Machine Learning Model for Smart Contracts Security Analysis

被引:38
|
作者
Momeni, Pouyan [1 ]
Wang, Yu [1 ]
Samavi, Reza [1 ]
机构
[1] McMaster Univ, Hamilton, ON, Canada
来源
2019 17TH INTERNATIONAL CONFERENCE ON PRIVACY, SECURITY AND TRUST (PST) | 2019年
基金
加拿大自然科学与工程研究理事会;
关键词
blockchain; smart contract; security vulnerability; machine learning; code analysis; software testing;
D O I
10.1109/pst47121.2019.8949045
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
In this paper, we introduce a machine learning predictive model that detects patterns of security vulnerabilities in smart contracts. We adapted two static code analyzers to label more than 1000 smart contracts that were verified and used on the Ethereum platform. Our model predicted a number of major software vulnerabilities with the average accuracy of 95 percent. The model currently supports smart contracts developed in Solidity, however, the approach described in this paper can be applied to other languages and blockchain platforms.
引用
收藏
页码:272 / 277
页数:6
相关论文
共 50 条
  • [1] Modelling And Simulation For Detecting Vulnerabilities And Security Threats Of Smart Contracts Using Machine Learning
    Mughaid, Ala
    Obeidat, Ibrahim
    Shdaifat, Andaleeb
    Alhayjna, Razan
    AlZu'bi, Shadi
    [J]. 2023 EIGHTH INTERNATIONAL CONFERENCE ON FOG AND MOBILE EDGE COMPUTING, FMEC, 2023, : 123 - 127
  • [2] EOSAFE: Security Analysis of EOSIO Smart Contracts
    He, Ningyu
    Zhang, Ruiyi
    Wang, Haoyu
    Wu, Lei
    Luo, Xiapu
    Guo, Yao
    Yu, Ting
    Jiang, Xuxian
    [J]. PROCEEDINGS OF THE 30TH USENIX SECURITY SYMPOSIUM, 2021, : 1271 - 1288
  • [3] Panda: Security Analysis of Algorand Smart Contracts
    Sun, Zhiyuan
    Luo, Xiapu
    Zhang, Yinqian
    [J]. PROCEEDINGS OF THE 32ND USENIX SECURITY SYMPOSIUM, 2023, : 1811 - 1828
  • [4] SECURIFY: Practical Security Analysis of Smart Contracts
    Tsankov, Petar
    Dan, Andrei
    Drachsler-Cohen, Dana
    Gervais, Arthur
    Bunzli, Florian
    Vechev, Martin
    [J]. PROCEEDINGS OF THE 2018 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY (CCS'18), 2018, : 67 - 82
  • [5] An Extensive Security Analysis on Ethereum Smart Contracts
    Ashouri, Mohammadreza
    [J]. SECURITY AND PRIVACY IN COMMUNICATION NETWORKS, SECURECOMM 2021, PT I, 2021, 398 : 144 - 163
  • [6] HORSTIFY: Sound Security Analysis of Smart Contracts
    Holler, Sebastian
    Biewer, Sebastian
    Schneidewind, Clara
    [J]. 2023 IEEE 36TH COMPUTER SECURITY FOUNDATIONS SYMPOSIUM, CSF, 2023, : 245 - 260
  • [7] A Semantic Framework for the Security Analysis of Ethereum Smart Contracts
    Grishchenko, Ilya
    Maffei, Matteo
    Schneidewind, Clara
    [J]. PRINCIPLES OF SECURITY AND TRUST, POST 2018, 2018, 10804 : 243 - 269
  • [8] Machine Learning Based Security for Smart Cities
    Amaizu, Gabriel Chukwunonso
    Lee, Jae-Min
    Kim, Dong-Seong
    [J]. 2022 27TH ASIA PACIFIC CONFERENCE ON COMMUNICATIONS (APCC 2022): CREATING INNOVATIVE COMMUNICATION TECHNOLOGIES FOR POST-PANDEMIC ERA, 2022, : 572 - 573
  • [9] Security Smells in Smart Contracts
    Demir, Mehmet
    Alalfi, Manar
    Turetken, Ozgur
    Ferworn, Alexander
    [J]. 2019 COMPANION OF THE 19TH IEEE INTERNATIONAL CONFERENCE ON SOFTWARE QUALITY, RELIABILITY AND SECURITY (QRS-C 2019), 2019, : 442 - 449
  • [10] Dynamic Vulnerability Detection on Smart Contracts Using Machine Learning
    Eshghie, Mojtaba
    Artho, Cyrille
    Gurov, Dilian
    [J]. PROCEEDINGS OF EVALUATION AND ASSESSMENT IN SOFTWARE ENGINEERING (EASE 2021), 2021, : 305 - 312
12345