Program code stored on the Ethereum blockchain is considered immutable, but this does not imply that its control flow cannot be modified. This bears the risk of loopholes whenever parties encode binding agreements in smart contracts. In order to quantify the issue, we define a heuristic indicator of control flow immutability, evaluate it based on a call graph of all smart contracts deployed on Ethereum, and find that two out of five smart contracts require trust in at least one third party. Besides, the analysis reveals that significant parts of the Ethereum blockchain are interspersed with debris from past attacks against the platform. We leverage the call graph to develop a method for data cleanup, which allows for less biased statistics of Ethereum use in practice.
CITATION STYLE
Fröwis, M., & Böhme, R. (2017). In code we trust?: Measuring the control flow immutability of all smart contracts deployed on ethereum. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 10436 LNCS, pp. 357–372). Springer Verlag. https://doi.org/10.1007/978-3-319-67816-0_20
Mendeley helps you to discover research relevant for your work.