Model Checking Concurrency in Smart Contracts with a Case Study of Safe Remote Purchase
Files
File version
Accepted Manuscript (AM)
Author(s)
Dong, N
Hou, Z
Song Dong, J
Griffith University Author(s)
Primary Supervisor
Other Supervisors
Editor(s)
Ogata, Kazuhiro
Mery, Dominique
Sun, Meng
Liu, Shaoying
Date
Size
File type(s)
Location
Hiroshima, Japan
License
Abstract
Blockchain technology has evolved beyond its initial role in supporting cryptocurrencies like Bitcoin, with Ethereum introducing smart contracts for decentralised applications in various domains. However, ensuring the safety and security of smart contracts remains a critical challenge, particularly concerning concurrency issues. This is of paramount importance because the smart contract ecosystem is concurrent by nature as its underlying blockchain is decentralised, and the concurrency-related vulnerabilities within smart contracts have resulted in substantial financial losses.We observe that in the literature, concurrency is handled with two strong assumptions, leading to either undetected attacks or false alarms. Taking the Safe Remote Purchase smart contract as a case study, we investigated the root causes and introduced a novel method that incorporates blockchain-specific characteristics into the verification process. Our contributions include a formal framework, an automated model generator, and a compelling case study that illustrates a reduction in false attacks, thus advancing the state of smart contract security in blockchain ecosystems. The formal models and the framework generator are available online at https://github.com/FormalVerificationBlockchain/Concurrency.
Journal Title
Conference Title
Formal Methods and Software Engineering: 25th International Conference on Formal Engineering Methods, ICFEM 2024, Hiroshima, Japan, December 2–6, 2024, Proceedings
Book Title
Edition
Volume
15394
Issue
Thesis Type
Degree Program
School
Publisher link
Patent number
Funder(s)
Grant identifier(s)
Rights Statement
Rights Statement
This work is covered by copyright. You must assume that re-use is limited to personal use and that permission from the copyright owner must be obtained for all other uses. If the document is available under a specified licence, refer to the licence for details of permitted re-use. If you believe that this work infringes copyright please make a copyright takedown request using the form at https://www.griffith.edu.au/copyright-matters.
Item Access Status
Note
Access the data
Related item(s)
Subject
Persistent link to this record
Citation
Yu, Y; Dong, N; Hou, Z; Song Dong, J, Model Checking Concurrency in Smart Contracts with a Case Study of Safe Remote Purchase, Formal Methods and Software Engineering: 25th International Conference on Formal Engineering Methods, ICFEM 2024, Hiroshima, Japan, December 2–6, 2024, Proceedings, 2024, 15394, pp. 391-407