Scribd Logo
Carica

Benvenuto in Scribd!

  • Smart Contracts Are Neither

    Caricato da

    pedrodotnet
    30 visualizzazioni23 pagine
    smart contracts

    Copyright

    © © All Rights Reserved

    Formati disponibili

    PDF, TXT o leggi online da Scribd

    Hai trovato utile questo documento?

    Questo contenuto è inappropriato?

    Segnala questo documento
    smart contracts

    Copyright:

    © All Rights Reserved
    Scarica in formato PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    30 visualizzazioni23 pagine

    Smart Contracts Are Neither

    Caricato da

    pedrodotnet
    smart contracts

    Copyright:

    © All Rights Reserved
    Scarica in formato PDF, TXT o leggi online su Scribd
    Segnala contenuti inappropriati
    di 23

    SMART CONTRACTS ARE NEITHER

    SMART NOR CONTRACTS

    FRITZ HENGLEIN
    UNIVERSITY OF COPENHAGEN

    Cyber Security, Privacy and Blockchain


    High Tech Summit, DTU
    2017-09-21
    FRITZ HENGLEIN
    Professor of programming languages and systems

    Foundations, techniques, algorithmics, language design

    Enterprise systems, healthcare, finance, blockchain, contract management

    Director, Research center for high-performance computing for finance (HIPERFIT.dk)

    Steering committee chair, Innovation network for Finance IT (CFIR.dk)

    Mostly academic, some industrial lab/start-up experience

    Technische Universitt Mnchen, Rutgers University;


    New York University, Utrecht University, University of Copenhagen, IT University of Copenhagen;
    IBM Research, Cornell University, University of New South Wales, University of Oxford;
    Hafnium Research ApS, Deon Digital AG/Deon Digital Denmark A/S,
    A CRASH SLIDE ON
    BLOCKCHAIN AND SMART CONTRACTS

    SMART TERM W H AT I T A C T U A L LY M E A N S

    BLOCKCHAIN DISTRIBUTED A P P E N D - O N LY
    TRANSACTION LOG (LEDGER)
    SMART
    CLASS
    CONTRACT
    ( I N J AVA - L I K E L A N G U A G E )
    (CODE)

    SMART
    PROCESS
    CONTRACT
    ( O B J E C T [ = C L A S S I N S TA N C E ] )
    (EXECUTING)

    OBJECT ORDINARY MESSAGES


    MESSAGES LINEAR RESOURCE TRANSFERS
    A CRASH SLIDE ON
    BLOCKCHAIN AND SMART CONTRACTS

    SMART TERM W H AT I T A C T U A L LY M E A N S

    BLOCKCHAIN DISTRIBUTED A P P E N D - O N LY
    LINEAR RESOURCE TRANSFER LOG
    SMART
    CLASS
    CONTRACT
    ( I N J AVA - L I K E L A N G U A G E )
    (CODE)

    SMART
    PROCESS
    CONTRACT
    ( O B J E C T [ = C L A S S I N S TA N C E ] )
    (EXECUTING)

    OBJECT ORDINARY MESSAGES


    MESSAGES LINEAR RESOURCE TRANSFERS
    BLOCKCHAIN SYSTEM ARCHITECTURE
    CONTRACT VERSUS SMART CONTRACT
    Contract:
    Obligations and permissions
    (rules)

    Strategy:
    Particular way to satisfy a contract
    (actions)

    Smart contract:
    Rules and all parties actions
    CONTRACT VERSUS SMART CONTRACT
    SMART CONTRACT
    Contract:
    ALICES BOBS CHARLIES
    Obligations and permissions
    S T R AT E G Y S T R AT E G Y S T R AT E G Y
    (rules)

    DORITS CONT EDDIES Strategy:


    S T R AT E G Y S T R AT E G Y
    RACT
    A single partys actions
    (actions)
    FREDS GEORGES HENRYS
    S T R AT E G Y S T R AT E G Y S T R AT E G Y

    Smart contract:
    Rules and all parties
    codified actions
    intermixed
    CONTRACT VERSUS SMART CONTRACT

    SMART CONTRACT Actually

    A L I C E S S T R AT E G Y
    Contract checking and
    CONTRACT actions (strategy) mixed together
    B O B S S T R AT E G Y in the source code
    C H A R L I E S S T R AT E G Y

    CONTRACT

    CONTRACT

    E D D I E S S T R AT E G Y

    CONTRACT

    H E N R Y S S T R AT E G Y

    A L I C E S S T R AT E G Y

    H E N R Y S S T R AT E G Y
    CONTRACT VERSUS SMART CONTRACT

    SMART CONTRACT Actually

    A L I C E S S T R AT E G Y
    Contract checking and
    CONTRACT actions (strategy) mixed together
    B O B S S T R AT E G Y in the source code
    C H A R L I E S S T R AT E G Y

    CONTRACT and one cannot even see


    CONTRACT which is which

    E D D I E S S T R AT E G Y

    CONTRACT

    H E N R Y S S T R AT E G Y

    A L I C E S S T R AT E G Y

    H E N R Y S S T R AT E G Y
    CONTRACT VERSUS SMART CONTRACT

    SMART CONTRACT
    A L I C E S S T R AT E G Y
    What is the contract
    CONTRACT

    B O B S S T R AT E G Y
    and what is strategy?
    C H A R L I E S S T R AT E G Y

    CONTRACT

    CONTRACT
    How do you compose
    E D D I E S S T R AT E G Y

    CONTRACT
    contracts (by themselves)?
    H E N R Y S S T R AT E G Y

    A L I C E S S T R AT E G Y

    H E N R Y S S T R AT E G Y

    How do you analyze


    contracts?
    CONTRACT VERSUS SMART CONTRACT

    C O D I F I E D PA R T O F
    C H A R L I E S S T R AT E G Y

    C H A R L I E AT
    ALICES BOBS CHARLIES
    S T R AT E G Y S T R AT E G Y S T R AT E G Y HIS TERMINAL

    DORITS CONT EDDIES


    S T R AT E G Y S T R AT E G Y
    RACT

    FREDS GEORGES HENRYS


    S T R AT E G Y S T R AT E G Y S T R AT E G Y
    CONTRACT VERSUS SMART CONTRACT

    CHARLIE
    ALICES BOBS CHARLIES A U T O M AT E S
    S T R AT E G Y S T R AT E G Y S T R AT E G Y
    HIMSELF

    DORITS CONT EDDIES


    S T R AT E G Y S T R AT E G Y
    RACT

    FREDS GEORGES HENRYS


    S T R AT E G Y S T R AT E G Y S T R AT E G Y
    CONTRACT VERSUS SMART CONTRACT

    ALICES BOBS C H A R L I E S N E W, F U L LY
    S T R AT E G Y S T R AT E G Y A U T O M AT E D S T R AT E G Y

    DORITS CONT EDDIES


    S T R AT E G Y S T R AT E G Y
    RACT

    FREDS GEORGES HENRYS


    S T R AT E G Y S T R AT E G Y S T R AT E G Y
    CONTRACT VERSUS SMART CONTRACT

    ALICES BOBS C H A R L I E S N E W, F U L LY
    S T R AT E G Y S T R AT E G Y A U T O M AT E D S T R AT E G Y

    DORITS NEW CONT EDDIES


    S E M I - A U T O M AT E D
    S T R AT E G Y
    S T R AT E G Y RACT

    FREDS GEORGES HENRYS


    S T R AT E G Y S T R AT E G Y S T R AT E G Y

    D O R I T A U T O M AT E S
    PA R T S O F H E R T E R M I N A L
    INTERACTIONS
    CONTRACT VERSUS SMART CONTRACT
    CONTRACT IS
    UNCHANGED!

    ALICES BOBS C H A R L I E S N E W, F U L LY
    S T R AT E G Y S T R AT E G Y A U T O M AT E D S T R AT E G Y

    DORITS NEW CONT EDDIES


    S E M I - A U T O M AT E D
    S T R AT E G Y
    S T R AT E G Y RACT

    FREDS GEORGES HENRYS


    S T R AT E G Y S T R AT E G Y S T R AT E G Y
    CONTRACT VERSUS SMART CONTRACT
    CONTRACT IS
    UNCHANGED!

    SMART CONTRACT

    ALICES BOBS C H A R L I E S N E W, F U L LY
    S T R AT E G Y S T R AT E G Y A U T O M AT E D S T R AT E G Y

    DORITS NEW CONT EDDIES


    S E M I - A U T O M AT E D
    S T R AT E G Y
    S T R AT E G Y RACT

    FREDS GEORGES HENRYS


    S T R AT E G Y S T R AT E G Y S T R AT E G Y

    BUT SMART CONTRACT SHOULD BE


    CHANGED!?
    THE PRICE OF EXPRESSIVENESS:
    RICES THEOREM
    Rice (1953)

    Smart contract: usually program, written in Turing-complete


    programming language (Ethereum, Corda, Fabric, )

    + : Expressive

    - : Undecidable properties even with full access to the


    source code

    Smart contracts are ultimately unanalyzable


    ETHEREUM VULNERABILITIESLUU, CHU, OLICKEL, SAXENA, HOBOR, MAKING SMART CONTRACTS SMARTER (2016)

    Transaction-order dependence: Messages may have different effect depending on


    their order of arrival

    Who controls the process scheduler (= message sequencer)? Some miner:


    Front-running

    Time-stamp dependence: Smart contracts may have different executions


    depending on the time stamp on a transaction block

    Who controls the time stamping of transaction blocks? Some miner: Clock
    manipulation

    Exception handling, gas management fragility: Subtle differences in exception


    semantics, limited run-time stack

    Provoking out-of-stack and gas exhaustion exceptions: Any user

    Programming language subtleties:

    Exception handling subtleties (send vs. call)

    Reentrancy vulnerability (DAO hack)

    Implicit method forwarding (multi-sig exploit)


    REENTRANCY VULNERABILITY
    LUU, CHU, OLICKEL, SAXENA, HOBOR, MAKING SMART CONTRACTS SMARTER (2016)
    OTHER BLOCKCHAIN SYSTEM ASPECTS

    Performance

    Availability

    Partition tolerance

    Security

    Privacy

    (Trade-offs between above, some inherent, some not)


    SUMMARY

    Smart contracts = self-executing contracts (programs)


    in complex Turing-complete programming language

    Rules and actions intermixed:


    Not contracts

    Hard to analyze, low-level programs:


    Not smart
    M O R E I N F O R M AT I O N

    hiperfit.dk: Functional high-performance computing


    for finance

    Domain-specific languages for compositional and


    verifiable contracts GOING LIVE ANY
    TIME NOW

    plan-x.org: Functional programming language


    technology for high-performance blockchain systems

    FUNCTIONAL PROGRAMMING = PROGRAMMING WITH


    I M M U TA B L E TA M P E R - P R O O F D ATA
    Thank you!

    henglein@diku.dk

    Potrebbero piacerti anche