Historical analysis of decentralized applications
This report explores the development and application of automated tools and frameworks for analyzing Ethereum-based smart contracts, particularly within the decentralized finance (DeFi) sector. Smart contracts, which enable self-executing agreements, present unique challenges in terms of security...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | Final Year Project |
| Language: | English |
| Published: |
Nanyang Technological University
2024
|
| Subjects: | |
| Online Access: | https://hdl.handle.net/10356/181134 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Nanyang Technological University |
| Language: | English |
| id |
sg-ntu-dr.10356-181134 |
|---|---|
| record_format |
dspace |
| spelling |
sg-ntu-dr.10356-1811342024-11-15T12:30:22Z Historical analysis of decentralized applications Ng, Teng Hian Li Yi (SCSE) College of Computing and Data Science yi_li@ntu.edu.sg Computer and Information Science Smart contract Blockchain Decentralized application Analysis This report explores the development and application of automated tools and frameworks for analyzing Ethereum-based smart contracts, particularly within the decentralized finance (DeFi) sector. Smart contracts, which enable self-executing agreements, present unique challenges in terms of security and efficiency due to their immutable nature once deployed. The primary objective of this study is to develop methods that enhance the functionality of existing program analysis tools, such as InvCon, Diligent Fuzzing, Mythril, and Foundry, to provide a comprehensive understanding of smart contract behavior and to identify vulnerabilities and inefficiencies. The study outlines the use of InvCon for testing contract invariants, which ensures that smart contracts behave as expected under various conditions. Diligent Fuzzing is leveraged to uncover potential vulnerabilities in smart contracts by automatically generating and testing random inputs. Mythril is used to perform symbolic execution and taint analysis, identifying common security issues in smart contract code. Foundry is introduced as a powerful toolchain for managing the writing, testing, and deployment of smart contracts, streamlining the entire development lifecycle. Additionally, the concept of proxy contracts is explored, highlighting their importance in enabling contract upgradeability while preserving state. While the study encountered challenges, such as compatibility issues with older Solidity versions and the complexity of blockchain technology, it successfully establishes a foundation for future advancements in smart contract analysis. The findings illustrate the potential for automated testing to improve the security and functionality of decentralized applications. This report also provides recommendations for further research, including cross-chain compatibility, gas optimization, and the integration of AI-driven analysis frameworks. The methodologies developed here pave the way for more robust security practices in the blockchain ecosystem. Bachelor's degree 2024-11-15T12:30:22Z 2024-11-15T12:30:22Z 2024 Final Year Project (FYP) Ng, T. H. (2024). Historical analysis of decentralized applications. Final Year Project (FYP), Nanyang Technological University, Singapore. https://hdl.handle.net/10356/181134 https://hdl.handle.net/10356/181134 en SCSE23-1012 application/pdf Nanyang Technological University |
| institution |
Nanyang Technological University |
| building |
NTU Library |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
NTU Library |
| collection |
DR-NTU |
| language |
English |
| topic |
Computer and Information Science Smart contract Blockchain Decentralized application Analysis |
| spellingShingle |
Computer and Information Science Smart contract Blockchain Decentralized application Analysis Ng, Teng Hian Historical analysis of decentralized applications |
| description |
This report explores the development and application of automated tools and
frameworks for analyzing Ethereum-based smart contracts, particularly within the
decentralized finance (DeFi) sector. Smart contracts, which enable self-executing
agreements, present unique challenges in terms of security and efficiency due to their
immutable nature once deployed. The primary objective of this study is to develop
methods that enhance the functionality of existing program analysis tools, such as
InvCon, Diligent Fuzzing, Mythril, and Foundry, to provide a comprehensive
understanding of smart contract behavior and to identify vulnerabilities and
inefficiencies.
The study outlines the use of InvCon for testing contract invariants, which ensures that
smart contracts behave as expected under various conditions. Diligent Fuzzing is
leveraged to uncover potential vulnerabilities in smart contracts by automatically
generating and testing random inputs. Mythril is used to perform symbolic execution
and taint analysis, identifying common security issues in smart contract code. Foundry
is introduced as a powerful toolchain for managing the writing, testing, and
deployment of smart contracts, streamlining the entire development lifecycle.
Additionally, the concept of proxy contracts is explored, highlighting their importance
in enabling contract upgradeability while preserving state.
While the study encountered challenges, such as compatibility issues with older
Solidity versions and the complexity of blockchain technology, it successfully
establishes a foundation for future advancements in smart contract analysis. The
findings illustrate the potential for automated testing to improve the security and
functionality of decentralized applications. This report also provides recommendations
for further research, including cross-chain compatibility, gas optimization, and the
integration of AI-driven analysis frameworks. The methodologies developed here pave
the way for more robust security practices in the blockchain ecosystem. |
| author2 |
Li Yi (SCSE) |
| author_facet |
Li Yi (SCSE) Ng, Teng Hian |
| format |
Final Year Project |
| author |
Ng, Teng Hian |
| author_sort |
Ng, Teng Hian |
| title |
Historical analysis of decentralized applications |
| title_short |
Historical analysis of decentralized applications |
| title_full |
Historical analysis of decentralized applications |
| title_fullStr |
Historical analysis of decentralized applications |
| title_full_unstemmed |
Historical analysis of decentralized applications |
| title_sort |
historical analysis of decentralized applications |
| publisher |
Nanyang Technological University |
| publishDate |
2024 |
| url |
https://hdl.handle.net/10356/181134 |
| _version_ |
1816858963432439808 |