Ethereum smart contract security research:survey and future research opportunities

作     者：Zeli WANG Hai JIN Weiqi DAI Kim-Kwang Raymond CHOO Deqing ZOU Zeli WANG;Hai JIN;Weiqi DAI;Kim-Kwang Raymond CHOO;Deqing ZOU

作者机构：National Engineering Research Center for Big Data Technology and SystemServices Computing Technology and System LabClusters and Grid Computing LabHubei Engineering Research Center on Big Data SecurityWuhan430074China School of Computer Science and TechnologyHuazhong University of Science and TechnologyWuhan430074China School of Cyber Science and EngineeringHuazhong University of Science and TechnologyWuhan430074China Shenzhen Huazhong University of Science and Technology Research InstituteShenzhen518057China Department of Information Systems and Cyber SecurityUniversity of Texas at San AntonioSan AntonioTX78249-0631USA 

出 版 物：《Frontiers of Computer Science》 (中国计算机科学前沿（英文版）)

年 卷 期：2021年第15卷第2期

页      面：143-160页

核心收录：

学科分类：0810[工学-信息与通信工程] 0808[工学-电气工程] 08[工学] 0835[工学-软件工程] 0701[理学-数学] 0812[工学-计算机科学与技术（可授工学、理学学位）] 081202[工学-计算机软件与理论] 

基　　金：This work was supported by the National Key Research and Development(R&D)Plan of China(2019YFB2101700) the Science and Technology Program of Guangzhou(201902020016) the Shenzhen Fundamental Research Program(JCYJ20170413114215614) the Guangdong Provincial Science and Technology Plan Project(2017B010124001) the Guangdong Provincial Key R&D Plan Project(2019B010139001) 

主　　题：smart contract security blockchain vulnerability unreliable data 

摘      要：Blockchain has recently emerged as a research trend,with potential applications in a broad range of industries and *** particular successful Blockchain technology is smart contract,which is widely used in commercial settings(e.g.,high value financial transactions).This,however,has security implications due to the potential to financially benefit from a security incident(e.g.,identification and exploitation of a vulnerability in the smart contract or its implementation).Among,Ethereum is the most active and ***,in this paper,we systematically review existing research efforts on Ethereum smart contract security,published between 2015 and ***,we focus on how smart contracts can be maliciously exploited and targeted,such as security issues of contract program model,vulnerabilities in the program and safety consideration introduced by program execution *** also identify potential research opportunities and future research agenda.