[en] In recent years, smart contracts have suffered major exploits, losing millions of dollars. Unlike traditional programs, smart contracts cannot be updated once deployed. Though various tools were pro- posed to detect vulnerable smart contracts, they all fail to protect contracts that have already been deployed on the blockchain. More- over, they focus on vulnerabilities, but do not address scams (e.g., honeypots). In this work, we introduce ÆGIS, a tool that shields smart contracts and users on the blockchain from being exploited. To this end, ÆGIS reverts transactions in real-time based on pat- tern matching. These patterns encode the detection of malicious transactions that trigger exploits or scams. New patterns are voted upon and stored via a smart contract, thus leveraging the benefits of tamper-resistance and transparency provided by blockchain. By allowing its protection to be updated, the smart contract acts as a smart shield.
Disciplines :
Sciences informatiques
Auteur, co-auteur :
FERREIRA TORRES, Christof ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
STEICHEN, Mathis ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
NORVILL, Robert ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
JONKER, Hugo ; Open University of the Netherlands ; Radboud Universiteit Nijmegen
Co-auteurs externes :
yes
Langue du document :
Anglais
Titre :
ÆGIS: Smart Shielding of Smart Contracts
Date de publication/diffusion :
2019
Nom de la manifestation :
CCS '19: 2019 ACM SIGSAC Conference on Computer and Communications Security
