Multi-Class classification of vulnerabilities in smart contracts using AWD-LSTM, with pre-trained encoder inspired from natural language processing

IOP SciNotes Pub Date : 2020-03-21 DOI:10.1088/2633-1357/abcd29

Ajay K. Gogineni, S. Swayamjyoti, Devadatta Sahoo, K. Sahu, R. Kishore

{"title":"Multi-Class classification of vulnerabilities in smart contracts using AWD-LSTM, with pre-trained encoder inspired from natural language processing","authors":"Ajay K. Gogineni, S. Swayamjyoti, Devadatta Sahoo, K. Sahu, R. Kishore","doi":"10.1088/2633-1357/abcd29","DOIUrl":null,"url":null,"abstract":"Vulnerability detection and safety of smart contracts are of paramount importance because of their immutable nature. Symbolic tools like OYENTE and MAIAN are typically used for vulnerability prediction in smart contracts. As these tools are computationally expensive, they are typically used to detect vulnerabilities until some predefined invocation depth. These tools require more search time as the invocation depth increases. Since the use of smart contracts increases rapidly, their analysis becomes difficult using these traditional tools. Recently, a machine learning technique called Long Short Term Memory (LSTM) has been used to predict the vulnerability of a smart contract. In the present article, we present how to classify smart contracts into Suicidal, Prodigal, Greedy, or Normal categories using Average Stochastic Gradient Descent Weight-Dropped LSTM (AWD-LSTM), a variant of LSTM. We reduced the class imbalance by considering only distinct opcode combinations for normal contracts and achieved a weighted average F1 score of 90.0%. Such techniques can be utilized in real-time to analyze a large number of smart contracts and to improve their security.","PeriodicalId":93771,"journal":{"name":"IOP SciNotes","volume":" ","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2020-03-21","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"15","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IOP SciNotes","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1088/2633-1357/abcd29","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 15

Abstract

Vulnerability detection and safety of smart contracts are of paramount importance because of their immutable nature. Symbolic tools like OYENTE and MAIAN are typically used for vulnerability prediction in smart contracts. As these tools are computationally expensive, they are typically used to detect vulnerabilities until some predefined invocation depth. These tools require more search time as the invocation depth increases. Since the use of smart contracts increases rapidly, their analysis becomes difficult using these traditional tools. Recently, a machine learning technique called Long Short Term Memory (LSTM) has been used to predict the vulnerability of a smart contract. In the present article, we present how to classify smart contracts into Suicidal, Prodigal, Greedy, or Normal categories using Average Stochastic Gradient Descent Weight-Dropped LSTM (AWD-LSTM), a variant of LSTM. We reduced the class imbalance by considering only distinct opcode combinations for normal contracts and achieved a weighted average F1 score of 90.0%. Such techniques can be utilized in real-time to analyze a large number of smart contracts and to improve their security.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

使用AWD-LSTM对智能合约中的漏洞进行多类分类，预训练编码器的灵感来自自然语言处理

智能合约的漏洞检测和安全至关重要，因为它们具有不可变的性质。OYENTE和MAIAN等符号工具通常用于智能合约中的漏洞预测。由于这些工具的计算成本很高，它们通常用于检测漏洞，直到达到某种预定义的调用深度。随着调用深度的增加，这些工具需要更多的搜索时间。由于智能合约的使用迅速增加，使用这些传统工具对其进行分析变得困难。最近，一种名为长短期内存（LSTM）的机器学习技术已被用于预测智能合约的漏洞。在本文中，我们介绍了如何使用LSTM的一种变体——平均随机梯度下降加权LSTM（AWD-LSTM）将智能合约分类为自杀、浪子、贪婪或正常类别。我们通过只考虑正常合同的不同操作码组合来减少类不平衡，并获得90.0%的加权平均F1分数。这些技术可以实时用于分析大量智能合同并提高其安全性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

IOP SciNotes

自引率

0.00%

发文量

审稿时长

14 weeks