SPLASH 2020
Sun 15 - Sat 21 November 2020 Online Conference
Thu 19 Nov 2020 15:00 - 15:20 at SPLASH-I - R-5 Chair(s): Anitha Gollamudi, Alex Potanin
Fri 20 Nov 2020 03:00 - 03:20 at SPLASH-I - R-5 Chair(s): Jan Vitek

Static analysis of smart contracts as-deployed on the Ethereum blockchain has received much recent attention.
However, high-precision analyses currently face significant challenges when dealing with the Ethereum VM (EVM) execution model.
A major such challenge is the modeling of low-level, transient memory'' (as opposed to persistent, on-blockchainstorage'') that smart contracts employ.
Statically understanding the usage patterns of memory is non-trivial, due to the dynamic allocation
nature of in-memory buffers.
We offer an analysis that models EVM memory, recovering high-level concepts (e.g., arrays, buffers, call arguments) via deep modeling of the flow of values.
Our analysis opens the door to Ethereum static analyses with drastically increased precision.
One such analysis detects the extraction of ERC20 tokens by unauthorized users.
For another practical vulnerability (redundant calls, possibly used as an attack vector), our memory modeling yields analysis precision of 89%, compared to 16% for a state-of-the-art tool without precise memory modeling.
Additionally, precise memory modeling enables the static computation of a contract's gas cost.
This gas-cost analysis has recently been instrumental in the evaluation of the impact of the EIP-1884 repricing (in terms of gas costs) of EVM operations, leading to a reward and
significant publicity from the Ethereum Foundation.

Thu 19 Nov

Displayed time zone: Central Time (US & Canada) change

15:00 - 16:20
R-5OOPSLA at SPLASH-I +12h
Chair(s): Anitha Gollamudi Harvard University, Alex Potanin Victoria University of Wellington
15:00
20m
Talk
Precise Static Modeling of Ethereum “Memory”
OOPSLA
Sifis Lagouvardos University of Athens, Neville Grech University of Malta, Ilias Tsatiris University of Athens, Yannis Smaragdakis University of Athens
Link to publication DOI Media Attached
15:20
20m
Talk
Perfectly Parallel Fairness Certification of Neural Networks
OOPSLA
Caterina Urban INRIA & École Normale Supérieure | Université PSL, Maria Christakis MPI-SWS, Valentin Wüstholz ConsenSys, Fuyuan Zhang MPI-SWS
Link to publication DOI Media Attached
15:40
20m
Talk
Taming Callbacks for Smart Contract Modularity
OOPSLA
Elvira Albert Complutense University of Madrid, Shelly Grossman Tel Aviv University, Noam Rinetzky Tel Aviv University, Clara Rodríguez-Núñez Complutense University of Madrid, Albert Rubio Complutense University of Madrid, Mooly Sagiv Tel Aviv University
Link to publication DOI Media Attached
16:00
20m
Talk
Exposing Cache Timing Side-Channel Leaks through Out-of-Order Symbolic Execution
OOPSLA
Shengjian Guo Baidu Security, Yueqi Chen Pennsylvania State University, Jiyong Yu University of Illinois at Urbana-Champaign, Meng Wu Ant Group, Zhiqiang Zuo Nanjing University, Peng Li Baidu Security, Yueqiang Cheng Baidu Security, Huibo Wang Baidu Security
Link to publication DOI Media Attached

Fri 20 Nov

Displayed time zone: Central Time (US & Canada) change

03:00 - 04:20
R-5OOPSLA at SPLASH-I
Chair(s): Jan Vitek Northeastern University / Czech Technical University
03:00
20m
Talk
Precise Static Modeling of Ethereum “Memory”
OOPSLA
Sifis Lagouvardos University of Athens, Neville Grech University of Malta, Ilias Tsatiris University of Athens, Yannis Smaragdakis University of Athens
Link to publication DOI Media Attached
03:20
20m
Talk
Perfectly Parallel Fairness Certification of Neural Networks
OOPSLA
Caterina Urban INRIA & École Normale Supérieure | Université PSL, Maria Christakis MPI-SWS, Valentin Wüstholz ConsenSys, Fuyuan Zhang MPI-SWS
Link to publication DOI Media Attached
03:40
20m
Talk
Taming Callbacks for Smart Contract Modularity
OOPSLA
Elvira Albert Complutense University of Madrid, Shelly Grossman Tel Aviv University, Noam Rinetzky Tel Aviv University, Clara Rodríguez-Núñez Complutense University of Madrid, Albert Rubio Complutense University of Madrid, Mooly Sagiv Tel Aviv University
Link to publication DOI Media Attached
04:00
20m
Talk
Exposing Cache Timing Side-Channel Leaks through Out-of-Order Symbolic Execution
OOPSLA
Shengjian Guo Baidu Security, Yueqi Chen Pennsylvania State University, Jiyong Yu University of Illinois at Urbana-Champaign, Meng Wu Ant Group, Zhiqiang Zuo Nanjing University, Peng Li Baidu Security, Yueqiang Cheng Baidu Security, Huibo Wang Baidu Security
Link to publication DOI Media Attached