一种用于移动智能合约验证的模型检查框架

2022 IEEE 13th International Conference on Software Engineering and Service Science (ICSESS) Pub Date : 2022-10-21 DOI:10.1109/ICSESS54813.2022.9930214

Eric Keilty, Keerthi Nelaturu, Bowen Wu, A. Veneris

{"title":"一种用于移动智能合约验证的模型检查框架","authors":"Eric Keilty, Keerthi Nelaturu, Bowen Wu, A. Veneris","doi":"10.1109/ICSESS54813.2022.9930214","DOIUrl":null,"url":null,"abstract":"As the popularity of distributed ledger technology and smart contracts continues to grow, so does the number of decentralized applications and their potential exposure to expensive exploits. The need for strong vulnerability detection tools is critical. Move is a recently developed smart contract language with safety and security at the core of its design containing formal verification tools embedded into the language. Currently, these tools can only verify local properties within a single Move function. They cannot verify global properties that result from multiple function executions. In this paper, we introduce VeriMove, an extension of the VeriSolid correct-by-design model checking framework that supports the Move language. We show that model checking is a feasible method to formally verify global properties in Move smart contracts.","PeriodicalId":265412,"journal":{"name":"2022 IEEE 13th International Conference on Software Engineering and Service Science (ICSESS)","volume":"95 3 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-10-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":"{\"title\":\"A Model-Checking Framework for the Verification of Move Smart Contracts\",\"authors\":\"Eric Keilty, Keerthi Nelaturu, Bowen Wu, A. Veneris\",\"doi\":\"10.1109/ICSESS54813.2022.9930214\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"As the popularity of distributed ledger technology and smart contracts continues to grow, so does the number of decentralized applications and their potential exposure to expensive exploits. The need for strong vulnerability detection tools is critical. Move is a recently developed smart contract language with safety and security at the core of its design containing formal verification tools embedded into the language. Currently, these tools can only verify local properties within a single Move function. They cannot verify global properties that result from multiple function executions. In this paper, we introduce VeriMove, an extension of the VeriSolid correct-by-design model checking framework that supports the Move language. We show that model checking is a feasible method to formally verify global properties in Move smart contracts.\",\"PeriodicalId\":265412,\"journal\":{\"name\":\"2022 IEEE 13th International Conference on Software Engineering and Service Science (ICSESS)\",\"volume\":\"95 3 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-10-21\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"3\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE 13th International Conference on Software Engineering and Service Science (ICSESS)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICSESS54813.2022.9930214\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE 13th International Conference on Software Engineering and Service Science (ICSESS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICSESS54813.2022.9930214","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

摘要

随着分布式账本技术和智能合约的普及，去中心化应用程序的数量以及它们可能受到昂贵攻击的可能性也在不断增加。对强大的漏洞检测工具的需求至关重要。Move是最近开发的一种智能合约语言，其设计的核心是安全性和安全性，其中包含嵌入语言的正式验证工具。目前，这些工具只能验证单个Move函数中的本地属性。它们不能验证由多个函数执行产生的全局属性。在本文中，我们介绍了VeriSolid设计正确性模型检查框架的扩展，它支持Move语言。我们证明了模型检查是一种形式化验证Move智能合约中全局属性的可行方法。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Model-Checking Framework for the Verification of Move Smart Contracts

As the popularity of distributed ledger technology and smart contracts continues to grow, so does the number of decentralized applications and their potential exposure to expensive exploits. The need for strong vulnerability detection tools is critical. Move is a recently developed smart contract language with safety and security at the core of its design containing formal verification tools embedded into the language. Currently, these tools can only verify local properties within a single Move function. They cannot verify global properties that result from multiple function executions. In this paper, we introduce VeriMove, an extension of the VeriSolid correct-by-design model checking framework that supports the Move language. We show that model checking is a feasible method to formally verify global properties in Move smart contracts.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2022 IEEE 13th International Conference on Software Engineering and Service Science (ICSESS)

自引率

0.00%

发文量