Sereum - Protecting Existing Smart Contracts Against Re-Entrancy Attacks - Invited Talk

Autor(en):

Davi, Lucas

Name der Veranstaltung:

CODE Colloquium 2019

Ort:

Universität der Bundeswehr München

Datum:

13.03.2019

Abstract

Recently, a number of existing blockchain systems have witnessed major bugs and vulnerabilities within smart contracts. Although the literature features a number of proposals for securing smart contracts, these proposals mostly focus on proving the correctness or absence of a certain type of vulnerability within a contract, but cannot protect deployed (legacy) contracts from being exploited. In this talk, we present Sereum (Secure Ethereum) which protects deployed contracts in a backwards compatible way based on run-time monitoring and validation. We also study new re-entrancy attack patterns that have been overlooked by previous on smart contract bug detection.