nach oben

Erschienen in:

2024 | OriginalPaper | Buchkapitel

Chaussette: A Symbolic Verification of Bitcoin Scripts

verfasst von : Vincent Jacquot, Benoit Donnet

Erschienen in: Computer Security. ESORICS 2023 International Workshops

Verlag: Springer Nature Switzerland

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config

KI-gestützte Suche

Aus

Abstract

The Bitcoin protocol relies on scripts written in Script, a simple Turing-incomplete stack-based language, for locking the money carried over the Bitcoin network. This paper explores the usage of symbolic execution for finding transactions that permit to redeem the money without being the legitimate owner. In particular, we show in detail how using insecure scripts could have led to security breaches, resulting in bitcoins theft. Our contributions include (i) a quantification of the vulnerable script instances over the full Bitcoin history up to Feburary, $4^\textrm{th}$ 2023; (ii) the development and open source publication of a symbolic execution tool, called Chaussette; (iii) the description of how to use Chaussette to perform the attack; and, (iv) a discussion around a way to secure vulnerable money.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Vorheriges Kapitel Comparison of Ethereum Smart Contract Analysis and Verification Methods

Nächstes Kapitel A Simple Single Slot Finality Protocol for Ethereum

See https://gitlab.uliege.be/bitcoin/symbolic_execution.

https://gitlab.uliege.be/bitcoin/symbolic_execution.

See https://gitlab.uliege.be/bitcoin/symbolic_execution.

https://www.trmlabs.com/.

Andresen, G.: Bitcoin core release notes 0.9.0. https://github.com/bitcoin/bitcoin/blob/master/doc/release-notes/release-notes-0.9.0.md. Accessed 20 Apr 2023

Andresen, G.: Pay to script hash. BIP 16, Bitcoin (January 2012)

Andrychowicz, M., Dziembowski, S., Malinowski, D., Mazurek, L.: Fair two-party computations via bitcoin deposits. In: Proceedings of the Financial Cryptography and Data Security (FC) (March 2014)

Andrychowicz, M., Dziembowski, S., Malinowski, D., Mazurek, L.: Modeling bitcoin contracts by timed automata. In: Proceedings of the Formal Modeling and Analysis of Timed Systems (FORMATS) (September 2014)

Antonopoulos, A.: Mastering Bitcoin. O’Reilly Media, Inc. (2014)

Arrieche, A., Henn, P.: Who are the biggest bitcoin mining companies? https://capital.com/biggest-global-crypto-bitcoin-mining-companies-ranking-btc#:~:text=What%20are%20the%20famous%20bitcoin,according%20to%20data%20from%20CompaniesMarketCap. Accessed 08 May 2023

Atzei, N., Bartoletti, M., Cimoli, T., Lande, S., Zunino, R.: Sok: unraveling bitcoin smart contracts. In: Proceedings of the Principles of Security and Trust (POST) (April 2018)

Banasik, W., Dziembowski, S., Malinowski, D.: Efficient zero-knowledge contingent payments in cryptocurrencies without scripts. In: Proceedings of the European Symposium on Research in Computer Security (ESORICS) (September 2016)

Bartoletti, M., Zunino, R.: Constant-deposit multiparty lotteries on bitcoin. In: Proceedings of the Financial Cryptography and Data Security (FC) (April 2017)

10.

Bartoletti, M., Zunino, R.: Verifying liquidity of bitcoin contracts. In: Proceedings of the Principles of Security and Trust (POSRT) (April 2019)

11.

Bentov, I., Kumaresan, R.: How to use bitcoin to design fair protocols. In: Proceedings of the Advances in Cryptology (CRYPTO) (August 2014)

12.

Binance. Binance Coin Whitepaper. https://www.exodus.com/assets/docs/binance-coin-whitepaper.pdf. Accessed 02 May 2023

13.

Bistarelli, S., Mercanti, I., Santini, F.: An analysis of non-standard bitcoin transactions. In: Proceedings of the Crypto Valley Conference on Blockchain Technology (CVCBT) (June 2018)

14.

Bitcoin Community. Bitcoin improvement proposals. https://github.com/bitcoin/bips. Accessed 30 Mar 2023

15.

Bitcoin Community. getrawmempool - bitcoin. https://developer.bitcoin.org/reference/rpc/getrawmempool.html. Accessed 01 June 2023

16.

Bitcoin Community. Op checksig. https://en.bitcoin.it/wiki/OP_CHECKSIG. Accessed 07 Aug 2023

17.

Bitcoin Community. RPC API Reference. https://developer.bitcoin.org/reference/rpc/. Accessed 11 Apr 2023

18.

Bitcoin Community. Running a Full Node. https://bitcoin.org/en/full-node. Accessed 30 Mar 2023

19.

Bitcoin Community. Script. https://en.bitcoin.it/wiki/Script. Accessed 30 Mar 2023

20.

Bitcoin Core Developers. Bitcoin Core - interpreter.cpp. https://github.com/bitcoin/bitcoin/blob/80f4979322b574be29c684b2e106804432420ebf/src/script/interpreter.cpp#L412. Accessed 28 Apr 2023

21.

Bitcoin Core Developers. Dogecoin - script.cpp. https://github.com/dogecoin/dogecoin/blob/master/src/script/script.cpp. Accessed 02 May 2023

22.

Bitcoin Core Developers. Litecoin - script.cpp. https://github.com/litecoin-project/litecoin/blob/master/src/script/script.cpp. Accessed 02 May 2023

23.

blockchain.com: Bitcoin Price. https://www.blockchain.com/explorer/assets/btc. Accessed 26 Apr 2023

24.

blockchain.com. Total hash rate (TH/s). https://www.blockchain.com/fr/explorer/charts/hash-rate. Accessed 26 Apr 2023

25.

blockchain.com. Unspent transaction outputs. https://www.blockchain.com/fr/explorer/charts/utxo-count. Accessed 18 Apr 2023

26.

Buterin, V.: Ethereum Whitepaper. https://ethereum.org/en/whitepaper/. Accessed 02 May 2023

27.

Chainalysis: 60% of bitcoin is held long term as digital gold. What about the rest?, https://blog.chainalysis.com/reports/bitcoin-market-data-exchanges-trading/. Accessed 13 Apr 2023

28.

CoinMarketCap. Coinmarketcap. https://coinmarketcap.com/fr/. Accessed 26 Apr 2023

29.

ConsenSys. Mythril. https://github.com/ConsenSys/mythril. Accessed 12 Apr 2023

30.

Enzyme Finance. Oyente. https://github.com/enzymefinance/oyente. Accessed 12 Apr 2023

31.

Kalodner, H., et al.: Blocksci. https://github.com/citp/BlockSci. Accessed 07 Aug 2023

32.

Kalodner, H., et al.: BlockSci: dsign and applications of a blockchain analysis platform. In: Proceedings of the USENIX Security Symposium (August 2020)

33.

Kessler, S.: Axie infinity’s Ronin blockchain overhauls tech, expands to new game studios a year after \$625m hack. https://www.coindesk.com/tech/2023/03/30/axie-infinitys-ronin-blockchain-overhauls-tech-expands-to-new-ip-on-anniversary-of-600m-hack/. Accessed 02 May 2023

34.

Klomp, R., Bracciali, A.: On symbolic verification of bitcoin’s script language. In: Proceedings of the Data Privacy Management, Cryptocurrencies and Blockchain Technology (DPM) (September 2018)

35.

Korn, J.: Another crypto bridge attack: nomad loses \$190 million in chaotic hack. https://edition.cnn.com/2022/08/03/tech/crypto-bridge-hack-nomad/index.html. Accessed 02 May 2023

36.

Li, Y., Liu, F., Wang, G.: New records in collision attacks on RIPEMD-160 and SHA-256. In: Proceedings of the International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT) (April 2023)

37.

Lombrozo, E., Lau, J., Wuille, P.: Segregated witness (consensus layer). BIP 141, Bitcoin (December 2015)

38.

Maxwell, G.: The first successful zero-knowledge contingent payment. https://bitcoincore.org/en/2016/02/26/zero-knowledge-contingent-payments-announcement/. Accessed 12 Apr 2023

39.

Miller, A.K., Bentov, I.: Zero-collateral lotteries in bitcoin and ethereum. In: Proceedings of the IEEE European Symposium on Security and Privacy Workshops (EuroS &PW) (April 2016)

40.

Monniaux, D.: A survey of satisfiability modulo theory. In: Proceedings of the Computer Algebra in Scientific Computing (SASC) (September 2016)

41.

de Moura, L., Bjørner, N.: Z3: an efficient SMT solver. In: Proceedings of the International Conference on Tools and Algorithms for the Construction and Analysis of Systems (TACAS) (March–April 2008)

42.

Nakamoto, S.: Bitcoin: a peer-to-peer electronic cash system (2008). http://www.bitcoin.org/bitcoin.pdf

43.

Perry, D., Mattavelli, A., Zhang, X., Cadar, C.: Accelerating array constraints in symbolic execution. In: Proceedings of the ACM SIGSOFT International Symposium on Software Testing and Analysis (ISSTA) (July 2017)

44.

Tang, Y., Li, K., Wang, Y., Chen, J.: Ethical challenges in blockchain network measurement research. In: Proceedings of the Workshop on Ethics in Computer Security (EthiCS) (February 2023)

45.

Todd, P.: Topic: REWARD offered for hash collisions for SHA1, SHA256, RIPEMD160 and other. https://bitcointalk.org/index.php?topic=293382.0. Accessed 26 Apr 2023

46.

Trail of Bits: Manticore. https://github.com/trailofbits/manticore. Accessed 12 Apr 2023

47.

TRM Labs. Looking back at 2022 and towards 2023 to see what the future holds for digital assets policy (December 2022). https://www.trmlabs.com/post/looking-back-at-2022-and-towards-2023-to-see-what-the-future-holds-for-digital-assets-policy. Accessed 26 Apr 2023

48.

Tsankov, P., Dan, A., Drachsler-Cohen, D., Gervais, A., Bünzli, F., Vechev, M.: Securify: practical security analysis of smart contracts. In: Proceedings of the ACM SIGSAC Conference on Computer and Communications Security (CCS) (October 2018)

Titel: Chaussette: A Symbolic Verification of Bitcoin Scripts
verfasst von: Vincent Jacquot
Benoit Donnet
Verlag: Springer Nature Switzerland
Buch: Computer Security. ESORICS 2023 International Workshops
Print ISBN: 978-3-031-54203-9

Electronic ISBN: 978-3-031-54204-6

Copyright-Jahr: 2024
DOI: https://doi.org/10.1007/978-3-031-54204-6_22

Springer Professional

Abstract

Bitte loggen Sie sich ein, um Zugang zu Ihrer Lizenz zu erhalten.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner