Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/hzysvilla/Academic_Smart_Contract_Papers
Academic Smart Contract Papers. Welcome developers or researchers to add more published papers to this list.
https://github.com/hzysvilla/Academic_Smart_Contract_Papers
Last synced: 3 months ago
JSON representation
Academic Smart Contract Papers. Welcome developers or researchers to add more published papers to this list.
- Host: GitHub
- URL: https://github.com/hzysvilla/Academic_Smart_Contract_Papers
- Owner: hzysvilla
- License: gpl-3.0
- Created: 2020-09-04T06:25:00.000Z (almost 4 years ago)
- Default Branch: master
- Last Pushed: 2024-03-31T01:17:44.000Z (3 months ago)
- Last Synced: 2024-03-31T05:40:48.121Z (3 months ago)
- Homepage:
- Size: 6.65 MB
- Stars: 338
- Watchers: 15
- Forks: 36
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Lists
- DeFi-Developer-Road-Map - Academic_Smart_Contract_Papers
- ultimate-defi-research-base - Academic_Smart_Contract_Papers
README
# Academic Smart Contract Papers
A curated Smart Contract related academic papers. All papers are sorted based on the conference name and published year.
**Welcome developers or researchers to add more published papers to this list**.
You can find my **[TLDR](TLDR.md)** notes for some papers.
The cryptocurrency donation address: 0xCC28B05fE858CDbc8692E3272A4451111bDCf700.
Welcome to visit my [homepage](https://hzysvilla.github.io/) and [Google Scholar](https://scholar.google.com/citations?user=O_vixKoAAAAJ).
## Table of Listed Conferences
| Security & Crypto | Networking & Database | Software Engineering & Programming Language | System Architecture |
| :---------------------------------: | :-----------------------------------------------: | :-----------------------------------------: | :------------------: |
| [IEEE S&P](#sp) | [SIGMETRICS](#sigmetrics) | [ICSE](#icse) | [EuroSys](#others) |
| [ACM CCS](#ccs) | [ICDE](#others) | [ESEC/FSE](#esecfse) | [ACM SOSP](#sosp) |
| [USENIX Security](#usenix-security) | [VLDB](#others) | [ASE](#ase) | [IEEE ICDCS](#icdcs)|
| [NDSS](#ndss) | [ACM SIGMOD](#others) | [ACM PLDI](#pldi) | [OSDI](#osdi) |
| [IEEE DSN](#dsn) | [IEEE INFOCOM](#infocom) | [ACM OOPSLA](#oopsla) | [Usenix ATC](#others)|
| [SRCS](#others) | [IMC](#imc) | [ISSTA](#issta) | |
| [RAID](#raid) | [WWW](#www) | [ACM POPL](#popl) | |
| [CAV](#cav) | | | |
## Table of Listed Journals
- [TOSEM](#tosem)
- [TSE](#tse)
- [TDSC](#tdsc)
- [TIFS](#tifs)
### Also including:
* [CSFW](#miscellaneous), [CHI](#miscellaneous), [ICPC](#miscellaneous), [TPDS](#miscellaneous), [HPC](#miscellaneous), [POMACS](#miscellaneous), [AsiaCCS](#miscellaneous), [IJCAI](#miscellaneous), [SC](#miscellaneous), [SIGKDD](#miscellaneous), [JSAC](#miscellaneous), [DAC](#miscellaneous), [TOPLAS](#miscellaneous), [ISCA](#miscellaneous).
---
# Conference
-----
## S&P
### 2024
[security] [NURGLE: Exacerbating Resource Consumption in Blockchain State Storage via MPT Manipulation](https://github.com/hzysvilla/Nurgle_Oakland24/blob/main/Nurgle_oakland24.pdf).
[security] [Specular: Towards Secure, Trust-minimized Optimistic Blockchain Execution]().
[security] [Towards Smart Contract Fuzzing on GPUs]().
[security] [SMARTINV: Multimodal Learning for Smart Contract Invariant Inference]()| **[MyTLDR](TLDR.md#24_2_22)**.
[security] [Nyx: Detecting Exploitable Front-Running Vulnerabilities in Smart Contracts](papers/sp24_Nyx.pdf) | **[MyTLDR](TLDR.md#24_2_12)**.
[security] [Optimal Flexible Consensus and its Application to Ethereum]().
### 2023
[security] [Chronos: Finding Timeout Bugs in Practical Distributed Systems by Deep-Priority Fuzzing with Transient Delay](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/paper_from_24/Chronos_sp24.pdf).
[financail] [WeRLman: To Tackle Whale (Transactions), Go Deep (RL)](https://roibarzur.github.io/assets/pdfs/werlman-systor-poster-2022.pdf) | **[MyTLDR](TLDR.md#sp23_WeRLman)**.
[security] [Clockwork Finance: Automated Analysis of Economic Security in Smart Contracts](https://eprint.iacr.org/2021/1147.pdf) | **[MyTLDR](TLDR.md#sp23_CF)**.
[security] [SoK: Decentralized Finance (DeFi) Attacks](https://arxiv.org/pdf/2208.13035.pdf) | **[MyTLDR](TLDR.md#sp23_CF)**.
[security] [Tyr: Finding Consensus Failure Bugs in Blockchain System with Behaviour Divergent Model](https://csdl-downloads.ieeecomputer.org/proceedings/sp/2023/9336/00/933600b186.pdf).
[security] [Three Birds with One Stone: Efficient Partitioning Attacks on Interdependent Cryptocurrency Networks]() | **[MyTLDR](TLDR.md#23_8_27)**.
### 2022
[security] [Quantifying Blockchain Extractable Value: How dark is the forest?](https://arxiv.org/pdf/2101.05511.pdf) | **[MyTLDR](TLDR.md#23_8_28)**.
[security] [SAILFISH: Vetting Smart Contract State-Inconsistency Bugs in Seconds](https://arxiv.org/pdf/2104.08638.pdf).
### 2021
[security] [SmartPulse: Automated Checking of Temporal Properties in Smart Contracts](https://www.microsoft.com/en-us/research/uploads/prod/2021/02/SmartPulse-Oakland21-preprint.pdf) | **[MyTLDR](TLDR.md#23_10_7)**.
[security] [sGUARD: Towards Fixing Vulnerable Smart Contracts Automatically](https://arxiv.org/abs/2101.01917)
[finance] [On the Just-In-Time Discovery of Profit-Generating Transactions in DeFi Protocols](https://arxiv.org/pdf/2103.02228).
[security] [Compositional Security for Reentrant Applications](https://arxiv.org/abs/2103.08577) | **[MyTLDR](TLDR.md#23_10_24)**.
[security] [High-Frequency Trading on Decentralized On-Chain Exchanges](https://arxiv.org/pdf/2009.14021.pdf).
### 2020
[security] [Flash Boys 2.0: Frontrunning in Decentralized Exchanges, Miner Extractable Value, and Consensus Instability](https://par.nsf.gov/servlets/purl/10159474).
[security] [VerX: Safety Verification of Smart Contracts](https://files.sri.inf.ethz.ch/website/papers/sp20-verx.pdf) | **[MyTLDR](TLDR.md#23_10_9)**.
[security] [VeriSmart: A Highly Precise Safety Verifier for Ethereum Smart Contracts](https://arxiv.org/pdf/1908.11227.pdf).
[security] [Executable Operational Semantics of Solidity](https://arxiv.org/pdf/1804.01295.pdf) | **[MyTLDR](TLDR.md#23_11_5)**.
### 2016
[application] [Hawk: The Blockchain Model of Cryptography and Privacy-Preserving Smart Contracts](https://eprint.iacr.org/2015/675.pdf).
---
## CCS
### 2023
[security] [Demystifying DeFi MEV Activities in Flashbots Bundle](https://zzzihao-li.github.io/papers/CCS23_Bundle_MEV_full_version.pdf) | **[MyTLDR](TLDR.md#23_9_25)**.
[security] [The Locality of Memory Checking](/papers/ccs23__Locality_of_Memory_Checking.pdf)
[security] [Lanturn: Measuring Economic Security of Smart Contracts Through Adaptive Learning](https://eprint.iacr.org/2023/1338) | **[MyTLDR](TLDR.md#23_12_6)**.
[security] [Under the Dark: A Systematical Study of Stealthy Mining Pools (Ab)use in the Wild]().
[security] [TxPhishScope: Towards Detecting and Understanding Transaction-based Phishing on Ethereum](https://yajin.org/papers/ccs23_phishing.pdf) | **[MyTLDR](TLDR.md#23_11_25)**.
[security] [How Hard is Takeover in DPoS Blockchains? Understanding the Security of Coin-based Voting Governance]().
[security] [Uncovering Impact of Mental Models towards Adoption of Multi-device Crypto-Wallets]().
[security] [Uncle Maker: (Time)Stamping Out The Competition in Ethereum](https://eprint.iacr.org/2022/1020.pdf) | **[MyTLDR](TLDR.md#24_3_19)**.
[security] [TrustBoost: Boosting Trust among Interoperable Blockchains]().
[security] [Analyzing the Real-World Security of the Algorand Blockchain]().
[security] [Phoenix: Detect and Locate Resilience Issues in Blockchain via Context-Sensitive Chaos](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/CCS23.pdf) | **[MyTLDR](TLDR.md#23_10_18)**.
[security] [Fuzz on the Beach: Fuzzing Solana Smart Contracts](https://arxiv.org/pdf/2309.03006.pdf) | **[MyTLDR](TLDR.md#23_9_28)**.
[security] [Cybercrime Bitcoin Revenue Estimations: Quantifying the Impact of Methodology and Coverage]().
### 2022
[security] [Empirical Analysis of EIP-1559: Transaction Fees, Waiting Time, and Consensus Security](https://arxiv.org/pdf/2201.05574.pdf).
[security] [Towards Automated Safety Vetting of Smart Contracts in Decentralized Applications](https://yueduan.github.io/pub/smart_contracts_analysis__ccs22.pdf) | **[MyTLDR](TLDR.md#23_9_2)**.
[security] [VRust: Automated Vulnerability Detection for Solana Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3548606.3560552) | **[MyTLDR](TLDR.md#ccs22_vrust)**.
[security] [Watch Your Back: Identifying Cybercrime Financial Relationships in Bitcoin through Back-and-Forth Exploration](https://dl.acm.org/doi/pdf/10.1145/3548606.3560587).
[security] [Understanding Security Issues in the NFT Ecosystem](https://arxiv.org/pdf/2305.15829.pdf).
### 2021
[security] [DETER: Denial of Ethereum Txpool sERvices](https://dl.acm.org/doi/pdf/10.1145/3460120.3485369).
[security] [SyncAttack: Double-spending in Bitcoin Without Mining Power](https://dl.acm.org/doi/pdf/10.1145/3460120.3484568).
### 2020
[security] [ACE: Asynchronous and Concurrent Execution of Complex Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3372297.3417243) | **[MyTLDR](TLDR.md#23_11_18)**.
[security] [eThor: Practical and Provably Sound Static Analysis of Ethereum Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3372297.3417250).
[security] [Bdos: Blockchain denial-of-service]().
### 2019
[SoftwareAnalysis] [TokenScope: Automatically Discovering Inconsistent Cryptocurrency Tokens](https://dl.acm.org/doi/pdf/10.1145/3319535.3345664).
[security] [Learning to Fuzz from Symbolic Execution with Application to Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3319535.3363230). | **[MyTLDR](TLDR.md#24_2_6)**.
[security] [Zkay: Specifying and Enforcing Data Privacy in Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3319535.3363222).
### 2018
[security] [Securify: Practical Security Analysis of Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3243734.3243780).
[security] [BitML: a calculus for Bitcoin smart contracts Massimo](https://dl.acm.org/doi/pdf/10.1145/3243734.3243795).
### 2017
[security] [Betrayal, Distrust, and Rationality: Smart Counter-Collusion Contracts for Verifiable Cloud Computing](https://dl.acm.org/doi/pdf/10.1145/3133956.3134032).
### 2016
[security] [Making Smart Contracts Smarter](https://dl.acm.org/doi/pdf/10.1145/2976749.2978309) | **[MyTLDR](TLDR.md#23_11_20)**.
[security] [Formal verification of smart contracts: Short paper](https://dl.acm.org/doi/10.1145/2993600.2993611).
[security] [Town crier: An authenticated data feed for smart contracts](https://dl.acm.org/doi/pdf/10.1145/2976749.2978326).
---
## USENIX Security
### 2024
[security] [Practical Security Analysis of Zero-Knowledge Proof Circuits](https://eprint.iacr.org/2023/190.pdf) | **[MyTLDR](TLDR.md#23_9_30)**.
### 2023
[security] [Smart Learning to Find Dumb Contracts](https://www.usenix.org/system/files/usenixsecurity23-abdelaziz.pdf).
[security] [Confusum Contractum: Confused Deputy Vulnerabilities in Ethereum Smart Contracts](https://www.usenix.org/system/files/usenixsecurity23-gritti.pdf).
[security] [Panda: Security Analysis of Algorand Smart Contracts](https://arxiv.org/pdf/2009.02663).
[security] [Proxy Hunting: Understanding and Characterizing Proxy-based Upgradeable Smart Contracts in Blockchains](https://yueduan.github.io/pub/uschunt_usenix23.pdf).
[security] [The Blockchain Imitation Game](https://www.usenix.org/system/files/sec23fall-prepub-331-qin.pdf).
[security] [A Large Scale Study of the Ethereum Arbitrage Ecosystem](https://www.usenix.org/system/files/sec23fall-prepub-515-mclaughlin.pdf) | **[MyTLDR](TLDR.md#23_8_29)**.
[security] [A Mixed-Methods Study of Security Practices of Smart Contract Developers](https://www.usenix.org/system/files/usenixsecurity23-sharma.pdf) | **[MyTLDR](TLDR.md#23_9_17)**.
[security] [Smart Learning to Find Dumb Contracts](https://www.usenix.org/system/files/usenixsecurity23-abdelaziz.pdf) | **[MyTLDR](TLDR.md#23_9_4)**.
[security] [Snapping Snap Sync: Practical Attacks on Go Ethereum Synchronising Nodes](https://www.usenix.org/system/files/usenixsecurity23-taverna.pdf) | **[MyTLDR](TLDR.md#23_9_3)**.
[security] [Token Spammers, Rug Pulls, and Sniper Bots: An Analysis of the Ecosystem of Tokens in Ethereum and in the Binance Smart Chain (BNB)](https://arxiv.org/pdf/2206.08202.pdf) | **[MyTLDR](TLDR.md#23_9_7)**.
[security] [Automated Inference on Financial Security of Ethereum Smart Contracts](https://www.usenix.org/system/files/usenixsecurity23-wang-wansen.pdf) | **[MyTLDR](TLDR.md#23_9_5)**.
[security] [Your Exploit is Mine: Instantly Synthesizing Counterattack Smart Contract](https://www.usenix.org/system/files/usenixsecurity23-zhang-zhuo-exploit.pdf) | **[MyTLDR](TLDR.md#23_9_18)**.
[security] [Anatomy of a High-Profile Data Breach: Dissecting the Aftermath of a Crypto-Wallet Case](https://www.usenix.org/system/files/sec23_slides_abramova.pdf).
[security] [Mixed Signals: Analyzing Ground-Truth Data on the Users and Economics of a Bitcoin Mixing Service](https://www.usenix.org/system/files/usenixsecurity23-miedema.pdf).
[security] [Is Your Wallet Snitching On You? An Analysis on the Privacy Implications of Web3](https://arxiv.org/pdf/2306.08170).
### 2022
[security] [How to Peel a Million: Validating and Expanding Bitcoin Clusters](https://www.usenix.org/system/files/sec22-kappos.pdf).
[security] [Total Eclipse of the Heart – Disrupting the InterPlanetary File System](https://www.usenix.org/system/files/sec22-prunster.pdf).
### 2021
[security] [Evil Under the Sun: Understanding and Discovering Attacks on Ethereum Decentralized Applications](https://www.usenix.org/system/files/sec21summer_su.pdf).
[security] [EOSAFE: Security Analysis of EOSIO Smart Contracts](http://sei.pku.edu.cn/~yaoguo/papers/He-Security-21.pdf).
[security] [SmarTest: Effectively Hunting Vulnerable Transaction Sequences in Smart Contracts through Language Model-Guided Symbolic Execution](http://prl.korea.ac.kr/~ssb920/papers/sec21.pdf) | **[MyTLDR](TLDR.md#23_9_21)**.
[security] [Smart Contract Vulnerabilities: Vulnerable Does Not Imply Exploited](https://www.doc.ic.ac.uk/~livshits/papers/pdf/usenixsec21.pdf).
[security] [EVMPatch: Timely and Automated Patching of Ethereum Smart Contracts](https://www.usenix.org/system/files/sec21summer_rodler.pdf).
[security] [Frontrunner Jones and the Raiders of the Dark Forest: An Empirical Study of Frontrunning on the Ethereum Blockchain](https://arxiv.org/abs/2102.03347).
### 2020
[security] [ETHBMC: A Bounded Model Checker for Smart Contracts](https://www.usenix.org/system/files/sec20-frank.pdf) | **[MyTLDR](TLDR.md#23_11_22)**.
[security] [TXSPECTOR: Uncovering Attacks in Ethereum from Transactions](https://www.usenix.org/system/files/sec20-zhang-mengya.pdf).
[security] [An Ever-evolving Game: Evaluation of Real-world Attacks and Defenses in Ethereum Ecosystem](https://www.usenix.org/system/files/sec20-zhou-shunfan.pdf).
[security] [BlockSci: Design and applications of a blockchain analysis platform](https://www.usenix.org/system/files/sec20-kalodner.pdf)
### 2019
[security] [The art of the scam: Demystifying honeypots in ethereum smart contracts](https://www.usenix.org/system/files/sec19-torres.pdf) | **[MyTLDR](TLDR.md#24_3_2)**.
[application] [FastKitten: Practical Smart Contracts on Bitcoin]().
[security] [Tracing Transactions Across Cryptocurrency Ledgers](https://www.usenix.org/system/files/sec19-yousaf_0.pdf).
### 2018
[security] [Erays: Reverse Engineering Ethereum's Opaque Smart Contracts](https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-zhou.pdf).
[security] [teEther: Gnawing at Ethereum to Automatically Exploit Smart Contracts](https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-krupp.pdf).
[application] [Arbitrum: Scalable, private smart contracts](https://www.usenix.org/system/files/conference/usenixsecurity18/sec18-kalodner.pdf).
[security] [Enter the Hydra: Towards principled bug bounties and exploit-resistant smart contracts](https://eprint.iacr.org/2017/1090.pdf).
### 2017
[security] [SmartPool: Practical Decentralized Pooled Mining](https://www.usenix.org/system/files/conference/usenixsecurity17/sec17-luu.pdf).
---
## NDSS
### 2024
[security] [Pisces: Private and Compliable Cryptocurrency Exchange]().
[security] [Front-running Attack in Sharded Blockchains and Fair Cross-shard Consensus]().
[security] [Content Censorship in the InterPlanetary File System]().
[security] [DRAINCLoG: Detecting Rogue Accounts with Illegally-obtained NFTs using Classifiers Learned on Graphs]().
[security] [VETEOS: Statically Vetting EOSIO Contracts for the “Groundhog Day” Vulnerabilities](papers/NDSS24_vetEos.pdf)
[security] [Not your Type! Detecting Storage Collision Vulnerabilities in Ethereum Smart Contracts](https://seclab.cs.ucsb.edu/files/publications/ruaro24crush.pdf) | **[MyTLDR](TLDR.md#23_1_25)**.
[security] [Abusing the Ethereum Smart Contract Verification Services for Fun and Profit](https://arxiv.org/pdf/2307.00549.pdf) | **[MyTLDR](TLDR.md#24_2_2)**.
### 2023
[security] [Double and Nothing: Understanding and Detecting Cryptocurrency Giveaway Scams](https://double-and-nothing.github.io/) | **[MyTLDR](TLDR.md#23_8_30)**.
[security] [Partitioning Ethereum without Eclipsing It](https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f465_paper.pdf).
[security] [LOKI: State-Aware Fuzzing Framework for the Implementation of Blockchain Consensus Protocols](https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_f78_paper.pdf).
[security] [BlockScope: Detecting and Investigating Propagated Vulnerabilities in Forked Blockchain Projects](https://github.com/VPRLab/BlkVulnReport/blob/main/NDSS23_BlockScope.pdf).
[security] [Smarter Contracts: Detecting Vulnerabilities in Smart Contracts with Deep Transfer Learning](https://www.ndss-symposium.org/wp-content/uploads/2023/02/ndss2023_s263_paper.pdf) | **[MyTLDR](TLDR.md#23_8_31)**.
### 2021
[application] [Bitcontracts: Supporting Smart Contracts in Legacy Blockchains](https://eprint.iacr.org/2019/857.pdf).
[Sercurity] [As Strong As Its Weakest Link: How to Break Blockchain DApps at RPC Service](https://www.ndss-symposium.org/wp-content/uploads/ndss2021_3C-1_23108_paper.pdf).
[Sercurity] [SquirRL: Automating Attack Analysis on Blockchain Incentive Mechanisms with Deep Reinforcement Learning](https://arxiv.org/abs/1912.01798).
### 2020
[security] [SODA: A Generic Online Detection Framework for Smart Contracts](https://www.ndss-symposium.org/wp-content/uploads/2020/02/24449-paper.pdf).
[security] [Broken Metre: Attacking Resource Metering in EVM](https://arxiv.org/pdf/1909.07220.pdf).
### 2019
[security] [YODA: Enabling computationally intensive contracts on blockchains with Byzantine and Selfish nodes](https://arxiv.org/pdf/1811.03265.pdf).
[security] [Sereum: Protecting Existing Smart Contracts Against Re-Entrancy Attacks](https://arxiv.org/pdf/1812.05934).
### 2018
[security] ["Zeus": Analyzing Safety of Smart Contracts](http://wp.internetsociety.org/ndss/wp-content/uploads/sites/25/2018/02/ndss2018_09-1_Kalra_paper.pdf).
[security] [Chainspace: A Sharded Smart Contracts Platform](https://arxiv.org/pdf/1708.03778).
---
## CAV
### 2022
[security] [SolCMC: Solidity Compiler’s Model Checker](http://verify.inf.usi.ch/sites/default/files/solcmc.pdf) | **[MyTLDR](TLDR.md#23_10_6)**.
### 2020
[security] [Synthesis of super-optimized smart contracts using max-smt](https://discovery.ucl.ac.uk/id/eprint/10113344/).
### 2018
[security] [TxT: Real-Time Transaction Encapsulation for Ethereum Smart Contracts]()
---
## ESEC/FSE
### 2024
[security] [Efficiently Detecting Reentrancy Vulnerabilities in Complex Smart Contracts](https://arxiv.org/abs/2403.11254). (arxiv)
### 2023
[security] [Demystifying the Composition and Code Reuse in Solidity Smart Contracts](https://kaixuanli-ecnu.github.io/files/fse23-sc-codeclone-kairansun.pdf) | **[MyTLDR](TLDR.md#23_9_20)**.
[security] [Understanding Solidity Event Logging Practices in the Wild]().
[software engineering] [EtherDiffer: Differential Testing on RPC Services of Ethereum Nodes](https://dl.acm.org/doi/pdf/10.1145/3611643.3616251) | **[MyTLDR](TLDR.md#24_2_21)**.
[security] [SmartFix: Fixing Vulnerable Smart Contracts by Accelerating Generate-and-Verify Repair using Statistical Models]()
[security] [TransRacer: Function Dependence-Guided Transaction Race Detection for Smart Contracts]()
[security] [DeepInfer: Deep Type Inference from Smart Contract Bytecode]() | **[MyTLDR](TLDR.md#23_9_9)**.
### 2022
[security] [MANDO-GURU: vulnerability detection for smart contract source code by heterogeneous graph embeddings](https://dl.acm.org/doi/pdf/10.1145/3540250.3558927).
[security] [An Empirical Study of Blockchain System Vulnerabilities: Modules, Types, and Patterns](https://dl.acm.org/doi/pdf/10.1145/3540250.3549105).
[security] [Declarative Smart Contracts](https://arxiv.org/pdf/2207.13827.pdf).
[security] [SolSEE: a source-level symbolic execution engine for solidity](https://personal.ntu.edu.sg/yi_li/files/Lin2022SAS.pdf)
### 2021
[security] [ÐArcher: Detecting On-Chain-Off-Chain Synchronization Bugs in Decentralized Applications](https://dl.acm.org/doi/pdf/10.1145/3468264.3468546).
[application] [Making Smart Contract Development More Secure and Easier](https://dl.acm.org/doi/pdf/10.1145/3468264.3473929).
[application] [iBatch: Saving Ethereum Fees via Secure and Cost-Effective Batching of Smart-Contract Invocations](https://dl.acm.org/doi/pdf/10.1145/3468264.3468568).
### 2020
[security] [Towards Automated Verification of Smart Contract Fairness](https://dl.acm.org/doi/pdf/10.1145/3368089.3409740).
[security] [ModCon: a model-based testing platform for smart contracts](https://dl.acm.org/doi/pdf/10.1145/3368089.3417939).
[security] [HARVEY: A Greybox Fuzzer for Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3368089.3417064).
### 2019
[security] [EVMFuzzer: Detect EVM vulnerabilities via fuzz testing](https://dl.acm.org/doi/pdf/10.1145/3338906.3341175).
[security] [A graph-based framework for analysing the design of smart contracts](https://dl.acm.org/doi/pdf/10.1145/3338906.3342495).
---
## ISSTA
### 2023
[security] [SmartState: Detecting State-Reverting Vulnerabilities in Smart Contracts via Fine-Grained State-Dependency Analysis]() | **[MyTLDR](TLDR.md#23_9_2)**.
[security] [iSyn: Semi-automated Smart Contract Synthesis from Legal Financial Agreements]() | **[MyTLDR](TLDR.md#23_10_2)**.
[security] [Beyond “Protected” and “Private”: An Empirical Security Analysis of Custom Function Modifiers in Smart Contracts](https://daoyuan14.github.io/papers/ISSTA23_SoMo.pdf) | **[MyTLDR](TLDR.md#23_9_8)**.
[security] [Automated Generation of Security-Centric Descriptions for Smart Contract Bytecode]().
[security] [Detecting State Inconsistency Bugs in DApps via On-Chain Transaction Replay and Fuzzing](https://dl.acm.org/doi/pdf/10.1145/3597926.3598057) | **[MyTLDR](TLDR.md#23_9_15)**.
[security] [ItyFuzz: Snapshot-Based Fuzzer for Smart Contract](https://arxiv.org/pdf/2306.17135)
[security] [Toward Automated Detecting Unanticipated Price Feed in Smart Contract](https://dl.acm.org/doi/pdf/10.1145/3548606.3559384) | **[MyTLDR](TLDR.md#23_9_16)**.
[security] [DeFiTainter: Detecting Price Manipulation Vulnerabilities in DeFi Protocols](papers/issta23_DeFiTainter.pdf) | **[MyTLDR](TLDR.md#24_2_11)**.
[security] [Definition and Detection of Defects in NFT Smart Contracts](https://arxiv.org/pdf/2305.15829.pdf) | **[MyTLDR](TLDR.md#24_2_9)**.
### 2022
[security] [WASAI: uncovering vulnerabilities in Wasm smart contracts](https://dl.acm.org/doi/pdf/10.1145/3533767.3534218) | **[MyTLDR](TLDR.md#23_9_23)**.
[security] [Finding permission bugs in smart contracts with role mining](https://dl.acm.org/doi/pdf/10.1145/3533767.3534372) | **[MyTLDR](TLDR.md#issta22_SPCon)**.
[security] [eTainter: detecting gas-related vulnerabilities in smart contracts](https://dl.acm.org/doi/pdf/10.1145/3533767.3534378) | **[MyTLDR](TLDR.md#24_2_4)**.
[security] [Park: accelerating smart contract vulnerability detection via parallel-fork symbolic execution](https://dl.acm.org/doi/pdf/10.1145/3533767.3534395).
[security] [SmartDagger: a bytecode-based static analysis approach for detecting cross-contract vulnerability](https://dl.acm.org/doi/pdf/10.1145/3533767.3534222).
[security] [SpCon: Finding Smart Contract Permission Bugs with Role Mining](https://personal.ntu.edu.sg/yi_li/files/Liu2022FPB.pdf)
### 2021
[security] [Empirical Evaluation of Smart Contract Testing: What Is the Best Choice?](https://dl.acm.org/doi/pdf/10.1145/3460319.3464837).
[security] [SCStudio: A Secure and Efficient Integrated Development Environment for Smart Contracts.]().
### 2020
[security] [How effective are smart contract analysis tools? evaluating smart contract static analysis tools using bug injection](https://dl.acm.org/doi/abs/10.1145/3395363.3397385).
[security] [Echidna: effective, usable, and fast fuzzing for smart contracts](https://dl.acm.org/doi/abs/10.1145/3395363.3404366).
[security] [EShield: protect smart contracts against reverse engineering](https://dl.acm.org/doi/pdf/10.1145/3395363.3404365).
### 2019
[security] [SAFEVM: a safety verifier for Ethereum smart contracts](https://dl.acm.org/doi/pdf/10.1145/3293882.3338999).
[security] [Exploiting the laws of order in smart contracts](https://dl.acm.org/doi/pdf/10.1145/3293882.3330560).
---
## ASE
### 2023
[security] [DeFiWarder: Protecting DeFi Apps from Token Leaking Vulnerabilities]() | **[MyTLDR](TLDR.md#23_9_6)**.
[security] [SmartCoCo: Checking Comment-code Inconsistency in Smart Contracts via Constraint Propagation and Binding]().
### 2022
[security] [A Unified Specification Mining Framework for Smart Contracts]().
[security] [InvCon: A Dynamic Invariant Detector for Ethereum Smart Contracts]().
[security] [Learning Contract Invariants Using Reinforcement Learning](https://www.cs.utexas.edu/~isil/cider.pdf).
[security] [Effectively Generating Vulnerable Transaction Sequences in Smart Contracts with Reinforcement Learning-guided Fuzzing](https://dl.acm.org/doi/pdf/10.1145/3551349.3560429).
[security] [Reentrancy Vulnerability Detection and Localization: A Deep Learning Based Two-phase Approach](https://dl.acm.org/doi/abs/10.1145/3551349.3560428).
[security] [Identifying Solidity Smart Contract API Documentation Errors](https://personal.ntu.edu.sg/yi_li/files/Zhu2022ISS.pdf).
[security] [Xscope: Hunting for Cross-Chain Bridge Attacks](https://arxiv.org/pdf/2208.07119.pdf)
[secutiry] [Property-Based Automated Repair of DeFi Protocols](https://personal.ntu.edu.sg/yi_li/files/Tolmach2022PBA.pdf)
[security] [Towards Effective Static Analysis Approaches for Security Vulnerabilities in Smart Contracts](https://dl.acm.org/doi/abs/10.1145/3551349.3559567)
### 2021
[security] [GASOL: Gas Analysis and Optimization for Ethereum Smart Contracts](https://arxiv.org/pdf/1912.11929.pdf).
[security] [Automating User Notice Generation for Smart Contract Functions](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9678552).
[security] [Characterizing Transaction-Reverting Statements in Ethereum Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9678597).
[security] [SMARTIAN: Enhancing Smart Contract Fuzzing with Static and Dynamic Analyses](https://ieeexplore.ieee.org/document/9678888).
[security] [SigRec: Automatic Recovery of Function Signatures in Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9426396).
### 2020
[security] [Cross-Contract Static Analysis for Detecting Practical Reentrancy Vulnerabilities in Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9286095).
[security] [Demystifying Loops in Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3324884.3416626).
[security] [Summary-Based Symbolic Evaluation for Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9286081).
[security] [Finding Ethereum Smart Contracts Security Issues by Comparing History Versions](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9286004).
### 2019
[security] [Manticore: A User-Friendly Symbolic Execution Framework for Binaries and Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8952204).
[security] [MuSC: A Tool for Mutation Testing of Ethereum Smart Contract](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8952206).
[security] [Securing Smart Contracts in Blockchain](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8967424).
### 2018
[security] [ContractFuzzer: Fuzzing Smart Contracts for Vulnerability](https://dl.acm.org/doi/pdf/10.1145/3238147.3238177).
[security] [S-gram: towards semantic-aware security auditing for Ethereum smart contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9000031).
---
## ICSE
### 2024
[security] [SCVHunter: Smart Contract Vulnerability Detection Based on Heterogeneous Graph Attention Network]().
[security] [Stop Pulling my Rug: Exposing Rug Pull Risks in Crypto Token to Investors]().
[security] [Improving Smart Contract Security with Contrastive Learning-based Vulnerability Detection]().
[security] [Towards Finding Accounting Errors in Smart Contracts]().
[security] [Are We There Yet? Unraveling the State-of-the-Art Smart Contract Fuzzers]().
[security] [PrettySmart: Detecting Permission Re-delegation Vulnerability for Token Behaviors in Smart Contracts]().
[security] [When Contracts Meets Crypto: Exploring Developers' Struggleswith Ethereum Cryptographic APIs]()
[security] [PonziGuard: Detecting Ponzi Schemes on Ethereum with Contract Runtime Behavior Graph (CRBG)]().
[security] [Revealing Hidden Threats: An Empirical Study of Library Misuse in Smart Contracts]() | [MyTLDR](TLDR.md#23_11_11).
[security] [Uncover the Premeditated Attacks: Detecting Exploitable Reentrancy Vulnerabilities by Identifying Attacker Contracts]().
[security] [Smart Contract and DeFi Security Tools: Do They Meet the Needs of Practitioners?]().
[security] [Safeguarding DeFi Smart Contracts against Oracle Deviations]().
[security] [Verifying Declarative Smart Contracts]().
[security] [GPTScan: Detecting Logic Vulnerabilities in Smart Contracts by Combining GPT with Program Analysis](https://arxiv.org/abs/2308.03314) | | **[MyTLDR](TLDR.md#24_2_5)**.
### 2023
[security] [SmartMark: Software Watermarking Scheme for Smart Contracts](https://arxiv.org/pdf/2303.13733).
[security] [AChecker: Statically Detecting Smart Contract Access Control Vulnerabilities](https://people.ece.ubc.ca/~mjulia/publications/ACheckerICSE2023.pdf) | **[MyTLDR](TLDR.md#23_9_14)**.
[security] [BSHUNTER: Detecting and Tracing Defects of Bitcoin Scripts](https://zhengpeilin.com/research/BSHunter.pdf).
[security] [Demystifying Exploitable Bugs in Smart Contracts](https://www.cs.purdue.edu/homes/zhan3299/res/ICSE23.pdf).
[security] [Turn the Rudder: A Beacon of Reentrancy Detection for Smart Contracts on Ethereum](https://arxiv.org/pdf/2303.13770)
### 2022
[security] [Utilizing Parallelism in Smart Contracts on Decentralized Blockchains by Taming Application-Inherent Conflicts](https://dl.acm.org/doi/pdf/10.1145/3510003.3510086).
### 2021
[security] [Smart Contract Security: a Practitioners’ Perspective](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9402082).
### 2020
[security] [Empirical Review of Automated Analysis Tools on 47,587 Ethereum Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9284023).
[security] [sFuzz-An Efficient Adaptive Fuzzer for Solidity Smart Contracts](https://arxiv.org/pdf/2004.08563.pdf).
[security] [Smart Contract Development: Challenges and Opportunities](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8847638).
[security] [Targeted Greybox Fuzzing with Static Lookahead Analysis](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9284040).
[security] [Gap between Theory and Practice : An Empirical Study of Security Patches in Solidity](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9283944).
[security] [Seraph: Enabling Cross-Platform Security Analysis For EVM and WASM Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=9270363).
### 2019
[security] [Gigahorse: Thorough, Declarative Decompilation of Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8811905).
[security] [VULTRON: Catching Vulnerable Smart Contracts Once and for All](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8805696).
### 2018
[security] [ReGuard: Finding Reentrancy Bugs in Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8805696).
---
## SOSP
### 2021
[security] [Forerunner: Constraint-based Speculative Transaction Execution for Ethereum](https://www.microsoft.com/en-us/research/uploads/prod/2021/09/3477132.3483564.pdf) | **[MyTLDR](TLDR.md#23_11_9)**.
### 2017
[application] [Algorand: Scaling Byzantine Agreements for Cryptocurrencies](https://pdfs.semanticscholar.org/52eb/be753328f3139cbf9dfba7b8d3c78654b561.pdf).
------
## OSDI
### 2023
[performance] [LVMT: An Efficient Authenticated Storage for Blockchain](https://www.usenix.org/system/files/osdi23-li-chenxing.pdf).
### 2021
[security] [Finding Consensus Bugs in Ethereum via Multi-transaction Differential Fuzzing](https://www.usenix.org/system/files/osdi21-yang.pdf).
---
## INFOCOM
### 2024
[security] [ConFuzz: Towards Large Scale Fuzz Testing of Smart Contracts in Ethereum]().
### 2023
[security] [Latency-First Smart Contract: Overclock the Blockchain for a while]().
[security] [A Decentralized Truth Discovery Approach to the Blockchain Oracle Problem]().
### 2022
[application] [S-Store: A Scalable Data Store towards Permissioned Blockchain Sharding](https://ieeexplore.ieee.org/document/9796800/).
### 2021
[security] [Code is the (F)Law: Demystifying and Mitigating Blockchain Inconsistency Attacks Caused by Software Bugs]().
[application] [Counter-Collusion Smart Contracts for Watchtowers in Payment Channel Networks](https://ieeexplore.ieee.org/iel7/9488422/9488423/09488831.pdf).
[mine] [Characterizing Ethereum's Mining Power Decentralization at a Deeper Level](https://www.microsoft.com/en-us/research/uploads/prod/2021/02/infocom-camready.pdf).
### 2020
[application] [ET-DeaL: A P2P Smart Contract-based Secure Energy Trading Scheme for Smart Grid Systems]().
[application] [A Solution for State Conflicts of Smart Contract in Interaction with Non-blockchain]().
[application] [ChainIDE 2.0: Facilitating Smart Contract Development for Consortium Blockchain](https://mypage.cuhk.edu.cn/academics/caiwei/paper/papers/WuQZMC2020.pdf).
[application] [EncELC: Hardening and Enriching Ethereum Light Clients with Trusted Enclaves]().
### 2019
[application] [Interledger Smart Contracts for Decentralized Authorization to Constrained Things](https://arxiv.org/pdf/1905.01671).
### 2018
[graph analysis] [Understanding ethereum via graph analysis](https://www4.comp.polyu.edu.hk/~csxluo/EthereumGraphAnalysis.pdf).
------
## WWW
### 2024
[Finance] [Interface Illusions: Uncovering the Rise of Visual Scams in Cryptocurrency Wallets]().
[Finance] [DenseFlow: Spotting Cryptocurrency Money Laundering in Ethereum Transaction Graphs]().
### 2023
[Finance] [Ready, Aim, Snipe! Analysis of Sniper Bots and their Impact on the DeFi Ecosystem](https://dl.acm.org/doi/pdf/10.1145/3543873.3587612).
[Finance] [On How Zero-Knowledge Proof Blockchain Mixers Improve, and Worsen User Privacy](https://arxiv.org/abs/2201.09035).
[Finance] [Know Your Transactions: Real-time and Generic Transaction Semantic Representation on Blockchain & Web3 Ecosystem](https://github.com/wuzhy1ng/MoTS/blob/master/MoTS_WWW_2023_manuscript.pdf) | **[MyTLDR](TLDR.md#23_9_10)**.
[security] [BERT4ETH: A Pre-trained Transformer for Ethereum Fraud Detection](https://arxiv.org/pdf/2303.18138.pdf) | **[MyTLDR](TLDR.md#23_10_25)**.
### 2022
[Finance] [Cyclic Arbitrage in Decentralized Exchanges](https://arxiv.org/pdf/2105.02784.pdf).
[security] [TTAGN: Temporal Transaction Aggregation Graph Network for Ethereum Phishing Scams Detection](https://dl.acm.org/doi/pdf/10.1145/3442381.3450059).
### 2021
[Finance] [Towards Understanding Cryptocurrency Derivatives:A Case Study of BitMEX](https://dl.acm.org/doi/pdf/10.1145/3442381.3450059).
[graph analysis] [Temporal Analysis of the Entire Ethereum Blockchain Network](https://personal.ntu.edu.sg/arijit.khan/Papers/Ethereum_Blockchain_Temporal_Network.pdf).
[Finance] [Detecting and Quantifying Wash Trading on Decentralized Cryptocurrency Exchanges](https://arxiv.org/pdf/2102.07001.pdf).
[application] [Towards understanding and demystifying bitcoin mixing services](https://dl.acm.org/doi/pdf/10.1145/3442381.3449880).
### 2020
[graph analysis] [Measurements, Analyses, and Insights on the Entire Ethereum Blockchain Network](https://dl.acm.org/doi/fullHtml/10.1145/3366423.3380103).
[graph analysis] [Traveling the token world: A graph analysis of Ethereum ERC20 token ecosystem](https://dl.acm.org/doi/fullHtml/10.1145/3366423.3380103).
------
## DSN
### 2020
[security] [SMACS: Smart Contract Access Control Service](https://arxiv.org/abs/2003.07495).
[security] [Data-Driven Model-Based Analysis of the Ethereum Verifier's Dilemma](https://arxiv.org/pdf/2004.12768.pdf).
[security] [Smart Contracts on the Move](https://arxiv.org/pdf/2004.05933.pdf).
[mine] [Impact of Geo-Distribution and Mining Pools on Blockchains: A Study of Ethereum](https://arxiv.org/pdf/2004.05933.pdf).
### 2019
[application] [FabZK: Supporting Privacy-Preserving, Auditable Smart Contracts in Hyperledger Fabric](http://dance.csc.ncsu.edu/papers/DSN19.pdf).
### 2018
[security] [Towards Model-Driven Engineering of Smart Contracts for Cyber-Physical Systems](https://ieeexplore.ieee.org/iel7/8415929/8416185/08416237.pdf).
------
## PLDI
### 2023
[security] [Automated Detection of Under-constrained Circuits in Zero-Knowledge Proofs](https://dl.acm.org/doi/pdf/10.1145/3591282) | **[MyTLDR](TLDR.md#23_10_1)**.
### 2021
[security] [Practical Smart Contract Sharding with Ownership and Commutativity Analysis](https://dl.acm.org/doi/pdf/10.1145/3453483.3454112).
### 2020
[security] [Behavioral Simulation for Smart Contracts](https://hal.archives-ouvertes.fr/hal-03597598/document).
[security] [Ethainter: A Smart Contract Security Analyzer for Composite Vulnerabilities](https://www.nevillegrech.com/assets/pdf/ethainter-pldi.pdf).
[security] [Securing Smart Contract with Runtime Validation](https://arxiv.org/pdf/1911.12555.pdf).
------
## ESORICS
### 2023
[security] [n-MVTL Attack: Optimal Transaction Reordering Attack on DeFi]().
[security] [When is Slower Block Propagation More Profitable for Large Miners?]().
### 2020
[security] [PrivacyGuard: Enforcing Private Data Usage Control with Blockchain and Off-chain Contract Execution](https://arxiv.org/abs/2003.06552).
### 2019
[security] [Practical Mutation Testing for Smart Contracts](https://arxiv.org/abs/2003.06552).
[application] [PDFS: Practical Data Feed Service for Smart Contracts](https://arxiv.org/abs/2003.06552).
[security] [The Operational Cost of Ethereum Airdrops]().
[security] [Annotary: A Concolic Execution System for Developing Secure Smart Contracts]().
[security] [An Efficient Micropayment Channel on Ethereum]().
[security] [A Minimal Core Calculus for Solidity Contracts]().
### 2018
[security] [Succinctly Verifiable Sealed-Bid Auction Smart Contract]().
### 2017
[security] [In Code We Trust? - Measuring the Control Flow Immutability of All Smart Contracts Deployed on Ethereum]().
------
## SANER
### 2023
[security] [An Empirical Study of Smart Contract Decompilers]().
[security] [Automatic Identification of Crash-inducing Smart Contracts]().
[security] [Security Code Recommendations for Smart Contract]().
[security] [Combine sliced joint graph with graph neural networks for smart contract vulnerability detection]().
### 2022
[security] [When They Go Low: Automated Replacement of Low-level Functions in Ethereum Smart Contracts]().
[security] [A Bytecode-based Approach for Smart Contract Classification]().
[security] [A Tool to check the Ownership of Solana's Smart Contracts]().
[security] [On the use of Petri Nets in Smart Contracts modeling, generation and verification]().
[security] [Analysis Of The Relationship Between Smart Contracts' Categories and Vulnerabilities]().
[security] [Goal and Policy Based Code Generation and Deployment of Smart Contracts]().
### 2021
[security] [Understanding Code Reuse in Smart Contracts]().
### 2020
[security] [SMARTSHIELD: Automatic Smart Contract Protection Made Easy]().
[security] [EthPloit: From Fuzzing to Efficient Exploit Generation against Smart Contracts]().
### 2019
[security] [Towards Generating Cost-Effective Test-Suite for Ethereum Smart Contract]().
[security] [EVM*: From Offline Detection to Online Reinforcement for Ethereum Virtual Machine]().
### 2018
[security] [SmartInspect: solidity smart contract inspector]().
[security] [Smart contracts vulnerabilities: a call for blockchain software engineering?]().
[security] [The ICO phenomenon and its relationships with ethereum smart contract environment]().
[security] [Smart contracts: security patterns in the ethereum ecosystem and solidity]().
### 2017
[application] [Under-optimized smart contracts devour your money](https://www4.comp.polyu.edu.hk/~csxluo/Gasper.pdf).
------
## OOPSLA
### 2023
[security] [Asparagus: Automated Synthesis of Parametric Gas Upper-bounds for Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3563308) | **[MyTLDR](TLDR.md#23_9_26)**.
### 2022
[security] [Synthesis-powered optimization of smart contracts via data type refactoring](https://dl.acm.org/doi/pdf/10.1145/3563308) | **[MyTLDR](TLDR.md#23_9_27)**.
[security] [Elipmoc: Advanced Decompilation of Ethereum Smart Contracts](https://yanniss.github.io/elipmoc-oopsla22.pdf).
[security] [A Study of Inline Assembly in Solidity Smart Contracts]().
[security] [SigVM: Enabling Event-Driven Execution for Truly Decentralized Smart Contracts]().
### 2021
[security] [Symbolic Value-Flow Static Analysis: Deep, Precise, Complete Modeling of Ethereum Smart Contracts](https://dl.acm.org/doi/10.1145/3485540).
[security] [Rich Specifications for Ethereum Smart Contract Verification](https://dl.acm.org/doi/10.1145/3485523).
[security] [Pluto: Exposing Vulnerabilities in Inter-Contract Scenarios](https://ieeexplore.ieee.org/abstract/document/9562567).
### 2020
[security] [Precise Static Modelling of Ethereum "Memory"](https://dl.acm.org/doi/pdf/10.1145/3428258).
[security] [Taming Callbacks for Smart Contract Modularity]().
### 2019
[security] [Detecting Nondeterministic Payment Bugs in Ethereum Smart Contracts](https://dl.acm.org/doi/10.1145/3360615).
[security] [Safer Smart Contract Programming with Scilla](https://ilyasergey.net/papers/scilla-oopsla19.pdf).
### 2018
[security] [MadMax: surviving out-of-gas conditions in Ethereum smart contracts]().
------
## IMC
### 2023
[security] [Ethereum's Proposer-Builder Separation: Promises and Realities](https://arxiv.org/pdf/2305.19037.pdf) | **[MyTLDR](TLDR.md#23_11_15)**.
[security] [The Cloud Strikes Back: Investigating the Decentralization of IPFS](https://dl.acm.org/doi/abs/10.1145/3618257.3624797).
### 2022
[security] [A flash(bot) in the pan: measuring maximal extractable value in private pools](https://dl.acm.org/doi/abs/10.1145/3517745.3561448).
[security] [Challenges in decentralized name management: the case of ENS](https://dl.acm.org/doi/abs/10.1145/3517745.3561469).
### 2021
[security] [TopoShot: uncovering Ethereum's network topology leveraging replacement transactions](https://dl.acm.org/doi/abs/10.1145/3487552.3487814).
### 2018
[measure] [Measuring ethereum network peers](https://dl.acm.org/doi/pdf/10.1145/3278532.3278542) | **[MyTLDR](TLDR.md#23_11_2)**.
[security] [analyzing ethereum's contract topology](https://dl.acm.org/doi/pdf/10.1145/3278532.3278575).
------
## SIGMETRICS
### 2024
[security] [Miracle or Mirage? A Measurement Study of NFT Rug Pulls](https://dl.acm.org/doi/pdf/10.1145/3626782)
### 2023
[performance] [Strategic Latency Reduction in Blockchain Peer-to-Peer Networks](https://arxiv.org/abs/2205.06837) | **[MyTLDR](TLDR.md#23_10_26)**.
[security] [Characterizing Cryptocurrency-themed Malicious Browser Extensions]().
### 2022
[performance] [Tuxedo: Maximizing Smart Contract computation in PoW Blockchains]().
[security] [Trade or Trick? Detecting and Characterizing Scam Tokens on Uniswap Decentralized Exchange](https://dl.acm.org/doi/pdf/10.1145/3491051).
### 2021
[SIGMETRICS2021] [Tracking Counterfeit Cryptocurrency End-to-end](https://research.polyu.edu.hk/en/publications/tracking-counterfeit-cryptocurrency-end-to-end).
[SIGMETRICS2021] [SADPonzi: Detecting and Characterizing Ponzi Schemes in Ethereum Smart Contracts](https://www4.comp.polyu.edu.hk/~csxluo/SADPonzi.pdf) | **[MyTLDR](TLDR.md#24_3_6)**.
### 2018
[SIGMETRICS2020] [Understanding (Mis)Behavior on the EOSIO Blockchain]().
------
## ACSAC
### 2021
[security] [SolSaviour: A Defending Framework for Deployed Defective Smart Contracts](https://www4.comp.polyu.edu.hk/~csbxiao/paper/2021/acsac21_SolSavioiur.pdf).
### 2019
[security] [SmarTor: Smarter Tor with Smart Contracts](https://www.informatik.uni-wuerzburg.de/didaktik/team/andre-greubel/?tx_extbibsonomycsl_publicationlist).
### 2018
[security] [Finding The Greedy, Prodigal, and Suicidal Contracts at Scale](https://arxiv.org/abs/1802.06038).
[security] [Osiris: Hunting for Integer Bugs in Ethereum Smart Contracts]().
------
## APSEC
### 2020
[security] [Source Code Obfuscation for Smart Contracts](https://ieeexplore.ieee.org/document/9359296).
### 2019
[security] [SIF: A Framework for Solidity Contract Instrumentation and Analysis](https://arxiv.org/pdf/1905.01659.pdf).
[security] [SolAnalyser: A Framework for Analysing and Testing Smart Contracts]().
### 2018
[security] [Fuse: An Architecture for Smart Contract Fuzz Testing Service](https://dl.acm.org/doi/pdf/10.1145/3571847).
------
## RAID
### 2022
[security] [Penny Wise and Pound Foolish: Quantifying the Risk of Unlimited Approval of ERC20 Tokens on Ethereum](https://arxiv.org/pdf/2207.01790.pdf) | **[MyTLDR](TLDR.md#23_9_1)**.
[security] [Elysium: Context-Aware Bytecode-Level Patching to Automatically Heal Vulnerable Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3545948.3545975)
### 2019
[security] [Towards a first step to understand the cryptocurrency stealing attack on ethereum](https://www.usenix.org/system/files/raid2019-cheng.pdf).
------
## ICDCS
### 2023
[security] [Detecting Flash Loan Based Attacks in Ethereum]()
[security] [Towards Decentralized Adaptive Control of Cryptocurrency Liquidity via Auction]().
[applicaton] [A Game of NFTs: Characterizing NFT Wash Trading in the Ethereum Blockchain](https://massimolamorgia.com/assets/pdf/NFT_Wash_Trading___ICDCS2023.pdf).
[security] [Smart Contract Parallel Execution with Fine-Grained State Accesses](https://personal.ntu.edu.sg/yi_li/files/Qi2023SCP.pdf) | **[MyTLDR](TLDR.md#23_9_19)**.
### 2022
[Application] [Blockchain Machine: A Network-Attached Hardware Accelerator for Hyperledger Fabric](https://arxiv.org/pdf/2104.06968).
### 2020
[security] [Fair and Efficient Gossip in Hyperledger Fabri](https://dial.uclouvain.be/pr/boreal/object/boreal%3A229465/datastream/PDF_01/view).
[security] [TinyEVM: Off-Chain Smart Contracts on Low-Power IoT Devices](https://www.ds.informatik.uni-kiel.de/en/publications/papers/2020-07-ICDCS-Profentzas-TinyEVM.pdf).
### 2019
[security] [DataEther: Data Exploration Framework For Ethereum](https://www.cs.rice.edu/~angchen/papers/icdcs-2019.pdf).
[security] [Read-Uncommitted Transactions for Smart Contract Performance](https://arxiv.org/pdf/1905.12351.pdf).
### 2018
[security] [MPCSToken: Smart Contract Enabled Fault-Tolerant Incentivisation for Mobile P2P Crowd Services]().
------
## POPL
### 2022
[security] [SolType: Refinement Types for Arithmetic Overflow in Solidity](https://dl.acm.org/doi/abs/10.1145/3498665).
------
### 2018
[security] [Online detection of effectively callback free objects with applications to smart contracts](https://dl.acm.org/doi/pdf/10.1145/3158136).
[security] [Vandal: A Scalable Security Analysis Framework for Smart Contracts](https://arxiv.org/abs/1809.03981).
---
# Journal
------
## TOSEM
[TOSEM] [TokenAware: Accurate and Efficient Bookkeeping Recognition for Token Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3560263).
[TOSEM] [CLFuzz: Vulnerability Detection of Cryptographic Algorithm Implementation via Semantic-Aware Fuzzing]().
[TOSEM] [sGuard+: Machine Learning Guided Rule-based AutomatedVulnerability Repair on Smart Contracts.](https://dl.acm.org/doi/pdf/10.1145/3641846).
[TOSEM] [Is my transaction done yet? an empirical study of transaction processing times in the ethereum blockchain platform](https://dl.acm.org/doi/pdf/10.1145/3549542?).
[TOSEM] [Securing the Ethereum from Smart Ponzi Schemes: Identification Using Static Features](https://dl.acm.org/doi/pdf/10.1145/3571847).
[TOSEM] [TSecuring the Ethereum from Smart Ponzi Schemes: Identification Using Static Features](https://dl.acm.org/doi/pdf/10.1145/3560263).
[TOSEM] [Pied-Piper: Revealing the Backdoor Threats in Ethereum ERC Token Contracts](https://dl.acm.org/doi/pdf/10.1145/3560264).
[TOSEM] [Time-travel Investigation: Toward Building a Scalable Attack Detection Framework on Ethereum](https://arxiv.org/pdf/2005.08278.pdf).
[TOSEM] [Developing Cost-Effective Blockchain-Powered Applications: A Case Study of the Gas Usage of Smart Contract Transactions in the Ethereum Blockchain Platform](https://dl.acm.org/doi/pdf/10.1145/3431726).
[TOSEM] [Why Do Smart Contracts Self-Destruct? Investigating the Selfdestruct Function on Ethereum]().
## TSE
[TSE23] [Combatting Front-Running in Smart Contracts: Attack Mining, Benchmark Construction and Vulnerability Detector Evaluation]()
[TSE] [VulHunter: Hunting Vulnerable Smart Contracts at EVM Bytecode-Level via Multiple Instance Learning]().
[TSE] [Large-Scale Empirical Study of Inline Assembly on 7.6 Million Ethereum Smart Contracts](https://drive.google.com/file/d/111l8_vf7Gt7RxygjuBM8WQWLTQL700jY/view?pli=1).
[TSE] [Demystifying Random Number in Ethereum Smart Contract: Taxonomy, Vulnerability Identification, and Attack Detection](https://arxiv.org/pdf/2304.12645.pdf)
[TSE] [DEFECTCHECKER: Automated Smart Contract Defect Detection by Analyzing EVM Bytecode](https://arxiv.org/pdf/2009.02663).
[TSE] [Checking smart contracts with structural code embedding](https://xin-xia.github.io/publication/tse201.pdf).
[TSE] [Code Cloning in Smart Contracts on the Ethereum Platform: An Extended Replication Study](https://arxiv.org/pdf/2005.08278.pdf).
[TSE] [Defining smart contract defects on ethereum](https://arxiv.org/pdf/1905.01467).
[TSE] [Pluto: Exposing Vulnerabilities in Inter-Contract Scenarios](http://www.wingtecher.com/themes/WingTecherResearch/assets/papers/tse21.pdf).
## TIFS
[TIFS23] [Combatting Front-Running in Smart Contracts: Attack Mining, Benchmark Construction and Vulnerability Detector Evaluation]().
[TIFS23] [Fishing for Fraudsters: Uncovering Ethereum Phishing Gangs With Blockchain Data]().
[TIFS23] [Rethinking Smart Contract Fuzzing: Fuzzing With Invocation Ordering and Important Branch Revisiting](https://arxiv.org/pdf/2301.03943.pdf).
[TIFS23] [EVM-Shield: In-Contract State Access Control for Fast Vulnerability Detection and Prevention]().
[TIFS23] [Towards Understanding Asset Flows in Crypto Money Laundering Through the Lenses of Ethereum Heists]().
[TIFS23] [sChain: An Efficient and Secure Solution for Improving Blockchain Storage]().
[TIFS23] [Breaking the Anonymity of Ethereum Mixing Services Using Graph Feature Learning]().
[TIFS22] [Behavior-aware Account De-anonymization on Ethereum Interaction Graph](https://arxiv.org/pdf/2203.09360.pdf).
[TIFS22] [TxT: Real-Time Transaction Encapsulation for Ethereum Smart Contracts](https://arxiv.org/pdf/2301.08806.pdf).
[TIFS21] [Hunting Vulnerable Smart Contracts via Graph Embedding Based Bytecode Matching]().
[TIFS22] [Rethinking Smart Contract Fuzzing: Fuzzing With Invocation Ordering and Important Branch Revisiting]().
## TDSC
[TDSC] [DeFiRanger: Detecting DeFi Price Manipulation Attacks]().
[TDSC] [Highly Available Blockchain Nodes With N-Version Design](http://arxiv.org/pdf/2303.14438).
[TDSC] [Correct-by-Design Interacting Smart Contracts and a Systematic Approach for Verifying ERC20 and ERC721 Contracts With VeriSolid]().
[TDSC] [Oracle-Supported Dynamic Exploit Generation for Smart Contracts]().
[TDSC] [Obfuscating verifiable Random Functions for Proof-of-Stake Blockchains]().
[TDSC] [Correct-by-Design Interacting Smart Contracts and a Systematic Approach for Verifying ERC20 and ERC721 Contracts With VeriSolid]().
## Miscellaneous
[arxiv] [Large Language Models for Blockchain Security: A Systematic Literature Review](https://arxiv.org/pdf/2403.14280.pdf).
[TKDE24] [Unravelling Token Ecosystem of EOSIO Blockchain](https://arxiv.org/abs/2202.11201).
[WINE2023] [Routing MEV in Constant Function Market Makers]().
[TCAD 2023] [A Semantic-Integrated LSM-Tree Based Key-Value Storage Engine for Blockchain Systems]().
[FAST23] [COLE: A Column-based Learned Storage for Blockchain Systems](papers/fast23_cole.pdf).
[ISCA23] [An Algorithm and Architecture Co-design for Accelerating Smart Contracts in Blockchain](https://dl.acm.org/doi/pdf/10.1145/3579371.3589067).
[SODA23] [Foundations of Transaction Fee Mechanism Design](https://eprint.iacr.org/2021/1474.pdf).
[IEEE Computer] [The Multibillion Dollar Software Supply Chain of Ethereum](http://arxiv.org/pdf/2202.07029).
[ACM DTL] [Chaos Engineering of Ethereum Blockchain Clients In ACM Distributed Ledger Technologies: Research and Practice](http://oadoi.org/10.1145/3611649).
[SIGKDD23] [Demystifying Fraudulent Transactions and Illicit Nodes in the Bitcoin Network for Financial Forensics](https://dl.acm.org/doi/pdf/10.1145/3580305.3599351).
[SIGKDD23] [Diga: Guided Diffusion Model for Graph Recovery in Anti-Money Laundering](https://dl.acm.org/doi/pdf/10.1145/3580305.3599806).
[ICDE23] [Scaling Blockchain Consensus via a Robust Shared Mempool]().
[SC23] [FISCO-BCOS: An Enterprise-grade Permissioned Blockchain System with High-performance]().
[Usenix ATC22] [An Off-The-Chain Execution Environment for Scalable Testing and Profiling of Smart Contracts](https://www.usenix.org/system/files/atc21-kim-yeonsoo.pdf).
[Usenix ATC21] [RainBlock: Faster Transaction Processing in Public Blockchains](https://www.usenix.org/system/files/atc21-ponnapalli.pdf).
[EORUSYS23] [Diablo: A Benchmark Suite for Blockchains](https://6788543.fs1.hubspotusercontent-na1.net/hubfs/6788543/Eurosys23-Diablo.pdf) | **[MyTLDR](TLDR.md#23_9_29)**.
[EORUSYS21] [Ethanos: efficient bootstrapping for full nodes on account-based blockchain](https://dl.acm.org/doi/pdf/10.1145/3447786.3456231).
[EORUSYS18] [Hyperledger fabric: a distributed operating system for permissioned blockchains](https://dl.acm.org/doi/pdf/10.1145/3190508.3190538).
[JSAC22] [Detecting Arbitrage on Ethereum Through Feature Fusion and Positive-Unlabeled Learning]().
[TPDS] [SmartVM: A Smart Contract Virtual Machine for Fast On-Chain DNN Computations]().
[CHI23] [Code Will Tell: Visual Identification of Ponzi Schemes on Ethereum](https://dl.acm.org/doi/pdf/10.1145/3544549.3585861).
[CHI22] [Impact and User Perception of Sandwich Attacks in the DeFi Ecosystem](https://dl.acm.org/doi/pdf/10.1145/3491102.3517585).
[CHI21] [Efect of the Gas Price Surges on User Activity in the DAOs of the Ethereum Blockchain](https://dl.acm.org/doi/pdf/10.1145/3411763.3451755).
[POMACS2021] [Trade or Trick? Detecting and Characterizing Scam Tokens on Uniswap Decentralized Exchange](https://arxiv.org/pdf/2109.00229.pdf).
[HPCA20] [BBS: Micro-Architecture Benchmarking Blockchain Systems through Machine Learning and Fuzzy Set]().
[VLDB23] [ChainDash: An Ad-Hoc Blockchain Data Analytics System](https://dl.acm.org/doi/pdf/10.1145/3491102.3517585).
[VLDB23] [Auto-Tuning with Reinforcement Learning for Permissioned Blockchain Systems](https://www.vldb.org/pvldb/vol16/p1000-li.pdf).
[VLDB22] [Hybrid Blockchain Database Systems: Design and Performance](https://dl.acm.org/doi/pdf/10.14778/3510397.3510406).
[AsiaCCS22] [Eliminating Sandwich Attacks with the Help of Game Theory](https://dl.acm.org/doi/pdf/10.1145/3488932.3517390).
[TC21] [Precise Dynamic Symbolic Execution for Nonuniform Data Access in Smart Contracts](https://rucsesec.github.io/papers/TC2021b.pdf).
[sigmod23] [ChainKV: A Semantics-Aware Key-Value Store for Ethereum System]().
[sigmod21] [Why Do My Blockchain Transactions Fail? A Study of Hyperledger Fabric]().
[ICPC] [A multi-modal transformer-based code summarization approach for smart contracts](https://arxiv.org/pdf/2103.07164).
[ICPC 2022] [An Empirical Investigation on the Trade-off between Smart Contract Readability and Gas Consumption]().
[ICPC 2022] [Peculiar: Smart Contract Vulnerability Detection Based on Crucial Data Flow Graph and Pre-training Techniques]().
[ICPC 2020] [Inheritance software metrics on smart contracts]().
[ICPC 2019] [Recommending Differentiated Code to Support Smart Contract Update]().
[ICPC 2019] [Enabling clone detection for ethereum via smart contract birthmarks]().
[WETSEB 2018] [SmartCheck: Static Analysis of Ethereum Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8445052).
[EDCC 2018] [Runtime Verification of Ethereum Smart Contracts](https://ieeexplore.ieee.org/stamp/stamp.jsp?tp=&arnumber=8530777).
[ICSCA 2018] [Formal Modeling and Verification of Smart Contracts](https://dl.acm.org/doi/pdf/10.1145/3185089.3185138).
[SRDS 2020] [Protect Your Smart Contract Against Unfair Payment]().
[SRDS 2020] [TZ4Fabric: Executing Smart Contracts with ARM TrustZone (Practical Experience Report)]().
[IJCAI 2020] [Smart Contract Vulnerability Detection Using Graph Neural Networks]().
[ISSRE2019] [MPro: Combining Static and Symbolic Analysis for Scalable Testing of Smart Contract](https://arxiv.org/pdf/1911.00570.pdf).
[CPP2021] [Extracting Smart Contracts Tested and Verified in Coq]().
[SAC2022] [Model checking of vulnerabilities in smart contracts: a solidity-to-CPN approach]().
[Eurosp23] [EF/CF: High Performance Smart Contract Fuzzing for Exploit Generation]().
[CSFW] [Kevm: A complete formal semantics of the ethereum virtual machine](http://www.t-news.cn/Floc2018/FLoC2018-pages/proceedings_paper_513.pdf).
[DAC20] [BPU: A blockchain processing unit for accelerated smart contract execution](https://www.ece.lsu.edu/lpeng/papers/DAC20.pdf).
[TOPLAS20] [Obsidian: Typestate and Assets for Safer Blockchain Programming](https://dl.acm.org/doi/pdf/10.1145/3417516).
## License
[](https://creativecommons.org/publicdomain/zero/1.0/)
This list is released into the public domain.