https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

  15. Smart Contracts Function like an external account • Hold funds • Can interact with other accounts and sm sm art contracts • Contain code • Can be called through transactions •

  16. Code Execution Every Ethereum node contains a virtual machine (similar to Java) • Called the Ethereum Virtual Machine (EVM) • Compiles code from high-level language to bytecode • Executes smart contract code and changes (and broadcasts) • global states Every ry full-node on the blockchain processes every transaction • and stores the entire state What’s the problem here: cons nsumes mes reso sour urces ces bu but ge gets s nothin hing! •

  17. Gas Halting problem (infinite loop - consume resources) – reason for • Gas Problem: Cannot tell whether or not a program will run infinitely • from compiled code - why? Solution: charge fee per computational step to limit infinite loops • and stop flawed code from executing Every transaction needs to specify an estimate of the amount of • gas it will spend - gas Limit Essentially a measure of how much one is willing to spend on a • transaction, even if buggy

  18. Gas Cost Gas Price : current market price of a unit of Gas (in Wei) • Check gas price here: https://ethgasstation.info/ • Is always set before a transaction by user • Gas Limit : maximum amount of Gas user is willing to spend • Gas Cost (used when sending transactions) is calculated by gas used*gasPrice • Gas used • normal l transact action ion - 21,000 • smart contracts: depends on resources consumed - instructions executed and • storage used What if gas limit < gas cost? •

  19. Gas Cost Quick quiz: who will get the transaction fee?

  20. A Normal Transaction Gas Limit: Maximum amount of gas that a user will pay for this transaction. The default amount for a standard ETH transfer is 21,000 gas Gas Used by Txn : Actual amount of gas used to execute the transaction. Since this is a standard transfer, the gas used is also 21,000 Gas Price: Amount of ETH a user is prepared to pay for each unit of gas. The user chose to pay 8 Gwei for every gas unit, which is considered a “high priority” transaction and would be executed very fast.

  21. Eth Gas Station

  22. Miner Miner is responsible for creating new blocks and packing • transactions They are rewarded by the network, and transaction fee • They tend to pack the transactions with high gher er transactio action n fee • What’s the problem here? • Suppos ose e we have e an app. . The winner er is the last player er who sends • the money ey to the app. . An An attac acker ker could ld send multiple tiple transaction actions with high gh ga gas price to bribe the miner er and prevent nt it fr from m pa packing ing trans nsac actions tions fr from m othe her r ga game pl player ers s – win the ga game

  23. Smart Contract

  24. Smart contracts are widely used Voting systems • Cryptocurrencies • Gaming • Lottery • … •

  25. EVM: Ethereum Virtual Machine “Accounts” have code and storage • Send each other “messages” (transactions) • “Contracts” receive messages -> run code (function call) • Stack-based language: 56 opcodes, arithmetic, boolean, control • flow, crypto New: gas , create , suicide •

  26. Ethereum Virtual Machine Stack based: Rather than relying on registers, any operation • will be entirely contained within the stack . Operands, operators, and function calls all get placed on the stack, and the EVM understands how act on that data and make the smart contract execute. Example: if we want to perform 2 + 2, then we could just as easily • represent this as 2 2 +, which is Postfix + 2 2 stack

  27. How to Program a smart contract Contract bytecode solc --bin SimpleStorage.sol solc --bin-runtime SimpleStorage.sol Runtime bytecode

  28. Bytecode vs. Runtime Bytecode The contract bytecode is the bytecode of what will actually end up • sitting on the blockchain PLUS the bytecode needed for the transaction of placing that bytecode on the blockchain, and initia tializing lizing the sm smart t contrac tract t (running the constructor). The runtime bytecode , on the other hand, is just the bytecode that • ends up sitting on the blockchain. This does not include the bytecode needed to initialize the contract and place it on the blockchain.

  29. Bytecode vs. Runtime Bytecode

  30. https://ethervm.io/decompile •

  31. Deploy a Contract on Ethereum Network https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

  32. https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

  33. https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

  34. https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

  35. Deploy Smart Contracts In the transaction, the e ‘ to to ’ fiel eld is left empty (‘0x0’ is shown). • In the input, we only place the bytecode. It is because our contract does • not have a constructor that requires arguments. If arguments are needed in constructor, they are encoded according to the type and appended after the bytecode. The Contract address is found in Transaction Receipt . • The default Gas Limit (gas) is 90,000 gas. If you do not specify the gas, you • will encounter “out of gas” as it takes more than 90,000 gas for processing this transaction. Therefore we specify 200,000 gas for this transaction. It turns out the transaction processing only takes 112,213 gas. The remain • is returned to transaction sender. https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

  36. Execute a Function on a Deployed Contract https://medium.com/@kctheservant/transactions-in-ethereum-e85a73068f74

Recommend

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou

Smart Contract Security Assessing Solidity smart contracts About Me Evangelos Deirmentzoglou Security Consultant Smart contract audits Nmap/Ncrack contributor Certs: OSCE, OSCP, OSWP Blockchain Basics Front Running

642 views • 30 slides
Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract

Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract

Smart Contract Security Florian Tramr Nicolas Kokkalis Agenda Smart Contract Verification Why? More examples of bugs! How? Beyond bugs in code: networks, miners and incentives Attacks by miners: reorder, delay,

405 views • 24 slides
WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean?

WORLDS MOST ADVANCED DECENTRALIZED MATRIX SMART CONTRACT Decentralization What does it mean? What does Decentralization mean? Decentralized Marketing is formed on a smart contract that provides complete security and resilience. A Smart

766 views • 14 slides
Not Your Grandmas Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur

Not Your Grandmas Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur

Not Your Grandmas Smart Contract Verification Florian Hubert Dana Drachsler- Andrei Arthur Quentin Petar Martin Buenzli Ritzdorf Cohen Dan Gervais Hibon Tsankov Vechev http://blockchainsecurity.ethz.ch Smart Contract Security

641 views • 19 slides
Security-by-Contract for Applications Evolution in Multi-Application Smart Cards Nicola

Security-by-Contract for Applications Evolution in Multi-Application Smart Cards Nicola

DTU Informatics Department of Informatics and Mathematical Modelling Security-by-Contract for Applications Evolution in Multi-Application Smart Cards Nicola Dragoni ndra@imm.dtu.dk http://www2.imm.dtu.dk/~ndra Embedded Systems Engineering

475 views • 35 slides
Making smart contract smarter Loi Luu, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, Aquinas Hobor

Making smart contract smarter Loi Luu, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, Aquinas Hobor

Making smart contract smarter Loi Luu, Duc-Hiep Chu, Hrishi Olickel, Prateek Saxena, Aquinas Hobor &lt;EE817/IS893: Blockchain and Cryptocurrency&gt; Presented by Daejun Kim (2019. 05) Index Background Introduction Security bugs in

1.39k views • 85 slides
Supporting Software Evolution for Open Smart Cards by Security-by-Contract Olga Gadyatskaya*

Supporting Software Evolution for Open Smart Cards by Security-by-Contract Olga Gadyatskaya*

Supporting Software Evolution for Open Smart Cards by Security-by-Contract Olga Gadyatskaya* Joint work with F. Massacci*, N. Dragoni + , E. Lostal* *University of Trento (Italy) + Technical University of Denmark (Denmark) NODES Winter School,

355 views • 24 slides
COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract

COL 4.0 BITCOIN, BLOCKCHAIN, AND BEYOND! followed by ERC20 Ethereum Smart Contract Demo/Walkthrough OVERVIEW What is a Blockchain? Bitcoin. Blockchain design considerations. Smart contract. ERC-20 Ethereum Smart Contract demonstration.

549 views • 26 slides
Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content

Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content

Smart Contract Dispute Resolution blockchain, law, blockchainlaw? 14 September, Bern Content Legal Tech What is a Smart Contract? The need for Smart Contract Dispute Resolution? How Smart Contract Dispute Resolution works Automated

868 views • 40 slides
Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dana Martin Petar

Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dana Martin Petar

Securify: Practical Security Analysis of Smart Contracts https://securify.ch Dana Martin Petar Andrei Arthur Florian Drachsler- Vechev Tsankov Dan Gervais Bnzli Cohen Grant: Startup: What is a smart contract? mapping(address

518 views • 35 slides
Think like a Hacker Not So Smart Phone security Introduction Peter Rietveld Liviu

Think like a Hacker Not So Smart Phone security Introduction Peter Rietveld Liviu

Partners in Information Security Think like a Hacker Not So Smart Phone security Introduction Peter Rietveld Liviu Rombaut Traxion Smartphones will never be secure Since security is not a simple notion What &amp; Whom

331 views • 18 slides
Declarative Static Analysis of Smart Contracts securify.ch Quentin Hibon Blockchain Security

Declarative Static Analysis of Smart Contracts securify.ch Quentin Hibon Blockchain Security

Declarative Static Analysis of Smart Contracts securify.ch Quentin Hibon Blockchain Security Engineer, ChainSecurity Smart Contract Bugs in the News Low-level Code High-level languages Solidity Vyper compilation Low-level code

306 views • 28 slides
Ontology Aided Smart Contract Execution for Unexpected Situations Farhad Mohsin, Xingjian Zhao,

Ontology Aided Smart Contract Execution for Unexpected Situations Farhad Mohsin, Xingjian Zhao,

Ontology Aided Smart Contract Execution for Unexpected Situations Farhad Mohsin, Xingjian Zhao, Zhuo (Robin) Hong, Geeth de Mel, Lirong Xia, and Oshani Seneviratne Blockchain and Smart Contract Blockchain enables trustworthy data sharing

478 views • 14 slides
Finance Prof. Dr. Mohamad Akram Laldin Executive Director, ISRA Introduction What is

Finance Prof. Dr. Mohamad Akram Laldin Executive Director, ISRA Introduction What is

Fintech and Smart Contract: Opportunities in Islamic Finance Prof. Dr. Mohamad Akram Laldin Executive Director, ISRA Introduction What is Fintech? What is Blockchain &amp; Smart Contract? Why does this matter &amp; How it

486 views • 24 slides
LikeStarter: a Smart-contract based Social DAO for Crowdfunding Mirko Zichichi , Michele Contu,

LikeStarter: a Smart-contract based Social DAO for Crowdfunding Mirko Zichichi , Michele Contu,

LikeStarter: a Smart-contract based Social DAO for Crowdfunding Mirko Zichichi , Michele Contu, Stefano Ferretti, Gabriele DAngelo Outline Introduction | Crowdfunding and DAO LikeStarter Mechanisms | Users | Likes | Shares and

349 views • 21 slides
Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of

Cyber Security in Smart Grids EE 772 : Smart Grids Prof. S. A. Khaparde Indian Institute of Technology Bombay Introduction to Cyber-Physical Systems - Communication between physical devices through a cyber layer - Sensors and Actuators

893 views • 53 slides
Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela E.Fourneret J.Jurjens P. Yousefi ARES 2011 OUTLINE Introduction Background UMLsec Model-based Testing Security in smart-card

356 views • 17 slides
IoT SECURITY Enabling Trust and Digital Future LIM SOON CHIA DIR(TECHNOLOGY) CYBER SECURITY

IoT SECURITY Enabling Trust and Digital Future LIM SOON CHIA DIR(TECHNOLOGY) CYBER SECURITY

IoT SECURITY Enabling Trust and Digital Future LIM SOON CHIA DIR(TECHNOLOGY) CYBER SECURITY AGENCY 1 of 14 The Great Digital Convergence Smart Mobility Smart Payment Smart Health 3 of 17 Office Smart Mobility MRT Station Bus Stop

577 views • 14 slides
Security Analysis of Emerging Smart Home Applications Earlence Fernandes, Jaeyeon Jung, Atul

Security Analysis of Emerging Smart Home Applications Earlence Fernandes, Jaeyeon Jung, Atul

Security Analysis of Emerging Smart Home Applications Earlence Fernandes, Jaeyeon Jung, Atul Prakash IEEE Security and Privacy 24 May 2016 Smart Door Locks CO Sensors Connected Ovens Smart Plugs IP Cameras Emerging Smart Home Frameworks

502 views • 35 slides
Smart Contracts September 23, 2019 guha.jayachandran@sjsu.edu Whats a Contract? Whats a

Smart Contracts September 23, 2019 guha.jayachandran@sjsu.edu Whats a Contract? Whats a

Smart Contracts September 23, 2019 guha.jayachandran@sjsu.edu Whats a Contract? Whats a Contract? A legally binding agreement which recognizes and governs the rights and duties of the parties to the agreement Pacta sunt servanda

511 views • 27 slides
Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] .

Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] .

Enter Hydra towards (more) secure smart contracts Philip Daian, Ari Juels Cornell [Tech] . Lorenz Breidenbach ETH Zurich, Cornell [Tech] . Florian Tramer . Stanford . Smart Contract Security - The Prongs Formal Verification (+Specification)

960 views • 28 slides
Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security

Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security

Announcements This Thursday: Last lecture! Special Lecture on Smart Transportation Security Recent advance in security issues of self-driving cars and smart traffic light --- one of the most disruptive tech today, impacting the safety

518 views • 29 slides
ON THE FEASIBILITY OF DECENTRALIZED DERIVATIVE MARKETS 1st Workshop on Trusted Smart Contract

ON THE FEASIBILITY OF DECENTRALIZED DERIVATIVE MARKETS 1st Workshop on Trusted Smart Contract

SHAYAN ESKANDARI, JEREMY CLARK, VIGNESH SUNDARESAN, MOE ADHAM ON THE FEASIBILITY OF DECENTRALIZED DERIVATIVE MARKETS 1st Workshop on Trusted Smart Contract In Association with Financial Cryptography 17 Malta - April 07, 2017 ON THE

502 views • 19 slides
1 100% decentralized The best Smart Contract in the market Peer to peer system Commissions paid

1 100% decentralized The best Smart Contract in the market Peer to peer system Commissions paid

THE ONE OF A KIND YOU HAVE BEEN WAITING FOR! The fastest and easiest way to earn over 2million TRON (TRX) https://t.me/x3mTRON https://youtu.be/2XaqD4ev-eg X3mtron.com 1 100% decentralized The best Smart Contract in the market Peer to peer

262 views • 10 slides

More recommend