265 Hits in 2.8 sec

Mutation Testing for Ethereum Smart Contract [article]

Haoran Wu, Xingya Wang, Jiehui Xu, Weiqin Zou, Lingming Zhang, Zhenyu Chen
2019 arXiv   pre-print
This paper proposes a systematic framework to mutation testing for smart contracts on Ethereum, which is currently the most popular open blockchain for deploying and running smart contracts.  ...  An empirical study on 26 smart contracts in four Ethereum DApps has been conducted to evaluate the effectiveness of mutation testing.  ...  new set of mutation operators for Ethereum smart contract.  ... 
arXiv:1908.03707v1 fatcat:brdhoj435vbxtbtgcftmkpwdta

Mutation testing for integer overflow in ethereum smart contracts

Jinlei Sun, Song Huang, Changyou Zheng, Tingyong Wang, Cheng Zong, Zhanwei Hui
2022 Tsinghua Science and Technology  
Mutation testing is a fault-based testing method that can effectively improve the sufficiency of a test for smart contracts.  ...  Integer overflow is a common vulnerability in Ethereum Smart Contracts (ESCs) and often causes huge economic losses.  ...  .: Mutation Testing for Integer Overflow in Ethereum Smart Contracts 33 Fig. 9 9 VTC mutation for Tru Add. Fig. 10 10 SUR mutation for withdrawOnce.  ... 
doi:10.26599/tst.2020.9010036 fatcat:p4w5ng3pl5bvjgltlzz3qwrzhe

Testing Smart Contracts Gets Smarter [article]

Erfan Andesta, Fathiyeh Faghih, Mahdi Fooladgar
2019 arXiv   pre-print
In this paper, we propose a testing mechanism for smart contracts in Solidity language, based on mutation testing.  ...  Therefore, it is important for smart contract developers to fully test and check the correctness of their code before deploying it on the blockchain.  ...  Our idea is to use mutation testing approach for smart contract testing. Mutation testing is known as the strongest technique for test design.  ... 
arXiv:1912.04780v2 fatcat:hw42sm447bdabp2utcontvxtmu

Finding Consensus Bugs in Ethereum via Multi-transaction Differential Fuzzing

Youngseok Yang, Taesoo Kim, Byung-Gon Chun
2021 USENIX Symposium on Operating Systems Design and Implementation  
First, Fluffy mutates and executes multi-transaction test cases to find consensus bugs which cannot be found using existing fuzzers for Ethereum.  ...  , and semantic-aware mutation that reduces erroneous test cases.  ...  We thank our shepherd Ding Yuan and the anonymous reviewers for their insightful feedback. We thank the members of the Software Platform Lab at Seoul National University for their valuable input.  ... 
dblp:conf/osdi/YangKC21 fatcat:wp3qqlcadnaqfpzuorempltwwe

GasFuzzer: Fuzzing Ethereum Smart Contract Binaries to Expose Gas-Oriented Exception Security Vulnerabilities

Imran Ashraf, Xiaoxue Ma, Bo Jiang, W. K. Chan
2020 IEEE Access  
together with those which remained non-mutated to fuzz test the smart contract.  ...  Ethereum is a kind of blockchain platform where developers may develop and run programs called smart contracts.  ...  In this work, we will use the term smart contract exclusively for an Ethereum smart contract (written in Solidity for illustration purpose) and blockchain for an Ethereum blockchain.  ... 
doi:10.1109/access.2020.2995183 fatcat:de354kyy25d4vo74sllabzp6qq

EVMFuzz: Differential Fuzz Testing of Ethereum Virtual Machine [article]

Ying Fu, Meng Ren, Fuchen Ma, Yu Jiang, Heyuan Shi, Jiaguang Sun
2019 arXiv   pre-print
For evaluation, we conducted large-scale mutation on 36,295 real-world smart contracts and generated 253,153 smart contracts.  ...  Ethereum Virtual Machine (EVM) is the run-time environment for smart contracts and its vulnerabilities may lead to serious problems to the Ethereum ecology.  ...  In this paper, our test object are the same functional EVM platforms implemented by different programming languages, and the test input is the mutated smart contract.  ... 
arXiv:1903.08483v2 fatcat:f5n6vrpn2zdsjjhmehyzfa3mcu

Deviant: A Mutation Testing Tool for Solidity Smart Contracts

Patrick Chapman, Dianxiang Xu, Lin Deng, Yin Xiong
2019 2019 IEEE International Conference on Blockchain (Blockchain)  
Solidity is a widely used scripting language for creating smart contracts in Ethereum applications.  ...  This thesis presents Deviant, the first implementation of a mutation testing tool for Solidity smart contracts.  ...  In this paper, we present Deviant, a mutation testing tool for Solidity smart contracts.  ... 
doi:10.1109/blockchain.2019.00050 dblp:conf/blockchain2/ChapmanXDX19 fatcat:ly4fskykhbcjrmfnb3spits5sm

SolAnalyser: A Framework for Analysing and Testing Smart Contracts

Sefa Akca, Ajitha Rajan, Chao Peng
2019 2019 26th Asia-Pacific Software Engineering Conference (APSEC)  
We also implemented a fault seeding tool that injects different types of vulnerabilities in smart contracts. We use the mutated contracts for assessing the effectiveness of different analysis tools.  ...  To address this challenge, we present a fully automated technique, SolAnalyser, for vulnerability detection over Solidity smart contracts that uses both static and dynamic analysis.  ...  Test Results Test Result Static Analysis for Assertions SIF MuContract ☑ ☑ ☑ ☑ ☑ ☑ SolAnalyser / Other analysis tools Test Result Test Result Test Results Smart Contract Mutations SIFFig.1: SolAnalyser  ... 
doi:10.1109/apsec48747.2019.00071 dblp:conf/apsec/AkcaRP19 fatcat:nuheaytjurfclmmlitda65ug6i

HFContractFuzzer: Fuzzing Hyperledger Fabric Smart Contracts for Vulnerability Detection [article]

Mengjie Ding, Peiru Li, Shanshan Li, He Zhang
2021 arXiv   pre-print
In this paper, we propose HFContractFuzzer, a method based on Fuzzing technology to detect Hyperledger Fabric smart contracts, which combines a Fuzzing tool for golang named go-fuzz and smart contracts  ...  Hyperledger Fabric is a smart contract platform based on enterprise-level licensed distributed ledger technology.  ...  At present, there are many Fuzzing methods for smart contracts in Ethereum. Echidna [8] is an open-source smart contract Fuzzer.  ... 
arXiv:2106.11210v1 fatcat:n4vxcivbdzhoxoyok4ruakkryu

Smart Contract Fuzzing Based on Taint Analysis and Genetic Algorithms

Zaoyu Wei, Jiaqi Wang, Xueqi Shen, Qun Luo
2020 Journal of Information Hiding and Privacy Protection  
Oriented to Ethereum smart contract, the study solves the problems of redundant input and low coverage in the smart contract fuzz.  ...  smart contract together.  ...  ContractFuzzer is the first fuzzing framework for smart contract vulnerabilities detection based on Ethereum.  ... 
doi:10.32604/jihpp.2020.010331 fatcat:o6kavxkagbc7bgkthaaglqduai

Smart Contract Fuzzing Based on Taint Analysis and Genetic Algorithms

Zaoyu Wei, Jiaqi Wang, Xueqi Shen, Qun Luo
2020 Journal of Quantum Computing  
Oriented to Ethereum smart contract, the study solves the problems of redundant input and low coverage in the smart contract fuzz.  ...  smart contract together.  ...  Acknowledgment: Thanks for Bichen Che, Yu Yang, and Zichuan Guo, who give a lot of suggestions and contribute to this article.  ... 
doi:10.32604/jqc.2020.010815 fatcat:6jptw2jbj5h2phiokgzrmpt4uu

V-Gas: Generating High Gas Consumption Inputs to Avoid Out-of-Gas Vulnerability [article]

Fuchen Ma, Ying Fu, Meng Ren, Wanting Sun, Houbing Song, Yu Jiang, Jun Sun, Jiaguang Sun
2021 arXiv   pre-print
V-Gas is designed based on feedback-directed mutational fuzz testing. First, V-Gas builds the gas weighted control flow graph (CFG) of functions in smart contracts.  ...  For evaluation, we implement V-Gas based on js-evm, a widely used ethereum virtual machine written in javascript, and conduct experiments on 736 real-world transactions recorded on Ethereum. 44.02\% of  ...  For evaluation, we implemented V-Gas based on js-evm, one of the widely-used Ethereum Virtual Machine (EVM) for the execution of smart contracts.  ... 
arXiv:1910.02945v2 fatcat:r6mpdgsh3zhinm4im7evkvotru

Mutation testing of smart contracts at scale [article]

Pieter Hartel, Richard Schumi
2020 arXiv   pre-print
Hence, we evaluate the quality of smart contract mutation testing at scale.  ...  It is crucial that smart contracts are tested thoroughly due to their immutable nature. Even small bugs in smart contracts can lead to huge monetary losses.  ...  We describe an experiment in mutation testing of smart contracts on Ethereum.  ... 
arXiv:1909.12563v4 fatcat:jjihxom6zzewxkluxlb2maxymi

ConFuzzius: A Data Dependency-Aware Hybrid Fuzzer for Smart Contracts [article]

Christof Ferreira Torres, Antonio Ken Iannillo, Arthur Gervais, Radu State
2021 arXiv   pre-print
In this work, we study hybrid fuzzing on smart contracts and present ConFuzzius, the first hybrid fuzzer for smart contracts.  ...  As smart contracts carry more value, they become more of an exciting target for attackers.  ...  BACKGROUND In this section, we provide background on Ethereum smart contracts and hybrid fuzzing. A. Ethereum Smart Contracts Smart Contracts.  ... 
arXiv:2005.12156v2 fatcat:lonixxwczvfmzmfp4cwnu4pkwa

Flint for Safer Smart Contracts [article]

Franklin Schrans, Daniel Hails, Alexander Harkness, Sophia Drossopoulou, Susan Eisenbach
2019 arXiv   pre-print
The Ethereum blockchain platform supports the execution of decentralised applications or smart contracts.  ...  We propose Flint, a new statically-typed programming language specifically designed for writing robust smart contracts. Flint's features enforce the writing of safe and predictable code.  ...  Acknowledgements We would like acknowledge Aurel Bily, Catalin Cracium, Calin Farcas, Yicheng Luo, Constantin Mueller, and Niklas Vangerow for their  ... 
arXiv:1904.06534v1 fatcat:usfkt2shsrgdtcdpyymhv2eedm
« Previous Showing results 1 — 15 out of 265 results