{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,17]],"date-time":"2026-06-17T05:14:55Z","timestamp":1781673295044,"version":"3.54.5"},"publisher-location":"New York, NY, USA","reference-count":64,"publisher":"ACM","license":[{"start":{"date-parts":[[2024,2,6]],"date-time":"2024-02-06T00:00:00Z","timestamp":1707177600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"DOI":"10.13039\/100018693","name":"HORIZON EUROPE Framework Programme","doi-asserted-by":"publisher","award":["101070599"],"award-info":[{"award-number":["101070599"]}],"id":[{"id":"10.13039\/100018693","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2024,2,6]]},"DOI":"10.1145\/3597503.3623302","type":"proceedings-article","created":{"date-parts":[[2024,2,6]],"date-time":"2024-02-06T20:53:16Z","timestamp":1707252796000},"page":"1-13","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":50,"title":["Smart Contract and DeFi Security Tools: Do They Meet the Needs of Practitioners?"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-5414-4120","authenticated-orcid":false,"given":"Stefanos","family":"Chaliasos","sequence":"first","affiliation":[{"name":"Imperial College London, London, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0009-0008-4060-100X","authenticated-orcid":false,"given":"Marcos Antonios","family":"Charalambous","sequence":"additional","affiliation":[{"name":"Imperial College London, London, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-2820-9872","authenticated-orcid":false,"given":"Liyi","family":"Zhou","sequence":"additional","affiliation":[{"name":"Imperial College London, London, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5318-9017","authenticated-orcid":false,"given":"Rafaila","family":"Galanopoulou","sequence":"additional","affiliation":[{"name":"National and Kapodistrian University of Athens, Athens, Greece"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3565-3410","authenticated-orcid":false,"given":"Arthur","family":"Gervais","sequence":"additional","affiliation":[{"name":"University College London &amp; UC Berkeley RDI, London, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-5061-9018","authenticated-orcid":false,"given":"Dimitris","family":"Mitropoulos","sequence":"additional","affiliation":[{"name":"National and Kapodistrian University of Athens, Athens, Greece"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4921-8452","authenticated-orcid":false,"given":"Benjamin","family":"Livshits","sequence":"additional","affiliation":[{"name":"Imperial College London, London, United Kingdom"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2024,2,6]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"2023. code4rena. https:\/\/code4rena.com\/"},{"key":"e_1_3_2_1_2_1","unstructured":"2023. Defillama. https:\/\/defillama.com\/"},{"key":"e_1_3_2_1_3_1","unstructured":"2023. Foundry's fuzzer. https:\/\/book.getfoundry.sh\/forge\/fuzz-testing"},{"key":"e_1_3_2_1_4_1","volume-title":"Principles of Security and Trust","author":"Atzei Nicola","unstructured":"Nicola Atzei, Massimo Bartoletti, and Tiziana Cimoli. 2017. A Survey of Attacks on Ethereum Smart Contracts (SoK). In Principles of Security and Trust, Matteo Maffei and Mark Ryan (Eds.). Springer Berlin Heidelberg, Berlin, Heidelberg, 164--186."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/3385412.3385990"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.48550\/ARXIV.1809.03981"},{"key":"e_1_3_2_1_7_1","doi-asserted-by":"crossref","unstructured":"Jialiang Chang Bo Gao Hao Xiao Jun Sun Yan Cai and Zijiang Yang. 2019. sCompile: Critical Path Identification and Analysis for Smart Contracts. arXiv:1808.00624 [cs.CR]","DOI":"10.1007\/978-3-030-32409-4_18"},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1145\/3391195"},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/TSE.2021.3054928"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1145\/2970276.2970347"},{"key":"e_1_3_2_1_11_1","unstructured":"ConsenSys. [n. d.]. Consensys\/mythril: Security Analysis Tool for EVM bytecode. supports smart contracts built for Ethereum Hedera quorum Vechain Roostock Tron and other EVM-compatible blockchains. https:\/\/github.com\/ConsenSys\/mythril"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00040"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53357-4_6"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1145\/3377811.3380364"},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/IWBOSE50093.2020.9050260"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1109\/WETSEB.2019.00008"},{"key":"e_1_3_2_1_17_1","unstructured":"Robert Feldt and Ana Magazinius. 2010. Validity Threats in Empirical Software Engineering Research - An Initial Survey. 374--379."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3415298"},{"key":"e_1_3_2_1_19_1","volume-title":"ETHBMC: A Bounded Model Checker for Smart Contracts. In 29th USENIX Security Symposium (USENIX Security 20)","author":"Frank Joel","year":"2020","unstructured":"Joel Frank, Cornelius Aschermann, and Thorsten Holz. 2020. ETHBMC: A Bounded Model Checker for Smart Contracts. In 29th USENIX Security Symposium (USENIX Security 20). USENIX Association, 2757--2774. https:\/\/www.usenix.org\/conference\/usenixsecurity20\/presentation\/frank"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/3395363.3404366"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","unstructured":"Ilya Grishchenko Matteo Maffei and Clara Schneidewind. 2018. A Semantic Framework for the Security Analysis of Ethereum Smart Contracts. 243--269. 10.1007\/978-3-319-89722-6_10","DOI":"10.1007\/978-3-319-89722-6_10"},{"key":"e_1_3_2_1_22_1","volume-title":"What are the Actual Flaws in Important Smart Contracts (And How Can We Find Them)?","author":"Groce Alex","unstructured":"Alex Groce, Josselin Feist, Gustavo Grieco, and Michael Colburn. 2020. What are the Actual Flaws in Important Smart Contracts (And How Can We Find Them)?. In Financial Cryptography and Data Security, Joseph Bonneau and Nadia Heninger (Eds.). Springer International Publishing, Cham, 634--653."},{"key":"e_1_3_2_1_23_1","unstructured":"Dominik Harz and William Knottenbelt. 2018. Towards safer smart contracts: A survey of languages and verification methods. https:\/\/arxiv.org\/abs\/1809.09805"},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"crossref","unstructured":"Bin Hu Zongyang Zhang Jianwei Liu Yizhong Liu Jiayuan Yin Rongxing Lu and Xiaodong Lin. 2021. A comprehensive survey on smart contract construction and execution: Paradigms tools and systems.","DOI":"10.1016\/j.patter.2020.100179"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3238177"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE.2013.6606613"},{"key":"e_1_3_2_1_27_1","volume-title":"ZEUS: Analyzing Safety of Smart Contracts. In NDSS.","author":"Kalra Sukrit","year":"2018","unstructured":"Sukrit Kalra, Seep Goel, Mohan Dhawan, and Subodh Sharma. 2018. ZEUS: Analyzing Safety of Smart Contracts. In NDSS."},{"key":"e_1_3_2_1_28_1","volume-title":"Personal opinion surveys. Guide to advanced empirical software engineering","author":"Kitchenham Barbara A","year":"2008","unstructured":"Barbara A Kitchenham and Shari L Pfleeger. 2008. Personal opinion surveys. Guide to advanced empirical software engineering (2008), 63--92."},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2022.3169902"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/3183440.3183495"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3240728"},{"key":"e_1_3_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1145\/3551349.3559539"},{"key":"e_1_3_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978309"},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1109\/ASE.2019.00133"},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1145\/3377811.3380334"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1145\/3274694.3274743"},{"key":"e_1_3_2_1_37_1","volume-title":"Smart Contract Vulnerabilities: Vulnerable Does Not Imply Exploited. In USENIX Security Symposium.","author":"Perez Daniel","year":"2021","unstructured":"Daniel Perez and Benjamin Livshits. 2021. Smart Contract Vulnerabilities: Vulnerable Does Not Imply Exploited. In USENIX Security Symposium."},{"key":"e_1_3_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40000.2020.00024"},{"key":"e_1_3_2_1_39_1","unstructured":"Protofire. 2023. Protofire\/solhint: Solhint is an open source project created by https:\/\/protofire.io. its goal is to provide a linting utility for solidity code. https:\/\/github.com\/protofire\/solhint"},{"key":"e_1_3_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2020.2969429"},{"key":"e_1_3_2_1_41_1","volume-title":"CeFi vs. DeFi-Comparing Centralized to Decentralized Finance. arXiv preprint arXiv:2106.08157","author":"Qin Kaihua","year":"2021","unstructured":"Kaihua Qin, Liyi Zhou, Yaroslav Afonin, Ludovico Lazzaretti, and Arthur Gervais. 2021. CeFi vs. DeFi-Comparing Centralized to Decentralized Finance. arXiv preprint arXiv:2106.08157 (2021)."},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1145\/3460319.3464837"},{"key":"e_1_3_2_1_43_1","volume-title":"Sereum: Protecting existing smart contracts against re-entrancy attacks. arXiv preprint arXiv:1812.05934","author":"Rodler Michael","year":"2018","unstructured":"Michael Rodler, Wenting Li, Ghassan O Karame, and Lucas Davi. 2018. Sereum: Protecting existing smart contracts against re-entrancy attacks. arXiv preprint arXiv:1812.05934 (2018)."},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/CHASE.2013.6614738"},{"key":"e_1_3_2_1_45_1","volume-title":"Sixteenth Symposium on Usable Privacy and Security (SOUPS 2020","author":"Smith Justin","year":"2020","unstructured":"Justin Smith, Lisa Nguyen Quang Do, and Emerson Murphy-Hill. 2020. Why Can't Johnny Fix Vulnerabilities: A Usability Evaluation of Static Analysis Tools for Security. In Sixteenth Symposium on Usable Privacy and Security (SOUPS 2020). USENIX Association, 221--238. https:\/\/www.usenix.org\/conference\/soups2020\/presentation\/smith"},{"key":"e_1_3_2_1_46_1","unstructured":"Sunbeom So Myungho Lee Jisu Park Heejo Lee and Hakjoo Oh. 2019. VeriSmart: A Highly Precise Safety Verifier for Ethereum Smart Contracts. arXiv:1908.11227 [cs.PL]"},{"key":"e_1_3_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP51992.2021.00018"},{"key":"e_1_3_2_1_48_1","doi-asserted-by":"publisher","DOI":"10.1145\/3243734.3243780"},{"key":"e_1_3_2_1_49_1","doi-asserted-by":"publisher","DOI":"10.1109\/ICSE-Companion52605.2021.00104"},{"key":"e_1_3_2_1_50_1","doi-asserted-by":"publisher","DOI":"10.1109\/TNSE.2020.2968505"},{"key":"e_1_3_2_1_51_1","volume-title":"Knottenbelt","author":"Werner Sam M.","year":"2022","unstructured":"Sam M. Werner, Daniel Perez, Lewis Gudgeon, Ariah Klages-Mundt, Dominik Harz, and William J. Knottenbelt. 2022. SoK: Decentralized Finance (DeFi). arXiv:2101.08778 [cs.CR]"},{"key":"e_1_3_2_1_52_1","doi-asserted-by":"publisher","DOI":"10.1145\/2786805.2786816"},{"key":"e_1_3_2_1_53_1","unstructured":"Siwei Wu Dabao Wang Jianting He Yajin Zhou Lei Wu Xingliang Yuan Qinming He and Kui Ren. 2021. DeFiRanger: Detecting Price Manipulation Attacks on DeFi Applications. arXiv:2104.15068 [cs.CR]"},{"key":"e_1_3_2_1_54_1","doi-asserted-by":"publisher","DOI":"10.1145\/3368089.3417064"},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3416553"},{"key":"e_1_3_2_1_56_1","volume-title":"xFuzz: Machine Learning Guided Cross-Contract Fuzzing","author":"Xue Yinxing","year":"2022","unstructured":"Yinxing Xue, Jiaming Ye, Wei Zhang, Jun Sun, Lei Ma, Haijun Wang, and Jianjun Zhao. 2022. xFuzz: Machine Learning Guided Cross-Contract Fuzzing. IEEE Transactions on Dependable and Secure Computing (2022)."},{"key":"e_1_3_2_1_57_1","doi-asserted-by":"publisher","DOI":"10.1145\/3377812.3390908"},{"key":"e_1_3_2_1_58_1","unstructured":"Pengcheng Zhang Feng Xiao and Xiapu Luo. 2019. SolidityCheck : Quickly Detecting Smart Contract Problems Through Regular Expressions. arXiv:1911.09425 [cs.SE]"},{"key":"e_1_3_2_1_59_1","doi-asserted-by":"publisher","unstructured":"Pengcheng Zhang Feng Xiao and Xiapu Luo. 2020. A Framework and DataSet for Bugs in Ethereum Smart Contracts. 139--150. 10.1109\/ICSME46990.2020.00023","DOI":"10.1109\/ICSME46990.2020.00023"},{"key":"e_1_3_2_1_60_1","unstructured":"Zhuo Zhang Brian Zhang Xu Wen and Zhiqiang Lin. 2023. Demystifying smart contract vulnerabilities. In ICSE."},{"key":"e_1_3_2_1_61_1","doi-asserted-by":"publisher","DOI":"10.1109\/NTMS.2018.8328743"},{"key":"e_1_3_2_1_62_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00113"},{"key":"e_1_3_2_1_63_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP40001.2021.00027"},{"key":"e_1_3_2_1_64_1","unstructured":"Liyi Zhou Xihan Xiong Jens Ernstberger Stefanos Chaliasos Zhipeng Wang Ye Wang Kaihua Qin Roger Wattenhofer Dawn Song and Arthur Gervais. 2022. SoK: Decentralized Finance (DeFi) Attacks. Cryptology ePrint Archive Paper 2022\/1773. https:\/\/eprint.iacr.org\/2022\/1773 https:\/\/eprint.iacr.org\/2022\/1773."}],"event":{"name":"ICSE '24: IEEE\/ACM 46th International Conference on Software Engineering","location":"Lisbon Portugal","acronym":"ICSE '24","sponsor":["SIGSOFT ACM Special Interest Group on Software Engineering","IEEE CS","Faculty of Engineering of University of Porto"]},"container-title":["Proceedings of the IEEE\/ACM 46th International Conference on Software Engineering"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3597503.3623302","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3597503.3623302","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T17:48:45Z","timestamp":1750182525000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3597503.3623302"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,2,6]]},"references-count":64,"alternative-id":["10.1145\/3597503.3623302","10.1145\/3597503"],"URL":"https:\/\/doi.org\/10.1145\/3597503.3623302","relation":{},"subject":[],"published":{"date-parts":[[2024,2,6]]},"assertion":[{"value":"2024-02-06","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}