Etherolic: A Concolic Execution System for Security Analysis of Smart Contracts (SPLASH 2019 - Posters)

Track

SPLASH 2019 Posters

Time Zone

The program is currently displayed in (GMT+03:00) Beirut.

Use conference time zone: (GMT+03:00) BeirutSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

By setting a time band, the program will dim events that are outside this time window. This is useful for (virtual) conferences with a continuous program (with repeated sessions).
The time band will also limit the events that are included in the personal iCalendar subscription service.

Display full programSpecify a time band

Save

When

Thu 24 Oct 2019 17:30 - 17:32 at Foyer - Poster #2

Abstract

Considering numerous projects using smart contracts based on the blockchain technology racing to market, there is an ever-growing necessity for secure contracts to protect what could potentially be worth billions. Ethereum smart contracts are small executable programs, used on a peer-to-peer network as part of a consensus protocol. In other words, a smart contract is a set of low-level instructions being run on the Ethereum Virtual Machine (EVM). This low-level representation of smart contracts is called the Ethereum bytecode, which is public, immutable and once used in the blockchain, cannot be patched anymore. In this ongoing work, we present Etherolic, as the first runtime analysis framework based on concolic execution that analyzes the smart contracts’ bytecode for detecting various vulnerabilities and attacks.

In contrast to previous tools, Etherolic does not need any source code and combines symbolic execution of bytecode with a presentation of concrete values from the public Ethereum blockchain. We evaluated Etherolic with a real-world benchmark suite, including 16 programs, containing public libraries. The result of our analysis demonstrates the effectiveness and usefulness of Etherolic in the real-life applications.

Time Zone

The program is currently displayed in (GMT+03:00) Beirut.

Use conference time zone: (GMT+03:00) BeirutSelect other time zone

The GMT offsets shown reflect the offsets at the moment of the conference.

Time Band

Display full programSpecify a time band

Save

Session Program

Thu 24 Oct
Displayed time zone: Beirut change

17:30 - 19:30	Poster #2Posters at Foyer

17:30 2m Poster		Etherolic: A Concolic Execution System for Security Analysis of Smart Contracts Posters Mohammadreza Ashouri University of Potsdam, Germany
17:32 2m Poster		Language-Parametric Semantic Editor Services based on Declarative Type System Specifications Posters Daniel A. A. Pelsmaeker Delft University of Technology, Netherlands, Hendrik van Antwerpen TU Delft, Eelco Visser Delft University of Technology
17:35 2m Poster		NAB: Automated Large-scale Multi-language Dynamic Program Analysis in Public Code Repositories Posters Alex Villazón Universidad Privada Boliviana, Bolivia, Haiyang Sun Università della Svizzera italiana, Andrea Rosà University of Lugano, Switzerland, Eduardo Rosales University of Lugano, Switzerland, Daniele Bonetta Oracle Labs, Isabella Defilippis Universidad Privada Boliviana (UPB), Sergio Oporto Universidad Privada Boliviana (UPB), Walter Binder University of Lugano, Switzerland
17:38 2m Poster		A Symmetry-Based $N$-Body Solver Compiler Posters Shigeyuki Sato The University of Tokyo
17:40 2m Poster		Renaissance: A Modern Benchmark Suite for Parallel Applications on the JVM Posters Aleksandar Prokopec Oracle Labs, Andrea Rosà University of Lugano, Switzerland, David Leopoldseder Johannes Kepler University Linz, Gilles Duboscq Oracle Labs, Petr Tuma Charles University, Martin Studener JKU Linz, Austria, Lubomír Bulej Charles University, Yudi Zheng Oracle Labs, Alex Villazón Universidad Privada Boliviana, Bolivia, Doug Simon Oracle Labs, Thomas Wuerthinger Oracle Labs, Walter Binder University of Lugano, Switzerland
17:43 2m Poster		MetaDL : Declarative Program Analysis for the Masses Posters Alexandru Dura Lund University, Hampus Balldin Lund University
17:46 2m Poster		Obsidian: Typestate and Assets for Safer Smart Contracts Posters Michael Coblenz Carnegie Mellon University, Jonathan Aldrich Carnegie Mellon University, Joshua Sunshine Carnegie Mellon University, Brad A. Myers Carnegie Mellon University
17:49 2m Poster		Component-Based Computation-Energy Modeling for Embedded Systems Posters Adam Seewald University of Southern Denmark, Ulrik Pagh Schultz University of Southern Denmark, Julius Roede University of Amsterdam, Benjamin Rouxel University of Amsterdam, Clemens Grelck University of Amsterdam
17:51 2m Poster		Distributed Object-oriented Programming with Multiple Consistency Levels in ConSysT Posters Nafise Eskandani Technische Universität Darmstadt, Mirko Köhler Technische Universität Darmstadt, Guido Salvaneschi Technische Universität Darmstadt
17:54 2m Poster		Comparison Between Object-Sensitivity and Call-Site-Sensitivity in Generalized k-Limited Context Abstraction Posters Minseok Jeon Korea University, South Korea, Sehun Jeong Korea University, South Korea, Hakjoo Oh Korea University
17:57 2m Poster		Automatically Fixing Memory-Leaks Posters Seongjoon Hong Korea University, Junhee Lee Korea University, South Korea, Jeongsoo Lee Korea University, Hakjoo Oh Korea University
18:00 2m Poster		Precise Safety Verification of Smart Contracts Posters Sunbeom So Korea University, Myungho Lee Korea University, Hakjoo Oh Korea University
18:02 2m Poster		Towards a WebAssembly Standalone Runtime on GraalVM Posters Salim S. Salim University of Manchester, Andrew Nisbet The University of Manchester, Mikel Luján University of Manchester
18:05 2m Poster		Performance, Portability, and Productivity for Data-Parallel Applications on Multi- and Many-Core Architectures Posters Ari Rasch University of Münster, Richard Schulze University of Münster, Sergei Gorlatch
18:08 2m Poster		Squirrel: An Extensible Distributed KV Store Posters Kevin De Porre , Elisa Gonzalez Boix Vrije Universiteit Brussel, Belgium Link to publication
18:10 2m Poster		Memory efficient CRDTs in dynamic environments Posters Jim Bauwens Vrije Universiteit Brussel, Elisa Gonzalez Boix Vrije Universiteit Brussel, Belgium Link to publication
18:13 2m Poster		Context-Oriented Live Programming Environments with Mixed Reality System for IoT Education Posters Ikuta Tanigawa Kyusyu University, Harumi Watanabe Tokai University, Nobuhiro Ohe Tokai Univ., Mikiko Sato Tokai University, Nobuhiko Ogura Tokyo City University, Takeshi Ohkawa Tokai Univ., Kenji Hisazumi Kyushu University, Akira Fukuda Kyushu University Link to publication
18:16 2m Poster		Generating a Fluent API with Syntax Checking from an LR Grammar Posters Tetsuro Yamazaki Graduate School of Information Science and Technology, The University of Tokyo, Tomoki Nakamaru Graduate School of Information Science and Technology, The University of Tokyo, Shigeru Chiba Graduate School of Information Science and Technology, The University of Tokyo, Kazuhiro Ichikawa Graduate School of Information Science and Technology, The University of Tokyo Link to publication
18:19 2m Poster		Multitier Reactive Programming in High Performance Computing Posters Daniel Sokolowski Technische Universität Darmstadt, Philipp Martens Technische Universität Darmstadt, Guido Salvaneschi Technische Universität Darmstadt Link to publication
18:21 2m Poster		Certifying Graph-Manipulating C Programs via Localizations within Data Structures Posters Shengyi Wang National University of Singapore, Qinxiang Cao Shanghai Jiao Tong University, Anshuman Mohan National University of Singapore, Aquinas Hobor National University of Singapore Link to publication DOI
18:24 2m Poster		Aroma: Code Recommendation via Structural Code Search Posters Sifei Luan Facebook, Inc., Di Yang University of California, Irvine, Celeste Barnaby Facebook, Inc., Koushik Sen University of California, Berkeley, Satish Chandra Facebook Link to publication
18:27 2m Poster		System FR: Formalized Foundations for the Stainless Verifier Posters Jad Hamza EPFL, Switzerland, Nicolas Voirol EPFL, Switzerland, Viktor Kunčak EPFL, Switzerland Link to publication
18:30 2m Poster		A Fault-Tolerant Programming Model for Distributed Interactive Applications Posters Ragnar Mogk Technische Universität Darmstadt, Joscha Drechsler Technische Universität Darmstadt, Guido Salvaneschi Technische Universität Darmstadt, Mira Mezini Technische Universität Darmstadt Link to publication
18:32 2m Poster		WARDuino: A Dynamic WebAssembly Virtual Machine for Programming Microcontrollers Posters Robbert Gurdeep Singh Universiteit Gent, Belgium, Christophe Scholliers Universiteit Gent, Belgium Link to publication
18:35 2m Poster		Automatic and Scalable Detection of Logical Errors in Functional Programming Assignments Posters Dowon Song Korea University, Myungho Lee Korea University, Hakjoo Oh Korea University Link to publication
18:38 2m Poster		Asphalion: Trustworthy Shielding against Byzantine Faults Posters Ivana Vukotic SnT, University of Luxembourg, Vincent Rahli University of Birmingham, Paulo Esteves-Veríssimo SnT, University of Luxembourg Link to publication
18:40 2m Poster		IVT: An Efficient Method for Sharing Subtype Polymorphic Objects Posters Yu-Ping Wang Tsinghua University, China, Xu-Qiang Hu Tsinghua Univeraity, China, Zi-Xin Zou Tsinghua Univeraity, China, Wende Tan Tsinghua University, China Link to publication
18:43 2m Poster		Turning Unobservable into Unreachable: Dynamic Reactive Programming without Leaks Posters David Richter Technical University of Darmstadt, Ragnar Mogk Technische Universität Darmstadt Link to publication
18:46 2m Poster		TLA+ model checking made symbolic Posters Igor Konnov Inria Nancy - Grand Est, France, Jure Kukovec TU Wien, Austria, Thanh-Hai Tran TU Wien, Austria Link to publication
18:49 2m Poster		Getafix: Learning to Fix Bugs Automatically Posters Johannes Bader Facebook, Andrew Scott Facebook, Michael Pradel University of Stuttgart, Satish Chandra Facebook Link to publication
18:51 2m Poster		Dependence-Aware, Unbounded Sound Predictive Race Detection Posters Kaan Genç Ohio State University, Jake Roemer Ohio State University, Yufan Xu Ohio State University, Michael D. Bond Ohio State University Link to publication
18:54 2m Poster		Effective Lock Handling in Stateless Model Checking Posters Michalis Kokologiannakis MPI-SWS, Germany, Azalea Raad MPI-SWS, Germany, Viktor Vafeiadis MPI-SWS, Germany Link to publication
18:57 2m Poster		Language-Integrated Privacy-Aware Distributed Queries Posters Guido Salvaneschi Technische Universität Darmstadt, Mirko Köhler Technische Universität Darmstadt, Daniel Sokolowski Technische Universität Darmstadt, Philipp Haller KTH Royal Institute of Technology, Sebastian Erdweg JGU Mainz, Mira Mezini Technische Universität Darmstadt Link to publication
19:00 2m Poster		I/O Dependent Idempotence Bugs in Intermittent Systems Posters Milijana Surbatovich Carnegie Mellon University, Limin Jia Carnegie Mellon University, Brandon Lucia Carnegie Mellon University Link to publication
19:02 2m Poster		Vision Paper: Generating Incremental Type Services Posters André Pacak JGU Mainz, Sebastian Erdweg JGU Mainz Link to publication
19:05 2m Poster		Static Analysis with Demand-Driven Value Refinement Posters Benno Stein University of Colorado Boulder, Benjamin Barslev Nielsen Aarhus University, Bor-Yuh Evan Chang University of Colorado Boulder \| Amazon, Anders Møller Aarhus University Link to publication
19:08 2m Poster		Improving Bug Detection via Context-based Code Representation Learning and Attention-based Neural Networks Posters Yi Li New Jersey Institute of Technology, USA, Shaohua Wang New Jersey Institute of Technology, USA, Tien N. Nguyen University of Texas at Dallas, Son Nguyen The University of Texas at Dallas Link to publication
19:10 2m Poster		Reflection in Attribute Grammars Posters Lucas Kramer University of Minnesota, Ted Kaminski University of Minnesota, Eric Van Wyk University of Minnesota, USA Link to publication
19:13 2m Poster		DeepSEA: A Language for Certified System Software Posters Vilhelm Sjöberg Yale University, Yuyang Sang Yale University, Shu-chun Weng Yale University, Zhong Shao Yale University Link to publication
19:16 2m Poster		Practical Second Futamura Projection Posters Florian Latifi Johannes Kepler University Linz
19:19 2m Poster		Gradual Program Analysis Posters Samuel Estep Liberty University, Jenna DiVincenzo (Wise) Carnegie Mellon University, Jonathan Aldrich Carnegie Mellon University, Éric Tanter University of Chile & Inria Paris, Johannes Bader Facebook
19:21 2m Poster		Incremental Scannerless Generalized LR Parsing Posters Maarten P. Sijm Delft University of Technology
19:24 2m Poster		Improving Performance and Quality of Database-Backed Software Posters Junwen Yang university of chicago, Cong Yan University of Washington, Chengcheng Wan The University of Chicago, Alvin Cheung University of California, Berkeley, Shan Lu University of Chicago
19:27 2m Poster		On the Fly Synthesis of Edit Suggestions Posters Anders Miltner Princeton University, Sumit Gulwani Microsoft, Vu Le Microsoft, Alan Leung Microsoft, Arjun Radhakrishna Microsoft, Gustavo Soares Microsoft, Ashish Tiwari Microsoft, Abhishek Udupa Microsoft Link to publication

Etherolic: A Concolic Execution System for Security Analysis of Smart Contracts

Thu 24 Oct
Displayed time zone: Beirut change

Mohammadreza Ashouri

University of Potsdam, Germany

Tracks

Co-hosted Conferences

Workshops

Co-hosted Symposia

Etherolic: A Concolic Execution System for Security Analysis of Smart Contracts

Program Display Configuration

Program Display Configuration

Thu 24 OctDisplayed time zone: Beirut change

Mohammadreza Ashouri

University of Potsdam, Germany

Thu 24 Oct
Displayed time zone: Beirut change