all InfoSec news
Demystifying Random Number in Ethereum Smart Contract: Taxonomy, Vulnerability Identification, and Attack Detection. (arXiv:2304.12645v1 [cs.SE])
cs.CR updates on arXiv.org arxiv.org
Recent years have witnessed explosive growth in blockchain smart contract
applications. As smart contracts become increasingly popular and carry trillion
dollars worth of digital assets, they become more of an appealing target for
attackers, who have exploited vulnerabilities in smart contracts to cause
catastrophic economic losses. Notwithstanding a proliferation of work that has
been developed to detect an impressive list of vulnerabilities, the bad
randomness vulnerability is overlooked by many existing tools. In this paper,
we make the first attempt …
analysis applications assets attack attackers bad blockchain contract detect detection digital digital assets economic ethereum exploited growth identification losses popular proliferation random randomness smart smart contract smart contracts target tools vulnerabilities vulnerability work