English

Characterizing Code Clones in the Ethereum Smart Contract Ecosystem

Cryptography and Security 2019-05-02 v1

Abstract

In this paper, we present the first large-scale and systematic study to characterize the code reuse practice in the Ethereum smart contract ecosystem. We first performed a detailed similarity comparison study on a dataset of 10 million contracts we had harvested, and then we further conducted a qualitative analysis to characterize the diversity of the ecosystem, understand the correlation between code reuse and vulnerabilities, and detect the plagiarist DApps. Our analysis revealed that over 96% of the contracts had duplicates, while a large number of them were similar, which suggests that the ecosystem is highly homogeneous. Our results also suggested that roughly 9.7% of the similar contract pairs have exactly the same vulnerabilities, which we assume were introduced by code clones. In addition, we identified 41 DApps clusters, involving 73 plagiarized DApps which had caused huge financial loss to the original creators, accounting for 1/3 of the original market volume.

Keywords

Cite

@article{arxiv.1905.00272,
  title  = {Characterizing Code Clones in the Ethereum Smart Contract Ecosystem},
  author = {Ningyu He and Lei Wu and Haoyu Wang and Yao Guo and Xuxian Jiang},
  journal= {arXiv preprint arXiv:1905.00272},
  year   = {2019}
}

Comments

20 pages, 9 figures

R2 v1 2026-06-23T08:54:13.235Z