摘要
智能合约为区块链技术的核心,区块链的正常工作,依赖于缜密的智能合约。然而智能合约本身往往存在着漏洞,漏洞提供了攻击的可能性,将智能合约的攻击分为基本的四类,分析几种重要的攻击技术,揭示攻击防御、智能合约安全的重要性。同时分析了多种常用的智能合约检测工具,并指出各种工具的优劣。最后讨论了智能合约有关安全的建议和未来研究方向,希望能够将智能合约技术进一步融入到日常使用之中。
Smart contracts are at the core of blockchain technology,and the proper functioning of blockchain relies on meticulous smart contracts.However,smart contracts themselves often have vulnerabilities,and the vulnerabilities provide the possibility of attacks,this paper divides the attacks against smart contracts into four basic categories,analyzes several important attack techniques,and reveals the importance of attack defense and smart contract security.It also analyzes a variety of commonly used smart contract detection tools and points out the advantages and disadvantages of various tools.Finally,the recommendations and future research directions related to smart contract security are discussed in the hope that smart contract technology can be further integrated into daily use.
作者
王筱轲
刘贵涛
WANG Xiaoke;LIU Guitao(Northwestern Polytechnical University,Xi’an Shaanxi 710072,China;Xi’an Jiaotong University,Xi’an Shaanxi 710049,China)
出处
《信息安全与通信保密》
2020年第10期114-122,共9页
Information Security and Communications Privacy
关键词
智能合约
攻防技术
以太坊
数字货币
smart contract
attacks and protections
ethereum
digital currency
