2,221 research outputs found
Towards Smart Hybrid Fuzzing for Smart Contracts
Smart contracts are Turing-complete programs that are executed across a
blockchain network. Unlike traditional programs, once deployed they cannot be
modified. As smart contracts become more popular and carry more value, they
become more of an interesting target for attackers. In recent years, smart
contracts suffered major exploits, costing millions of dollars, due to
programming errors. As a result, a variety of tools for detecting bugs has been
proposed. However, majority of these tools often yield many false positives due
to over-approximation or poor code coverage due to complex path constraints.
Fuzzing or fuzz testing is a popular and effective software testing technique.
However, traditional fuzzers tend to be more effective towards finding shallow
bugs and less effective in finding bugs that lie deeper in the execution. In
this work, we present CONFUZZIUS, a hybrid fuzzer that combines evolutionary
fuzzing with constraint solving in order to execute more code and find more
bugs in smart contracts. Evolutionary fuzzing is used to exercise shallow parts
of a smart contract, while constraint solving is used to generate inputs which
satisfy complex conditions that prevent the evolutionary fuzzing from exploring
deeper paths. Moreover, we use data dependency analysis to efficiently generate
sequences of transactions, that create specific contract states in which bugs
may be hidden. We evaluate the effectiveness of our fuzzing strategy, by
comparing CONFUZZIUS with state-of-the-art symbolic execution tools and
fuzzers. Our evaluation shows that our hybrid fuzzing approach produces
significantly better results than state-of-the-art symbolic execution tools and
fuzzers
Design of Land Administration and Title Registration Model Based on Blockchain Technology
Land administration and title registration system is the system for storing land title information and managing transactions involving land titles. Due to the sensitivity of land issues, land administration and title registration system should be strong to avoid any document forgery, available all the time, and take a short time to complete tasks. Thus, this study aims at designing a model for such system based on blockchain technology. The proposed model is designed using UML diagrams and then tested for verification using statistical usage models (Markov chains). The proposed model integrates the Integrated Land Management Information System (ILMIS) with factom and bitcoin blockchains which enables encryption of information from ILMIS to get the fingerprint information of each land title and store it to the blockchains. The model further encrypts the land information from ILMIS when needed and then compare it with fingerprints from blockchains for verification. Such implementation of the proposed model will help ILMIS to have the capability of providing tamper proof for stored data, providing the self-notarization mechanism, and availability of evidence for the land title from distributed databases. Furthermore, the society is expected to benefit from this study as the time and cost for registering land title will decrease and the possibilities of a piece of land having more than one owner will not be there. Keywords: Blockchain, Bitcoin Blockchain, Factom Blockchain, Land Management System, Model Design.
Fundamental Approaches to Software Engineering
This open access book constitutes the proceedings of the 23rd International Conference on Fundamental Approaches to Software Engineering, FASE 2020, which took place in Dublin, Ireland, in April 2020, and was held as Part of the European Joint Conferences on Theory and Practice of Software, ETAPS 2020. The 23 full papers, 1 tool paper and 6 testing competition papers presented in this volume were carefully reviewed and selected from 81 submissions. The papers cover topics such as requirements engineering, software architectures, specification, software quality, validation, verification of functional and non-functional properties, model-driven development and model transformation, software processes, security and software evolution
Ethical issues around crowdwork: How can blockchain technology help?
The practice of marketing has become increasingly technology-dependent, making organisations reliant on fragmented information systems that extend beyond organisational boundaries and requiring marketing workers to develop technology-related knowledge and/or collaborate more closely with those who have it. Despite massive investment in marketing technology, there has been little academic research on the intersection between marketing and technology knowledge. Drawing on three examples, we illustrate how complex and IS-dependent the practice of marketing and marketing decision-making have become. We then analyse those examples through the lens of knowledge management. Specifically, we consider the differences between traditional and modern marketing ecosystems and the implications for knowledge work, knowledge management, and decision-making at the level of organisations and ecosystems. We propose a provisional conceptual framework for understanding how market, marketing and technology knowledge have become intertwined and propose a research agenda for examining that more closely
A Lawyer’s Divorce: Will Decentralized Ledgers and Smart Contracts Succeed In Cutting Out the Middleman?
Society is progressing at a rapid pace. As math and science evolve, new technologies begin to utilize these advances and create something novel. These technological changes are revolutionizing not only the science-oriented industries, but also the humanities. One such example falls within the legal arena. More specifically, the exciting advent of smart contracts and their use of technological changes are altering the way law is processed and practiced. However, as is often the case, new technological innovations spur certain growing pains. The implementation of smart contracts is proving no different.
Some view the smart contract as the start of a more ideal society. With the aid of smart contracts and blockchain technology, machines can finally be equipped to fulfill some of the most basic human functions. Not only would business transactions always occur in a timely, seamless, and cost-effective manner, but also more mundane life tasks, such as ordering laundry detergent, could soon be done via smart contract technology. As exciting as these changes may be, smart contracts and the blockchain technology behind them are still immature. Before this legal phenomenon is widely accepted, there needs to be more advancement in not only the code that creates the technology, but also in the law and its regulations. As it stands today, smart contracts are most likely to be accepted only in part, and heavily tailored to meet each contracting party’s needs.
This Note will start by giving an overview of the technology needed to implement smart contracts—blockchain technology—and an explanation of how smart contracts fit within the framework of a blockchain. Next, this Note will discuss some of the major issues smart contracts face. Such issues include: the need to translate natural language into computer code, the traditional concept of contracting in conjunction with the effect of smart contracts on traditional legal notions, and reoccurring enforcement issues. After discussing smart contracts and the current issues barring wide-spread acceptance, this Note will explore the future of smart contracts in the legal arena by analogizing such an electronic contracting change to the now-widely accepted electronic clickwrap agreements. Additionally, this Note will explore recently enacted state statutes that create favorable legal conditions for smart contracts and what impact, if any, these statutes may have upon federal legislation. Furthermore, this Note will analyze the lack of and potential need for regulations regarding smart contracts. In an attempt to make smart contracts acceptable, this Note will suggest future regulations focus on two components of smart contracts. As it will be discussed, regulations should require smart contracts to utilize a permissioned ledger and focus on ensuring the legal requirement of mutuality between the two contracting parties. Lastly, this Note will conclude that although the publicity surrounding smart contracts is exciting and innovative, this form of contracting is likely to remain in a controlled business environment with implementation under select circumstances
- …