Automated Generation of Test Cases for Smart Contract Security Analyzers
- Authors
- Kim, Ki Byung; Lee, Jonghyup
- Issue Date
- Nov-2020
- Publisher
- Institute of Electrical and Electronics Engineers Inc.
- Keywords
- Arrays; Blockchain; Computer bugs; Contracts; Encoding; honey pots; security audits; Smart contracts; Smart contracts; Static analysis; static analysis
- Citation
- IEEE Access, v.8, pp.209377 - 209392
- Journal Title
- IEEE Access
- Volume
- 8
- Start Page
- 209377
- End Page
- 209392
- URI
- https://scholarworks.bwise.kr/gachon/handle/2020.sw.gachon/79388
- DOI
- 10.1109/ACCESS.2020.3039990
- ISSN
- 2169-3536
- Abstract
- We address the absence of reliable tests on contract analyzers of smart contracts and present a systematic method to diversify test cases by combining smart-contract-specific bugs and static analysis barriers in this paper. Using contract analyzers is the most practical solution for building a secure blockchain service, but they are relatively immature and lacking stable performance metrics. Traditionally, performance reports only compare static contract analyzers with pre-defined test cases, such as the Juliet test suite. However, building such test suites is burdensome for smart contracts, which are frequently change. In this paper, we propose an automated method to assess contract analyzers of smart contracts by diversifying test cases. In the experimental results, we identified nine erroneous alarms in the state-of-the-art contract analyzers with automatically generated test cases on five vulnerabilities. CCBY
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - 경영대학 > 금융수학과 > 1. Journal Articles
![qrcode](https://api.qrserver.com/v1/create-qr-code/?size=55x55&data=https://scholarworks.bwise.kr/gachon/handle/2020.sw.gachon/79388)
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.