【摘 要】
:
Integer overflow is a common vulnerability in Ethereum Smart Contracts (ESCs) and often causes huge economic losses.Smart contracts cannot be changed once it is deployed on the blockchain and thus demand further testing.Mutation testing is a fault-based t
【机 构】
:
Command & Control Engineering College,Army Engineering University of PLA,Nanjing 210000,China;Instit
论文部分内容阅读
Integer overflow is a common vulnerability in Ethereum Smart Contracts (ESCs) and often causes huge economic losses.Smart contracts cannot be changed once it is deployed on the blockchain and thus demand further testing.Mutation testing is a fault-based testing method that can effectively improve the sufficiency of a test for smart contracts.However,existing methods cannot efficiently perform mutation testing specifically for integer overflow in ESCs.Therefore,by analyzing integer overflow in ESCs,we propose five special mutation operators to address such vulnerability in terms of detecting sufficiency in ESC testing.An empirical study on 40 open-source ESCs is conducted to evaluate the effectiveness of the proposed mutation operators.Results show that (1) our proposed mutation operators can reproduce all 179 integer overflow vulnerabilities in 40 smart contracts,and the generated mutants have high compilation pass rate and integer overflow vulnerability generation rate;moreover,(2) the generated mutants can find the shortcomings of existing testing methods for integer overflow vulnerability,thereby providing effective support to improve the sufficiency of the test.
其他文献
与IPCC第五次评估报告(AR5)相比,在第六次评估报告(AR6)评估中,观测的极端天气气候事件变化证据,特别是归因于人为影响的证据加强.人类活动造成的气候变化已影响到全球每个区域的许多极端天气气候事件.随着未来全球变暖进一步加剧,预估极端热事件、强降水、农业生态干旱的强度和频次以及强台风(飓风)比例等将增加,越罕见的极端天气气候事件,其发生频率的增长百分比越大.这些结论再次凸显了应对气候变化和极端天气气候事件的必要性和紧迫性.
1 观测到的全球变暖rn世界气象组织(WMO)2020年全球气候状况报告 [1]给出,2020年较1850—1900年变暖(1.2±0.1)℃,是自有观测记录以来3个最暖的年之一(2016,2019,2020年),而2016—2020年和2011—2020年分别是有观测记录以来最暖的5年和最暖的10年.注意到,2020年大气中CO2浓度超过410×10-6,是1750年的148%.近百年的变暖不同于以前的特征为变暖持续的时间最长、从长期冷期转为变暖、迅速变暖和几乎全球各处都变暖.这样一种变暖的特征在气候系
2021年7月18—21日,一场不期而遇的特大暴雨肆虐中原大地,河南省郑州市发生严重洪涝灾难.暴雨灾情给受灾地区群众造成重大人员伤亡和财产损失,灾情留给人们太多的沉思.
基于参与CMIP6高分辨率模式比较计划(HighResMIP)9个模式组的18个全球气候模式模拟数据,通过与CN05.1观测资料的对比,评估了不同分辨率气候模式对中国区域1961—2014年降水特征的模拟能力.结果表明:低、高分辨率模式均能模拟出中国区域多年平均降水的总体空间分布特征,以及降水冬弱夏强的季节变化特征,但对降水的模拟都存在系统性偏多的误差;与低分辨率模式结果相比,高分辨率模式对降水空间分布的模拟有明显改善,在青藏高原、华北、华南地区降水模拟的系统性偏差明显减小;与低分辨率模式结果相比,高分辨
Software Defect Prediction (SDP) technology is an effective tool for improving software system quality that has attracted much attention in recent years.However,the prediction of cross-project data remains a challenge for the traditional SDP method due to
With the increasing use of cloud computing,high energy consumption has become one of the major challenges in cloud data centers.Virtual Machine (VM) consolidation has been proven to be an efficient way to optimize energy consumption in data centers,and ma
When the input signal has been interfered and glitches occur,the power consumption of Double-Edge Triggered Flip-Flops (DETFFs) will significantly increase.To effectively reduce the power consumption,this paper presents an anti-interference low-power DETF
This research discussed a deep learning method based on an improved generative adversarial network to segment the hippocampus.Different convolutional configurations were proposed to capture information obtained by a segmentation network.In addition,a gene
Event temporal relation extraction is an important part of natural language processing.Many models are being used in this task with the development of deep learning.However,most of the existing methods cannot accurately obtain the degree of association be
Road pricing is an urban traffic management mechanism to reduce traffic congestion.Currently,most of the road pricing systems based on predefined charging tolls fail to consider the dynamics of urban traffic flows and travelers\' demands on the arrival