Smart Contracts: Security Patterns in the Ethereum Ecosystem and Solidity

Smart Contracts: Security Patterns in the Ethereum Ecosystem and Solidity

Abstract

Smart contracts that build up on blockchain technologies are receiving great attention in new business applications and the scientific community, because they allow untrusted parties to manifest contract terms in program code and thus eliminate the need for a trusted third party. The creation process of writing well performing and secure contracts in Ethereum, which is today's most prominent smart contract platform, is a difficult task. Research on this topic has only recently started in industry and science. Based on an analysis of collected data with Grounded Theory techniques, we have elaborated several common security patterns, which we describe in detail on the basis of Solidity, the dominating programming language for Ethereum. The presented patterns describe solutions to typical security issues and can be applied by Solidity developers to mitigate typical attack scenarios.

Grafik Top
Authors
  • Wöhrer, Maximilian
  • Zdun, Uwe
Grafik Top
Shortfacts
Category
Paper in Conference Proceedings or in Workshop Proceedings (Paper)
Event Title
1st International Workshop on Blockchain Oriented Software Engineering @ SANER 2018
Divisions
Software Architecture
Subjects
Programmiermethodik
Software Engineering
Angewandte Informatik
Event Location
Campobasso, Italy
Event Type
Workshop
Event Dates
March 20th 2018
Page Range
pp. 2-8
Date
20 March 2018
Export
Grafik Top