Please use this identifier to cite or link to this item: http://hdl.handle.net/1893/27135
Full metadata record
DC FieldValueLanguage
dc.contributor.authorDestefanis, Giuseppeen_UK
dc.contributor.authorMarchesi, Micheleen_UK
dc.contributor.authorOrtu, Marcoen_UK
dc.contributor.authorTonelli, Robertoen_UK
dc.contributor.authorBracciali, Andreaen_UK
dc.contributor.authorHierons, Roberten_UK
dc.contributor.editorTonelli, Ren_UK
dc.contributor.editorDucasse S, Sen_UK
dc.contributor.editorFenu, Gen_UK
dc.contributor.editorBracciali, Aen_UK
dc.date.accessioned2018-04-27T22:34:08Z-
dc.date.available2018-04-27T22:34:08Z-
dc.date.issued2018-03-29en_UK
dc.identifier.urihttp://hdl.handle.net/1893/27135-
dc.description.abstractSmart Contracts have gained tremendous popularity in the past few years, to the point that billions of US Dollars are currently exchanged every day through such technology. However, since the release of the Frontier network of Ethereum in 2015, there have been many cases in which the execution of Smart Contracts managing Ether coins has led to problems or conflicts. Compared to traditional Software Engineering, a discipline of Smart Contract and Blockchain programming, with standardized best practices that can help solve the mentioned problems and conflicts, is not yet sufficiently developed. Furthermore, Smart Contracts rely on a non-standard software life-cycle, according to which, for instance, delivered applications can hardly be updated or bugs resolved by releasing a new version of the software. In this paper we advocate the need for a discipline of Blockchain Software Engineering, addressing the issues posed by smart contract programming and other applications running on blockchains.We analyse a case of study where a bug discovered in a Smart Contract library, and perhaps "unsafe" programming, allowed an attack on Parity, a wallet application, causing the freezing of about 500K Ethers (about 150M USD, in November 2017). In this study we analyze the source code of Parity and the library, and discuss how recognised best practices could mitigate, if adopted and adapted, such detrimental software misbehavior. We also reflect on the specificity of Smart Contract software development, which makes some of the existing approaches insufficient, and call for the definition of a specific Blockchain Software Engineering.en_UK
dc.language.isoenen_UK
dc.publisherIEEEen_UK
dc.relationDestefanis G, Marchesi M, Ortu M, Tonelli R, Bracciali A & Hierons R (2018) Smart contracts vulnerabilities: a call for blockchain software engineering?. In: Tonelli R, Ducasse S S, Fenu G & Bracciali A (eds.) 2018 International Workshop on Blockchain Oriented Software Engineering (IWBOSE). 2018 IEEE 1st International Workshop on Blockchain Oriented Software Engineering (IWBOSE), Campobasso, Italy, 20.03.2018-20.03.2018. Piscataway, NJ, USA: IEEE, pp. 19-25. https://doi.org/10.1109/IWBOSE.2018.8327567en_UK
dc.rights© 2018 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.en_UK
dc.subjectcontractsen_UK
dc.subjectprogram debuggingen_UK
dc.subjectsoftware maintenanceen_UK
dc.subjectdetrimental software misbehavioren_UK
dc.subjectnonstandard software life-cycleen_UK
dc.subjectsmart contract libraryen_UK
dc.subjectsmart contract programmingen_UK
dc.subjectsmart contract software developmenten_UK
dc.subjectsmart contract vulnerabilitiesen_UK
dc.subjectspecific blockchain software engineeringen_UK
dc.subjectComputer hackingen_UK
dc.subjectContractsen_UK
dc.subjectLibrariesen_UK
dc.subjectProgrammingen_UK
dc.subjectSoftwareen_UK
dc.subjectSoftware engineeringen_UK
dc.subjectsmart contractsen_UK
dc.subjectblockchainen_UK
dc.subjectsoftware engineeringen_UK
dc.titleSmart contracts vulnerabilities: a call for blockchain software engineering?en_UK
dc.typeConference Paperen_UK
dc.identifier.doi10.1109/IWBOSE.2018.8327567en_UK
dc.citation.spage19en_UK
dc.citation.epage25en_UK
dc.citation.publicationstatusPublisheden_UK
dc.type.statusAM - Accepted Manuscripten_UK
dc.citation.btitle2018 International Workshop on Blockchain Oriented Software Engineering (IWBOSE)en_UK
dc.citation.conferencedates2018-03-20 - 2018-03-20en_UK
dc.citation.conferencelocationCampobasso, Italyen_UK
dc.citation.conferencename2018 IEEE 1st International Workshop on Blockchain Oriented Software Engineering (IWBOSE)en_UK
dc.citation.date20/03/2018en_UK
dc.citation.isbn978-1-5386-5986-1en_UK
dc.publisher.addressPiscataway, NJ, USAen_UK
dc.contributor.affiliationUniversity of Hertfordshireen_UK
dc.contributor.affiliationUniversity of Cagliarien_UK
dc.contributor.affiliationUniversity of Cagliarien_UK
dc.contributor.affiliationUniversity of Cagliarien_UK
dc.contributor.affiliationComputing Scienceen_UK
dc.contributor.affiliationBrunel Universityen_UK
dc.identifier.isiWOS:000457581500005en_UK
dc.identifier.wtid876001en_UK
dc.contributor.orcid0000-0003-1451-9260en_UK
dc.date.accepted2018-02-09en_UK
dcterms.dateAccepted2018-02-09en_UK
dc.date.filedepositdate2018-04-27en_UK
rioxxterms.apcnot requireden_UK
rioxxterms.typeConference Paper/Proceeding/Abstracten_UK
rioxxterms.versionAMen_UK
local.rioxx.authorDestefanis, Giuseppe|en_UK
local.rioxx.authorMarchesi, Michele|en_UK
local.rioxx.authorOrtu, Marco|en_UK
local.rioxx.authorTonelli, Roberto|en_UK
local.rioxx.authorBracciali, Andrea|0000-0003-1451-9260en_UK
local.rioxx.authorHierons, Robert|en_UK
local.rioxx.projectInternal Project|University of Stirling|https://isni.org/isni/0000000122484331en_UK
local.rioxx.contributorTonelli, R|en_UK
local.rioxx.contributorDucasse S, S|en_UK
local.rioxx.contributorFenu, G|en_UK
local.rioxx.contributorBracciali, A|en_UK
local.rioxx.freetoreaddate2018-04-27en_UK
local.rioxx.licencehttp://www.rioxx.net/licenses/all-rights-reserved|2018-04-27|en_UK
local.rioxx.filenamesmart-contracts-vulnerabilities-3.pdfen_UK
local.rioxx.filecount1en_UK
local.rioxx.source978-1-5386-5986-1en_UK
Appears in Collections:Computing Science and Mathematics Conference Papers and Proceedings

Files in This Item:
File Description SizeFormat 
smart-contracts-vulnerabilities-3.pdfFulltext - Accepted Version382.65 kBAdobe PDFView/Open


This item is protected by original copyright



Items in the Repository are protected by copyright, with all rights reserved, unless otherwise indicated.

The metadata of the records in the Repository are available under the CC0 public domain dedication: No Rights Reserved https://creativecommons.org/publicdomain/zero/1.0/

If you believe that any material held in STORRE infringes copyright, please contact library@stir.ac.uk providing details and we will remove the Work from public display in STORRE and investigate your claim.