English
Related papers

Related papers: USCSA: Evolution-Aware Security Analysis for Proxy…

200 papers

Upgradeable smart contracts (USCs) have been widely adopted to enable modifying deployed smart contracts. While USCs bring great flexibility to developers, improper usage might introduce new security issues, potentially allowing attackers…

Cryptography and Security · Computer Science 2024-03-05 Xiaofan Li , Jin Yang , Jiaqi Chen , Yuzhe Tang , Xing Gao

Upgradable smart contracts play an important role in the decentralized application ecosystem, to support routine maintenance, security patching, and feature additions. In this paper, we conduct an empirical study on proxy-based upgradable…

Software Engineering · Computer Science 2024-06-11 Ye Liu , Shuo Li , Xiuheng Wu , Yi Li , Zhiyang Chen , David Lo

Smart contract upgrades are increasingly common due to their flexibility in modifying deployed contracts, such as fixing bugs or adding new functionalities. Meanwhile, upgrades compromise the immutability of contracts, introducing…

Cryptography and Security · Computer Science 2025-08-05 Dingding Wang , Jianting He , Siwei Wu , Yajin Zhou , Lei Wu , Cong Wang

In this work, we provide a comprehensive survey of smart contract upgradability patterns using proxies. A primary characteristic of smart contracts on the Ethereum blockchain is that they are immutable once implemented, no changes can be…

Cryptography and Security · Computer Science 2023-04-10 Sajad Meisami , William Edward Bodell

Context: Smart contracts are computerized self-executing contracts that contain clauses, which are enforced once certain conditions are met. Smart contracts are immutable by design and cannot be modified once deployed, which ensures…

Software Engineering · Computer Science 2023-04-14 Ilham Qasse , Mohammad Hamdaqa , Björn Þór Jónsson

With the rapid development of blockchain technology, smart contract security has become a critical challenge. Existing smart contract vulnerability detection methods face three main issues: (1) Insufficient quality of datasets, lacking…

Cryptography and Security · Computer Science 2024-11-12 Lei Yu , Shiqi Chen , Hang Yuan , Peng Wang , Zhirong Huang , Jingyuan Zhang , Chenjie Shen , Fengjun Zhang , Li Yang , Jiajia Ma

Smart contracts on blockchains are prone to diverse security vulnerabilities that can lead to significant financial losses due to their immutable nature. Existing detection approaches often lack flexibility across vulnerability types and…

Cryptography and Security · Computer Science 2026-05-06 Xing Zhang , Keyu Zhang , Taohong Zhu , Anbang Ruan

Smart contracts, known for their immutable nature to ensure trust via automated enforcement, have evolved to require upgradeability due to unforeseen vulnerabilities and the need for feature enhancements post-deployment. This contradiction…

Software Engineering · Computer Science 2024-07-02 Ilham Qasse , Mohammad Hamdaqa , Björn Þór Jónsson

Due to the inherent immutability of blockchain technology, smart contract updates require their deployment at new addresses rather than modifying existing ones, thus fragmenting version histories and creating critical blind spots for…

Software Engineering · Computer Science 2025-07-09 Fatou Ndiaye Mbodji , Vinny Adjibi , Moustapha Awwalou Diouf , Gervais Mendy , Kui Liu , Jacques Klein , Tegawende Bissyande

Smart contracts are essential to decentralized finance (DeFi) and blockchain ecosystems but are increasingly vulnerable to exploits due to coding errors and complex attack vectors. Traditional static analysis tools and existing…

Cryptography and Security · Computer Science 2025-02-20 Jun Kevin , Pujianto Yugopuspito

While smart contracts are foundational elements of blockchain applications, their inherent susceptibility to security vulnerabilities poses a significant challenge. Existing training datasets employed for vulnerability detection tools may…

Cryptography and Security · Computer Science 2024-10-31 Cuong Tran Manh , Hieu Dinh Vo

Smart contracts enable contract terms to be automatically executed and verified on the blockchain, and recent years have witnessed numerous applications of them in areas such as financial institutions and supply chains. The execution logic…

Software Engineering · Computer Science 2025-12-16 Lantian Li , Yuyu Chen , Jingwen Wu , Yue Pan , Zhongxing Yu

The immutability of smart contracts on blockchain platforms like Ethereum promotes security and trustworthiness but presents challenges for updates, bug fixes, or adding new features post-deployment. These limitations can lead to…

Software Engineering · Computer Science 2025-04-04 Ilham Qasse , Isra M. Ali , Nafisa Ahmed , Mohammad Hamdaqa , Björn Þór Jónsson

This paper introduces a method for detecting vulnerabilities in smart contracts using static analysis and a multi-objective optimization algorithm. We focus on four types of vulnerabilities: reentrancy, call stack overflow, integer…

Software Engineering · Computer Science 2024-10-02 Dongcheng Li , W. Eric Wong , Xiaodan Wang , Sean Pan , Liang-Seng Koh

Smart contracts are self-executing programs that manage financial transactions on blockchain networks. Developers commonly rely on third-party code libraries to improve both efficiency and security. However, improper use of these libraries…

Software Engineering · Computer Science 2026-04-02 Yishun Wang , Wenkai Li , Xiaoqi Li , Zongwei Li , Lei Xie , Yuqing Zhang

Smart Contracts are programs running logic in the Blockchain network by executing operations through immutable transactions. The Blockchain network validates such transactions, storing them into sequential blocks of which integrity is…

Software Engineering · Computer Science 2024-03-13 Francesco Salzano , Simone Scalabrino , Rocco Oliveto , Remo Pareschi

A smart contract that is deployed to a blockchain system like Ethereum is, under reasonable circumstances, expected to be immutable and tamper-proof. This is both a feature (promoting integrity and transparency) and a bug (preventing…

Cryptography and Security · Computer Science 2022-06-03 Mehdi Salehi , Jeremy Clark , Mohammad Mannan

Software applications that run on a blockchain platform are known as DApps. DApps are built using smart contracts, which are immutable after deployment. Just like any real-world software system, DApps need to receive new features and bug…

Software Engineering · Computer Science 2025-01-03 Amir M. Ebrahimi , Bram Adams , Gustavo A. Oliva , Ahmed E. Hassan

Decentralized applications (DApps) face significant security risks due to vulnerabilities in smart contracts, with traditional detection methods struggling to address emerging and machine-unauditable flaws. This paper proposes a novel…

Cryptography and Security · Computer Science 2026-02-03 Jiuyang Bu , Wenkai Li , Zongwei Li , Zeng Zhang , Xiaoqi Li

A widespread belief in the blockchain security community is that automated techniques are only good for detecting shallow bugs, typically of small value. In this paper, we present the techniques and insights that have led us to repeatable…

‹ Prev 1 2 3 10 Next ›