{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,25]],"date-time":"2026-04-25T15:46:34Z","timestamp":1777131994199,"version":"3.51.4"},"reference-count":47,"publisher":"Wiley","license":[{"start":{"date-parts":[[2021,9,21]],"date-time":"2021-09-21T00:00:00Z","timestamp":1632182400000},"content-version":"unspecified","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Security and Communication Networks"],"published-print":{"date-parts":[[2021,9,21]]},"abstract":"<jats:p>Ethereum smart contracts have been gaining popularity toward the automation of so many domains, i.e., FinTech, IoT, and supply chain, which are based on blockchain technology. The most critical domain, e.g., FinTech, has been targeted by so many successful attacks due to its financial worth of billions of dollars. In all attacks, the vulnerability in the source code of smart contracts is being exploited and causes the steal of millions of dollars. To find the vulnerability in the source code of smart contracts written in Solidity language, a state-of-the-art work provides a lot of solutions based on dynamic or static analysis. However, these tools have shown a lot of false positives\/negatives against the smart contracts having complex logic. Furthermore, the output of these tools is not reported in a standard way with their actual vulnerability names as per standards defined by the Ethereum community. To solve these problems, we have introduced a static analysis tool, SESCon (secure Ethereum smart contract), applying the taint analysis techniques with XPath queries. Our tool outperforms other analyzers and detected up to 90% of the known vulnerability patterns. SESCon also reports the detected vulnerabilities with their titles, descriptions, and remediations as per defined standards by the Ethereum community. SESCon will serve as a foundation for the standardization of vulnerability detection.<\/jats:p>","DOI":"10.1155\/2021\/2897565","type":"journal-article","created":{"date-parts":[[2021,9,21]],"date-time":"2021-09-21T23:05:52Z","timestamp":1632265552000},"page":"1-14","source":"Crossref","is-referenced-by-count":14,"title":["SESCon: Secure Ethereum Smart Contracts by Vulnerable Patterns\u2019 Detection"],"prefix":"10.1155","volume":"2021","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6872-3588","authenticated-orcid":true,"given":"Amir","family":"Ali","sequence":"first","affiliation":[{"name":"School of Cyber Science and Engineering, Xian Jiaotong University Xian, Shaanxi 710049, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zain Ul","family":"Abideen","sequence":"additional","affiliation":[{"name":"Department of Computer Science, Xian Jiaotong University Xian, Shaanxi 710049, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kalim","family":"Ullah","sequence":"additional","affiliation":[{"name":"Department of Computer Science, CECOS University of IT and Emerging Sciences, Peshawar, Pakistan"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"311","reference":[{"key":"1","article-title":"Bitcoin: a peer-to-peer electronic cash system","author":"S. Nakamoto","year":"2008","journal-title":"Decentralized Business Review"},{"key":"2","article-title":"A next-generation smart contract and decentralized application platform","author":"V. Buterin","year":"2014"},{"key":"3"},{"key":"4"},{"key":"5"},{"key":"6","doi-asserted-by":"publisher","DOI":"10.1145\/3238147.3238177"},{"key":"7","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978309"},{"key":"8","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2018.23082"},{"key":"9","doi-asserted-by":"crossref","article-title":"Securify: practical security analysis of smart contracts","author":"P. Tsankov","DOI":"10.1145\/3243734.3243780"},{"key":"10","doi-asserted-by":"publisher","DOI":"10.1145\/3319535.3363230"},{"key":"11","doi-asserted-by":"publisher","DOI":"10.1109\/wetseb.2019.00008"},{"key":"12","doi-asserted-by":"publisher","DOI":"10.1145\/3360615"},{"key":"13","doi-asserted-by":"crossref","article-title":"\u201cSmartcheck: static analysis of ethereum smart contracts","author":"S. Tikhomirov","DOI":"10.1145\/3194113.3194115"},{"key":"14"},{"key":"15","first-page":"3","article-title":"Dynamic taint analysis for automatic detection, analysis, and signature generation of exploits on commodity software","volume":"5","author":"J. Newsome","year":"2005","journal-title":"NDSS"},{"key":"16","doi-asserted-by":"crossref","article-title":"RA: Hunting for re-entrancy attacks in ethereum smart contracts via static analysis","author":"Y. Chinen","DOI":"10.1109\/Blockchain50366.2020.00048"},{"key":"17","doi-asserted-by":"publisher","DOI":"10.1145\/3324884.3416553"},{"key":"18","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-80126-7_62"},{"key":"19","article-title":"EOSAFE: security analysis of EOSIO smart contracts","author":"N. He"},{"key":"20","doi-asserted-by":"publisher","DOI":"10.1145\/3457337.3457841"},{"key":"21","doi-asserted-by":"crossref","DOI":"10.1109\/WETSEB52558.2021.00010","article-title":"Smartscan: an approach to detect denial of service vulnerability in ethereum smart contracts","author":"N. F. Samreen","year":"2021"},{"key":"22","doi-asserted-by":"publisher","DOI":"10.1016\/j.matpr.2021.04.125"},{"key":"23","unstructured":"GrishchenkoI.MaffeiM.SchneidewindC.EtherTrust: sound static analysis of ethereum bytecode2018Vienna, AustriaTechnische Universit\u00e4t WienTechnical Report D"},{"key":"24","doi-asserted-by":"crossref","article-title":"Verx: safety verification of smart contracts.","author":"A. Permenev","DOI":"10.1109\/SP40000.2020.00024"},{"key":"25","article-title":"Vandal: a scalable security analysis framework for smart contracts","author":"L. Brent","year":"2018"},{"key":"26","doi-asserted-by":"publisher","DOI":"10.1145\/3372297.3417250"},{"key":"27","doi-asserted-by":"publisher","DOI":"10.1145\/3450569.3463574"},{"key":"28","doi-asserted-by":"publisher","DOI":"10.1145\/3377644.3377650"},{"key":"29","year":"2021"},{"key":"30","year":"2021"},{"key":"31","year":"2021"},{"key":"32","year":"2021"},{"key":"33","doi-asserted-by":"publisher","DOI":"10.1016\/j.icte.2020.09.002"},{"key":"34","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-24676-3_32"},{"key":"35"},{"key":"36"},{"key":"37","doi-asserted-by":"publisher","DOI":"10.1109\/access.2020.2970495"},{"key":"38","doi-asserted-by":"publisher","DOI":"10.1145\/2813885.2737957"},{"key":"39","doi-asserted-by":"publisher","DOI":"10.3390\/app10051692"},{"key":"40","year":"2020"},{"key":"41","year":"2020"},{"key":"42","year":"2020"},{"key":"43"},{"key":"44","year":"2020"},{"key":"45","year":"2020"},{"key":"46","doi-asserted-by":"crossref","article-title":"How effective are smart contract analysis tools? evaluating smart contract static analysis tools using bug injection","author":"A. Ghaleb","DOI":"10.1145\/3395363.3397385"},{"key":"47","doi-asserted-by":"crossref","first-page":"119","DOI":"10.1016\/j.comcom.2021.03.008","article-title":"A security framework for Ethereum smart contracts","volume":"172","author":"A. L. Vivar","year":"2021","journal-title":"Computer Communications"}],"container-title":["Security and Communication Networks"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2021\/2897565.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2021\/2897565.xml","content-type":"application\/xml","content-version":"vor","intended-application":"text-mining"},{"URL":"http:\/\/downloads.hindawi.com\/journals\/scn\/2021\/2897565.pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,1,9]],"date-time":"2023-01-09T21:59:45Z","timestamp":1673301585000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.hindawi.com\/journals\/scn\/2021\/2897565\/"}},"subtitle":[],"editor":[{"given":"Farhan","family":"Ullah","sequence":"additional","affiliation":[],"role":[{"role":"editor","vocabulary":"crossref"}]}],"short-title":[],"issued":{"date-parts":[[2021,9,21]]},"references-count":47,"alternative-id":["2897565","2897565"],"URL":"https:\/\/doi.org\/10.1155\/2021\/2897565","relation":{},"ISSN":["1939-0122","1939-0114"],"issn-type":[{"value":"1939-0122","type":"electronic"},{"value":"1939-0114","type":"print"}],"subject":[],"published":{"date-parts":[[2021,9,21]]}}}