Lack of Diversity in Ethereum Smart Contracts Pose Risks to Whole Ecosystem, Report Says

Published at: Nov. 3, 2018

A lack of diversity of Ethereum (ETH) smart contracts poses a threat to Ethereum blockchain ecosystem, according to research by a group of analysts from Northeastern University and the University of Maryland released on Oct. 31.

The paper, entitled “Analyzing Ethereum’s Contract Topology,” claims that most Ethereum smart contracts are “direct- or near-copies of other contracts,” which represents a potential risk if a copied smart contract contains a vulnerable or a buggy code.

Partially supported by the U.S. National Science Foundation, the study has analyzed Ethereum smart contracts’ bytecodes during its first 5 million blocks, which covers almost a three-year time frame from the cryptocurrency’s inception in 2015. The researchers have also collected and modified data via Ethereum’s virtual machine, dubbed geth, in order to log all interactions between contracts and their users.

To date, Ethereum smart contracts are “three times more likely to be created by other contracts” than by users, the study found. Moreover, over 60 percent of contracts “have never been interacted with,” while less than 10 percent of users-backed contracts are unique. The research stated that there is a significant reuse of code on Ethereum, which can allegedly have a “widespread impact on the Ethereum user population,” despite the fact that it is also likely a “driving force behind Ethereum’s success.”

Considering the low diversity of smart contracts on Ethereum as a potential risk to its whole blockchain ecosystem, the researchers mentioned that Ethereum has become a subject of “high-profile bugs” several times, resulting in over $170 million worth of cryptocurrency being frozen. The research concluded that multiple implementations of “core contract functionality” on Ethereum would eventually provide “greater defense-in-depth to Ethereum.”

Developed by Vitalik Buterin, Ethereum is a public, open-sourced blockchain-based platform that features smart contracts as well as its native cryptocurrency Ether. Launched on July 30, 2015, Ethereum is now the second biggest cryptocurrency by market cap at around $20.6 billion, with its price standing at $200 as of press time.

In mid-October, Cointelegraph reported on a security breach of Ethereum smart contracts that caused a loss of around $38,000 for adult entertainment platform SpankChain and its users.

In April 2018, the now second largest crypto exchange by trade volume OKEX suspended all ERC20 token deposits after detecting a “new smart contract bug,” which reportedly allowed hackers to “generate an extremely large amount of tokens, and deposit them into a normal address.”

Tags
Blockchain
United States
Ethereum
Cryptocurrencies
Smart Contracts
Science
Related Posts
Blockchain Trust Company Paxos Launches NY Regulator-Approved, USD-Backed Stablecoin
Blockchain Trust company Paxos has launched a U.S.-dollar backed stablecoin following approval from New York regulators, according to a press release published September 10. Backed 1:1 by the dollar, the Ethereum blockchain-based stablecoin, dubbed ‘Paxos Standard,’ has been approved by the New York State Department of Financial Services (NYDFS), which will exercise regulatory oversight over the asset’s issuance and trading. Paxos itself is a Trust company and is positions itself as “a fiduciary and qualified custodian of customer funds,” pitching its new coin as offering “greater protections” for customer assets than its competitors. According to today’s press release, investors’ dollar …
Blockchain / Sept. 10, 2018
Bitkraft VC launches $75M investment fund for blockchain gaming
Esports, gaming and interactive media investment platform Bitkraft VC has established a $75-million token fund for investing in blockchain gaming and digital entertainment. The fund uses a “stage-agnostic” strategy, meaning that it will put money in companies and startups at any business development stage. Apart from equity investment, the token fund will also invest in cryptocurrencies and nonfungible tokens (NFT). In order to provide regulated investment opportunities, Bitkraft received an investment advisor registration from the United States Securities and Exchange Commission in June 2021. The new token fund is led by Piers Kicks, a founding partner in the investment arm …
Blockchain / Oct. 8, 2021
Kik’s Claims About Kin Blockchain ‘Inaccurate,’ Coin Metrics Report Alleges
Kik has made inaccurate claims about activity on its blockchain to the United States Securities and Exchange Commission (SEC,) a Coin Metrics report alleged on June 24. The report focused on two assertions made by the company about its Kin blockchain and eponymous cryptocurrency. In a November 2018 letter, Kik had claimed that its blockchain had “exceeded Ether and Bitcoin in daily blockchain activity, demonstrating Kin’s wide acceptance and adoption.” Coin Metrics claims daily operations, the measurement Kik used to gauge activity on its blockchain, included a high number of account creations — but many of these accounts were being …
Blockchain / June 24, 2019
New Report Reviews Blockchain Applications by US Federal Government
The research organization Data Foundation and IT firm Booz Allen Hamilton have published a report with five proposed questions to guide the United States federal government on where and how to implement blockchain initiatives. Their research was published in the report “Bringing Blockchain Into Government: A Path Forward for Creating Effective Federal Blockchain Initiatives” on June 10. According to the report, blockchain solutions make the most sense when applied to some sort of procedure with a predetermined level of consistency and a low level of agility, assuming that the immutable ledger provided by blockchain is valuable for the task in …
Blockchain / June 11, 2019
Fighting Crypto Hacks: Company Tackles Security Issues in Ethereum Smart Contracts
A decentralized, open-source crypto platform based on the Ethereum protocol named Callisto Network offers users free-of-charge smart contract security audits. The company wants to support them in the battle against cyber criminals and help developers solve security issues in Ethereum codes. Blockchain audit One of the most common crypto crimes nowadays is hacking exchanges. According to the reports of crypto analytics companies Chainalysis and CipherTrace, cyber criminals generated around $1 billion in revenue in 2018. During the latest attacks, users lost 1.35 million Bitcoin (BTC) in the Mt. Gox hack and 24,000 BTC in BitFloor. The Callisto Network calls itself …
Blockchain / March 13, 2019