[en] In recent years, smart contracts have suffered major exploits, losing millions of dollars. Unlike traditional programs, smart contracts cannot be updated once deployed. Though various tools were pro- posed to detect vulnerable smart contracts, they all fail to protect contracts that have already been deployed on the blockchain. More- over, they focus on vulnerabilities, but do not address scams (e.g., honeypots). In this work, we introduce ÆGIS, a tool that shields smart contracts and users on the blockchain from being exploited. To this end, ÆGIS reverts transactions in real-time based on pat- tern matching. These patterns encode the detection of malicious transactions that trigger exploits or scams. New patterns are voted upon and stored via a smart contract, thus leveraging the benefits of tamper-resistance and transparency provided by blockchain. By allowing its protection to be updated, the smart contract acts as a smart shield.
Disciplines :
Computer science
Author, co-author :
Ferreira Torres, Christof ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Steichen, Mathis ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Norvill, Robert ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Jonker, Hugo ; Open University of the Netherlands ; Radboud Universiteit Nijmegen
External co-authors :
yes
Language :
English
Title :
ÆGIS: Smart Shielding of Smart Contracts
Publication date :
2019
Event name :
CCS '19: 2019 ACM SIGSAC Conference on Computer and Communications Security
