PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts

Zhijie Zhong; Zibin Zheng; Hong-Ning Dai; Qing Xue; Junjia Chen; Yuhong Nan

doi:10.1145/3597503.3639140

PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts

Zhijie Zhong
, Zibin Zheng^*
, Hong-Ning Dai
, Qing Xue
, Junjia Chen
, Yuhong Nan

^*Corresponding author for this work

Department of Computer Science

Research output: Chapter in book/report/conference proceeding › Conference proceeding › peer-review

8 Citations (Scopus)

Abstract

As an essential component in Ethereum and other blockchains, token assets have been interacted with by diverse smart contracts. Effective permission policies of smart contracts must prevent token assets from being manipulated by unauthorized adversaries. Recent efforts have studied the accessibility of privileged functions or state variables to unauthorized users. However, little attention is paid to how publicly accessible functions of smart contracts can be manipulated by adversaries to steal users' digital assets. This attack is mainly caused by the permission re-delegation (PRD) vulnerability. In this work, we propose PrettySmart, a bytecode-level Permission re-delegation vulnerability detector for Smart contracts. Our study begins with an empirical study on 0.43 million open-source smart contracts, revealing that five types of widely-used permission constraints dominate 98% of the studied contracts. Accordingly, we propose a mechanism to infer these permission constraints, as well as an algorithm to identify constraints that can be bypassed by unauthorized adversaries. Based on the identification of permission constraints, we propose to detect whether adversaries could manipulate the privileged token management functionalities of smart contracts. The experimental results on real-world datasets demonstrate the effectiveness of the proposed PrettySmart, which achieves the highest precision score and detects 118 new PRD vulnerabilities.

Original language	English
Title of host publication	ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering
Publisher	Association for Computing Machinery (ACM)
Pages	2073-2084
Number of pages	12
ISBN (Electronic)	9798400702174
ISBN (Print)	9798400702174
DOIs	https://doi.org/10.1145/3597503.3639140
Publication status	Published - May 2024
Event	IEEE/ACM 46th International Conference on Software Engineering - Lisbon, Portugal Duration: 14 Apr 2024 → 20 Apr 2024 https://dl.acm.org/doi/proceedings/10.1145/3597503

Publication series

Name	Proceedings of the IEEE/ACM International Conference on Software Engineering

Conference

Conference	IEEE/ACM 46th International Conference on Software Engineering
Country/Territory	Portugal
City	Lisbon
Period	14/04/24 → 20/04/24
Internet address	https://dl.acm.org/doi/proceedings/10.1145/3597503

User-Defined Keywords

Permission Control
Smart Contract
Vulnerability Detection

Access to Document

10.1145/3597503.3639140

Cite this

Zhong, Z., Zheng, Z., Dai, H.-N., Xue, Q., Chen, J., & Nan, Y. (2024). PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts. In ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering (pp. 2073-2084). Article 168 (Proceedings of the IEEE/ACM International Conference on Software Engineering). Association for Computing Machinery (ACM). https://doi.org/10.1145/3597503.3639140

Zhong, Zhijie ; Zheng, Zibin ; Dai, Hong-Ning et al. / PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts. ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering. Association for Computing Machinery (ACM), 2024. pp. 2073-2084 (Proceedings of the IEEE/ACM International Conference on Software Engineering).

@inproceedings{16b7d1d51b6748b788f1f025ad671811,

title = "PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts",

abstract = "As an essential component in Ethereum and other blockchains, token assets have been interacted with by diverse smart contracts. Effective permission policies of smart contracts must prevent token assets from being manipulated by unauthorized adversaries. Recent efforts have studied the accessibility of privileged functions or state variables to unauthorized users. However, little attention is paid to how publicly accessible functions of smart contracts can be manipulated by adversaries to steal users' digital assets. This attack is mainly caused by the permission re-delegation (PRD) vulnerability. In this work, we propose PrettySmart, a bytecode-level Permission re-delegation vulnerability detector for Smart contracts. Our study begins with an empirical study on 0.43 million open-source smart contracts, revealing that five types of widely-used permission constraints dominate 98\% of the studied contracts. Accordingly, we propose a mechanism to infer these permission constraints, as well as an algorithm to identify constraints that can be bypassed by unauthorized adversaries. Based on the identification of permission constraints, we propose to detect whether adversaries could manipulate the privileged token management functionalities of smart contracts. The experimental results on real-world datasets demonstrate the effectiveness of the proposed PrettySmart, which achieves the highest precision score and detects 118 new PRD vulnerabilities.",

keywords = "Permission Control, Smart Contract, Vulnerability Detection",

author = "Zhijie Zhong and Zibin Zheng and Hong-Ning Dai and Qing Xue and Junjia Chen and Yuhong Nan",

note = "The work described in this paper is partially supported by the Technology Program of Guangzhou, China (No. 202103050004), the National Natural Science Foundation of China (62032025), and the COMP Department Start-up Fund of Hong Kong Baptist University. Publisher Copyright: {\textcopyright} 2024 ACM.; IEEE/ACM 46th International Conference on Software Engineering ; Conference date: 14-04-2024 Through 20-04-2024",

year = "2024",

month = may,

doi = "10.1145/3597503.3639140",

language = "English",

isbn = "9798400702174",

series = "Proceedings of the IEEE/ACM International Conference on Software Engineering",

publisher = "Association for Computing Machinery (ACM)",

pages = "2073--2084",

booktitle = "ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering",

address = "United States",

url = "https://dl.acm.org/doi/proceedings/10.1145/3597503",

}

Zhong, Z, Zheng, Z, Dai, H-N, Xue, Q, Chen, J & Nan, Y 2024, PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts. in ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering., 168, Proceedings of the IEEE/ACM International Conference on Software Engineering, Association for Computing Machinery (ACM), pp. 2073-2084, IEEE/ACM 46th International Conference on Software Engineering, Lisbon, Portugal, 14/04/24. https://doi.org/10.1145/3597503.3639140

PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts. / Zhong, Zhijie; Zheng, Zibin; Dai, Hong-Ning et al.
ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering. Association for Computing Machinery (ACM), 2024. p. 2073-2084 168 (Proceedings of the IEEE/ACM International Conference on Software Engineering).

Research output: Chapter in book/report/conference proceeding › Conference proceeding › peer-review

TY - GEN

T1 - PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts

AU - Zhong, Zhijie

AU - Zheng, Zibin

AU - Dai, Hong-Ning

AU - Xue, Qing

AU - Chen, Junjia

AU - Nan, Yuhong

N1 - The work described in this paper is partially supported by the Technology Program of Guangzhou, China (No. 202103050004), the National Natural Science Foundation of China (62032025), and the COMP Department Start-up Fund of Hong Kong Baptist University. Publisher Copyright: © 2024 ACM.

PY - 2024/5

Y1 - 2024/5

N2 - As an essential component in Ethereum and other blockchains, token assets have been interacted with by diverse smart contracts. Effective permission policies of smart contracts must prevent token assets from being manipulated by unauthorized adversaries. Recent efforts have studied the accessibility of privileged functions or state variables to unauthorized users. However, little attention is paid to how publicly accessible functions of smart contracts can be manipulated by adversaries to steal users' digital assets. This attack is mainly caused by the permission re-delegation (PRD) vulnerability. In this work, we propose PrettySmart, a bytecode-level Permission re-delegation vulnerability detector for Smart contracts. Our study begins with an empirical study on 0.43 million open-source smart contracts, revealing that five types of widely-used permission constraints dominate 98% of the studied contracts. Accordingly, we propose a mechanism to infer these permission constraints, as well as an algorithm to identify constraints that can be bypassed by unauthorized adversaries. Based on the identification of permission constraints, we propose to detect whether adversaries could manipulate the privileged token management functionalities of smart contracts. The experimental results on real-world datasets demonstrate the effectiveness of the proposed PrettySmart, which achieves the highest precision score and detects 118 new PRD vulnerabilities.

AB - As an essential component in Ethereum and other blockchains, token assets have been interacted with by diverse smart contracts. Effective permission policies of smart contracts must prevent token assets from being manipulated by unauthorized adversaries. Recent efforts have studied the accessibility of privileged functions or state variables to unauthorized users. However, little attention is paid to how publicly accessible functions of smart contracts can be manipulated by adversaries to steal users' digital assets. This attack is mainly caused by the permission re-delegation (PRD) vulnerability. In this work, we propose PrettySmart, a bytecode-level Permission re-delegation vulnerability detector for Smart contracts. Our study begins with an empirical study on 0.43 million open-source smart contracts, revealing that five types of widely-used permission constraints dominate 98% of the studied contracts. Accordingly, we propose a mechanism to infer these permission constraints, as well as an algorithm to identify constraints that can be bypassed by unauthorized adversaries. Based on the identification of permission constraints, we propose to detect whether adversaries could manipulate the privileged token management functionalities of smart contracts. The experimental results on real-world datasets demonstrate the effectiveness of the proposed PrettySmart, which achieves the highest precision score and detects 118 new PRD vulnerabilities.

KW - Permission Control

KW - Smart Contract

KW - Vulnerability Detection

UR - https://www.scopus.com/pages/publications/85196827779

U2 - 10.1145/3597503.3639140

DO - 10.1145/3597503.3639140

M3 - Conference proceeding

SN - 9798400702174

T3 - Proceedings of the IEEE/ACM International Conference on Software Engineering

SP - 2073

EP - 2084

BT - ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering

PB - Association for Computing Machinery (ACM)

T2 - IEEE/ACM 46th International Conference on Software Engineering

Y2 - 14 April 2024 through 20 April 2024

ER -

Zhong Z, Zheng Z, Dai HN, Xue Q, Chen J, Nan Y. PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts. In ICSE '24: Proceedings of the IEEE/ACM 46th International Conference on Software Engineering. Association for Computing Machinery (ACM). 2024. p. 2073-2084. 168. (Proceedings of the IEEE/ACM International Conference on Software Engineering). Epub 2024 Apr 12. doi: 10.1145/3597503.3639140

PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts

Abstract

Publication series

Conference

User-Defined Keywords

Access to Document

Other files and links

Fingerprint

Cite this