Smart contracts are vulnerable to security issues, particularly access control vulnerabilities. ACFIX leverages RBAC practices and context information to guide repairs, achieving a 94.92% success rate in fixing vulnerabilities. The approach involves offline mining of common practices and online guidance for LLMs.
Existing research tools like SGuard and SmartFix have limitations in repairing AC vulnerabilities compared to ACFIX. ACFIX's methodology involves generating patches based on mined RBAC practices and validating them effectively.
Til et andet sprog
fra kildeindhold
arxiv.org
Vigtigste indsigter udtrukket fra
by Lyuye Zhang,... kl. arxiv.org 03-12-2024
https://arxiv.org/pdf/2403.06838.pdfDybere Forespørgsler