SolGuard: Preventing External Call Issues in Smart Contract-based Multi-Agent Robotic Systems

Praitheeshan, Purathani, Pan, Lei, Zheng, X, Jolfaei, A and Ram Mohan Doss, Robin 2021, SolGuard: Preventing External Call Issues in Smart Contract-based Multi-Agent Robotic Systems, Information Sciences, vol. 579, pp. 150-166, doi: 10.1016/j.ins.2021.08.007.

Attached Files
Name Description MIMEType Size Downloads

Title SolGuard: Preventing External Call Issues in Smart Contract-based Multi-Agent Robotic Systems
Author(s) Praitheeshan, PurathaniORCID iD for Praitheeshan, Purathani orcid.org/0000-0002-4691-8330
Pan, Lei
Zheng, X
Jolfaei, AORCID iD for Jolfaei, A orcid.org/0000-0001-6143-6850
Ram Mohan Doss, Robin
Journal name Information Sciences
Volume number 579
Start page 150
End page 166
Total pages 17
Publisher Elsevier
Place of publication Amsterdam, The Netherlands
Publication date 2021-11
ISSN 0020-0255
Keyword(s) Blockchain-based autonomous robotics systems
Smart contract
Solidity
Security vulnerabilities
External call
Summary In the new era of blockchain-based multi-agent robotic systems, smart contract programs perform an influential role in implementing decentralized applications with required task allocations. Smart contract programs are developed using script-type of programming languages, and they have already deployed several vulnerable patterns without proper testing and audit. We studied Solidity smart contracts running on the Ethereum platform and identified that they had been exploited because of several programming issues, especially using low-level external calls to malicious sources. Since smart contracts are immutable after their deployment to autonomous multi-robot systems, they should be tested to fix possible development phase issues. We implemented a prototype plugin called SolGuard by extending the solhint linter to prevent three critical issues related to Solidity smart contract programs’ usage of external calls. The SolGuard plugin checks state variable order in the smart contracts, participation of delegatecall invocations, address type parameters in the smart contract’s constructor, and denial of service patterns. We empirically evaluate the SolGuard plugin with existing popular static analysis tools. Our results indicate that SolGuard outperformed the baseline tools in terms of efficiency and accuracy.
Language eng
DOI 10.1016/j.ins.2021.08.007
Field of Research 01 Mathematical Sciences
08 Information and Computing Sciences
09 Engineering
HERDC Research category C1 Refereed article in a scholarly journal
Persistent URL http://hdl.handle.net/10536/DRO/DU:30154262

Document type: Journal Article
Collections: Faculty of Health
School of Information Technology
Connect to link resolver
 
Unless expressly stated otherwise, the copyright for items in DRO is owned by the author, with all rights reserved.

Versions
Version Filter Type
Citation counts: TR Web of Science Citation Count  Cited 0 times in TR Web of Science
Scopus Citation Count Cited 0 times in Scopus
Google Scholar Search Google Scholar
Access Statistics: 16 Abstract Views, 1 File Downloads  -  Detailed Statistics
Created: Fri, 06 Aug 2021, 09:39:54 EST

Every reasonable effort has been made to ensure that permission has been obtained for items included in DRO. If you believe that your rights have been infringed by this repository, please contact drosupport@deakin.edu.au.