IRIS Institutional Research Information System - AIR Archivio Istituzionale della Ricerca

Smart contracts on blockchain platforms like Ethereum are increasingly used to automate complex transactions in a secure and transparent manner. However, ensuring their correctness and resistance to attacks remains a significant challenge. This paper presents a formal approach for modeling and assessing the security of Ethereum smart contracts using Abstract State Machines (ASMs). ASMs provide a rigorous framework for precisely describing smart contract behavior, including interactions with potentially malicious contracts. By modeling attackers as contracts designed to exploit known vulnerabilities, our method enables the systematic evaluation of a contract’s robustness in adversarial scenarios, thereby providing a quantifiable assessment of its security. We demonstrate this approach on a Solidity smart contract, assessing its resilience against three well-known vulnerabilities to illustrate the effectiveness of our security analysis.

Security Assessment of Interacting Ethereum Smart Contracts / C. Braghin, E.R. (COMMUNICATIONS IN COMPUTER AND INFORMATION SCIENCE). - In: Security and Cryptography / [a cura di] P. Samarati, S. De Capitani di Vimercati. - [s.l] : Springer Science and Business Media Deutschland GmbH, 2025 Nov 16. - ISBN 9783032095978. - pp. 272-299 (( 20th International Conference on Security and Cryptography, SECRYPT 2023 and 21st International Conference on Security and Cryptography, SECRYPT 2024 Roma-Dijon 2023-2024 [10.1007/978-3-032-09598-5_12].

Security Assessment of Interacting Ethereum Smart Contracts

C. Braghin
Primo
;E. Riccobene
Secondo
;S. Valentini
Ultimo
2025

Abstract

Smart contracts on blockchain platforms like Ethereum are increasingly used to automate complex transactions in a secure and transparent manner. However, ensuring their correctness and resistance to attacks remains a significant challenge. This paper presents a formal approach for modeling and assessing the security of Ethereum smart contracts using Abstract State Machines (ASMs). ASMs provide a rigorous framework for precisely describing smart contract behavior, including interactions with potentially malicious contracts. By modeling attackers as contracts designed to exploit known vulnerabilities, our method enables the systematic evaluation of a contract’s robustness in adversarial scenarios, thereby providing a quantifiable assessment of its security. We demonstrate this approach on a Solidity smart contract, assessing its resilience against three well-known vulnerabilities to illustrate the effectiveness of our security analysis.
ASMETA; ASMs; Blockchain; Exception; Smart-contracts; Validation; Verification
Settore INFO-01/A - Informatica
16-nov-2025
Book Part (author)
03 - Contributo in volume
File in questo prodotto:
File Dimensione Formato  
978-3-032-09598-5_12.pdf

accesso riservato

Tipologia: Publisher's version/PDF
Licenza: Nessuna licenza
Dimensione 969.74 kB
Formato Adobe PDF
  Visualizza/Apri   Richiedi una copia
969.74 kB Adobe PDF   Visualizza/Apri   Richiedi una copia
Pubblicazioni consigliate

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/2434/1250096
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 0
  • ???jsp.display-item.citation.isi??? ND
  • OpenAlex 0
social impact