Towards Safer Smart Contracts: A Survey of Languages and Verification Methods

With a market capitalisation of over USD 205 billion in just under ten years, public distributed ledgers have experienced significant adoption. Apart from novel consensus mechanisms, their success is also accountable to smart contracts. These programs allow distrusting parties to enter agreements that are executed autonomously. However, implementation issues in smart contracts caused severe losses to the users of such contracts. Significant efforts are taken to improve their security by introducing new programming languages and advance verification methods. We provide a survey of those efforts in two parts. First, we introduce several smart contract languages focussing on security features. To that end, we present an overview concerning paradigm, type, instruction set, semantics, and metering. Second, we examine verification tools and methods for smart contract and distributed ledgers. Accordingly, we introduce their verification approach, level of automation, coverage, and supported languages. Last, we present future research directions including formal semantics, verified compilers, and automated verification.

• Publication year

  2018

• Venue

  arXiv.org

• Publication date

  2018-09-26

• Fields of study

  Computer Science, Engineering

• Identifiers
  arXiv 1809.09805
• External record

  Open on Semantic Scholar

• Source metadata

  Semantic Scholar

• No claims are published for this paper.

• No concepts are published for this paper.

• A scalable verification solution for blockchains

  2019cited by this paper
• A formal verification tool for Ethereum VM bytecode

  2018cited by this paper
• Scilla: a Smart Contract Intermediate-Level LAnguage

  2018influential reference
• IELE: An Intermediate-Level Blockchain Language Designed and Implemented Using Formal Semantics

  2018cited by this paper
• ZEUS: Analyzing Safety of Smart Contracts

  2018cited by this paper
• Finding The Greedy, Prodigal, and Suicidal Contracts at Scale

  2018influential reference
• A Semantic Framework for the Security Analysis of Ethereum smart contracts

  2018influential reference
• Enter the Hydra: Towards Principled Bug Bounties and Exploit-Resistant Smart Contracts

  2018cited by this paper
• Writing safe smart contracts in Flint

  2018cited by this paper
• Recycling Smart Contracts: Compression of the Ethereum Blockchain

  2018cited by this paper
• Smart contracts: security patterns in the ethereum ecosystem and solidity

  2018cited by this paper
• NECTAR: Non-Interactive Smart Contract Protocol Using Blockchain Technology

  2018cited by this paper
• Verifiable Delay Functions

  2018cited by this paper
• Securify: Practical Security Analysis of Smart Contracts

  2018influential reference
• Towards verifying ethereum smart contract bytecode in Isabelle/HOL

  2018cited by this paper
• EthIR: A Framework for High-Level Analysis of Ethereum Bytecode

  2018influential reference
• Designing Secure Ethereum Smart Contracts: A Finite State Machine Based Approach

  2017influential reference
• Online detection of effectively callback free objects with applications to smart contracts

  2017influential reference
• Plasma : Scalable Autonomous Smart Contracts

  2017cited by this paper
• KEVM: A Complete Semantics of the Ethereum Virtual Machine

  2017influential reference
• A Survey of Attacks on Ethereum Smart Contracts (SoK)

  2017cited by this paper
• Simplicity: A New Language for Blockchains

  2017influential reference
• Obsidian: A Safer Blockchain Programming Language

  2017cited by this paper
• Defining the Ethereum Virtual Machine for Interactive Theorem Provers

  2017influential reference
• Evaluation of Logic-Based Smart Contracts for Blockchain Systems

  2016cited by this paper
• Smart Contract Templates: foundations, design landscape and research directions

  2016cited by this paper
• Making Smart Contracts Smarter

  2016influential reference
• Architecture of the Hyperledger Blockchain Fabric

  2016cited by this paper
• POLKADOT: VISION FOR A HETEROGENEOUS MULTI-CHAIN FRAMEWORK

  2016cited by this paper
• A NEXT GENERATION SMART CONTRACT & DECENTRALIZED APPLICATION PLATFORM

  2015cited by this paper
• SoK: Research Perspectives and Challenges for Bitcoin and Cryptocurrencies

  2015cited by this paper
• Zerocash: Decentralized Anonymous Payments from Bitcoin

  2014cited by this paper
• ETHEREUM: A SECURE DECENTRALISED GENERALISED TRANSACTION LEDGER

  2014influential reference
• A ‘missing’ family of classical orthogonal polynomials

  2010cited by this paper
• Run-Time Monitoring of Electronic Contracts

  2008cited by this paper
• Bitcoin: A Peer-to-Peer Electronic Cash System

  2008influential reference
• Logic in Computer Science: Modelling and Reasoning About Systems

  2007cited by this paper
• K: A Rewriting-Based Framework for Computations -- Preliminary version --

  2007cited by this paper
• Compositional specification of commercial contracts

  2006cited by this paper
• Automated Technology for Verification and Analysis

  2004cited by this paper
• LLVM: a compilation framework for lifelong program analysis & transformation

  2004cited by this paper
• A multi-party contract model

  2004cited by this paper
• Logic in Computer Science: Modelling and Reasoning about Systems

  2000cited by this paper
• Formalizing and Securing Relationships on Public Networks

  1997cited by this paper
• Pyramid Scheme

  1997cited by this paper
• The Contract Net Protocol: High-Level Communication and Control in a Distributed Problem Solver

  1980cited by this paper
• BAMBOO

  1966cited by this paper

• CodeBERT-Based Embeddings for Detecting Vulnerable Smart Contracts

  2025cites this paper
• FinTech, Fractional Trading, and Order Book Dynamics: A Study of US Equities Markets

  2025cites this paper
• Extract, model, refine: improved modelling of program verification tools through data enrichment

  2025cites this paper
• Decentralized Human-Readable Wallet Address System (DHRWAS): A Decentralized Approach to Simplifying Blockchain Wallet Addressing

  2025cites this paper
• On state reverting in solidity smart contracts: Developer practices, fault categorization, and tool evaluation

  2025cites this paper
• Vulnerabilities of smart contracts and mitigation schemes: A Comprehensive Survey

  2024cites this paper
• Smart contracts auditing and multi-classification using machine learning algorithms: an efficient vulnerability detection in ethereum blockchain

  2024cites this paper
• Strategic Reasoning for BitML Smart Contracts

  2024cites this paper
• Machine learning approaches for enhancing smart contracts security: A systematic literature review

  2024cites this paper
• SGDL: Smart contract vulnerability generation via deep learning

  2024cites this paper
• Smart Contract and DeFi Security Tools: Do They Meet the Needs of Practitioners?

  2023cites this paper
• Security Threat Mitigation for Smart Contracts: A Comprehensive Survey

  2023cites this paper
• Analyzing the Impact of Elusive Faults on Blockchain Reliability

  2023cites this paper
• Risk analysis in decentralized finance (DeFi): a fuzzy-AHP approach

  2023cites this paper
• CACPA: Credible Alliance-Chain-Based Public Auditing Scheme for Cloud Storage

  2023cites this paper
• Survey on Quality Assurance of Smart Contracts

  2023cites this paper
• Dissecting Smart Contract Languages: A Survey

  2023cites this paper
• A survey on smart contract vulnerabilities: Data sources, detection and repair

  2023cites this paper
• Applications of Blockchain in Business Processes: A Comprehensive Review

  2022cites this paper
• Systematic Review of Security Vulnerabilities in Ethereum Blockchain Smart Contract

  2022cites this paper
• A survey on security in consensus and smart contracts

  2022cites this paper
• Ethereum Smart Contract Analysis Tools: A Systematic Review

  2022cites this paper
• Improving the Digital Security of Smart Energy Systems with Smart Contracts

  2022cites this paper
• Prisma : A Tierless Language for Enforcing Contract-client Protocols in Decentralized Applications

  2022cites this paper
• Modeling and Enforcing Access Control Policies for Smart Contracts

  2022cites this paper
• Modelling program verification tools for software engineers

  2022cites this paper
• A Model-Checking Framework for the Verification of Move Smart Contracts

  2022cites this paper
• A BiLSTM-Attention Model for Detecting Smart Contract Defects More Accurately

  2022cites this paper
• ODU Digital Commons ODU Digital Commons

  2022cites this paper
• Flash Crash for Cash: Cyber Threats in Decentralized Finance

  2021cites this paper
• Legally Enforceable Smart-Contract Languages

  2021influential citation
• A Survey of Practical Formal Methods for Security

  2021cites this paper
• Security enhancement technologies for smart contracts in the blockchain: A survey

  2021cites this paper
• Toward the Ontological Modeling of Smart Contracts: A Solidity Use Case

  2021cites this paper
• A Semidecentralized PKI System Based on Public Blockchains with Automatic Indemnification Mechanism

  2021cites this paper
• A Survey of Verification, Validation and Testing Solutions for Smart Contracts

  2021cites this paper
• Potential Risk Detection System of Hyperledger Fabric Smart Contract based on Static Analysis

  2021cites this paper
• User-Centered Design of Principled Programming Languages

  2021cites this paper
• Smart Contract Vulnerabilities: Vulnerable Does Not Imply Exploited

  2021cites this paper
• SoK: Decentralized Finance (DeFi)

  2021cites this paper
• Formal Modelling and Security Analysis of Bitcoin's Payment Protocol

  2021cites this paper
• Blockchain smart contracts: Applications, challenges, and future trends

  2021cites this paper
• Verification of a Smart Contract for a Simple Casino

  2021cites this paper
• Smart Contract Languages

  2020cites this paper
• Step on the Gas? A Better Approach for Recommending the Ethereum Gas Price

  2020cites this paper
• Verified Software. Theories, Tools, and Experiments: 11th International Conference, VSTTE 2019, New York City, NY, USA, July 13–14, 2019, Revised Selected Papers

  2020cites this paper
• Vyper: A Security Comparison with Solidity Based on Common Vulnerabilities

  2020cites this paper
• A Formally Verified Static Analysis Framework for Compositional Contracts

  2020cites this paper
• Smart Contracts Contracts

  2020cites this paper
• Using Fault Injection to Assess Blockchain Systems in Presence of Faulty Smart Contracts

  2020cites this paper
• Smart contracts on the blockchain - A bibliometric analysis and review

  2020cites this paper
• Maintenance-related concerns for post-deployed Ethereum smart contract development: issues, techniques, and future challenges

  2020cites this paper
• Recent Advances in Smart Contracts: A Technical Overview and State of the Art

  2020cites this paper
• Financial Cryptography and Data Security: FC 2020 International Workshops, AsiaUSEC, CoDeFi, VOTING, and WTSC, Kota Kinabalu, Malaysia, February 14, 2020, Revised Selected Papers

  2020cites this paper
• A Survey of Smart Contract Formal Specification and Verification

  2020cites this paper
• Security checklists for Ethereum smart contract development: patterns and best practices

  2020cites this paper
• A comprehensive survey on smart contract construction and execution: paradigms, tools, and systems

  2020cites this paper
• Testing Ethereum Smart Contracts: A Comparison of Symbolic Analysis and Fuzz Testing Tools

  2020cites this paper
• A Distributed framework for detecting DDoS attacks in smart contract‐based Blockchain‐IoT Systems by leveraging Fog computing

  2020cites this paper
• BlockConfess: Towards an Architecture for Blockchain Constraints and Forensics

  2020cites this paper
• A Metric-Based Approach to Modelling a Virtual Machine for Smart Contract Execution

  2020influential citation
• Test, Trace, and Put on the Blockchain?: A Viewpoint Evaluating the Use of Decentralized Systems for Algorithmic Contact Tracing to Combat a Global Pandemic

  2020cites this paper
• Maintaining Smart Contracts on Ethereum: Issues, Techniques, and Future Challenges

  2020cites this paper
• Smart Contract Vulnerabilities: Does Anyone Care?

  2019cites this paper
• PLIERS

  2019cites this paper
• Aplos: Smart Contracts Made Smart

  2019cites this paper
• Potential Risks of Hyperledger Fabric Smart Contracts

  2019cites this paper
• Smart Contract Development from the Perspective of Developers: Topics and Issues Discussed on Social Media

  2019cites this paper
• An Overview on Smart Contracts: Challenges, Advances and Platforms

  2019cites this paper
• System F in Agda, for Fun and Profit

  2019cites this paper
• The Security Reference Architecture for Blockchains: Toward a Standardized Model for Studying Vulnerabilities, Threats, and Defenses

  2019cites this paper
• Overview of the Languages for Safe Smart Contract Programming

  2019cites this paper
• Smart Contracts as Authorized Production Rules

  2019cites this paper
• Oracle-Supported Dynamic Exploit Generation for Smart Contracts

  2019cites this paper
• Broken Metre: Attacking Resource Metering in EVM

  2019cites this paper
• A Survey on Ethereum Systems Security

  2019cites this paper
• Obsidian

  2019cites this paper
• Obsidian : Typestate and Assets for Safer Smart Contracts

  2019cites this paper
• Security Analysis Methods on Ethereum Smart Contract Vulnerabilities: A Survey

  2019cites this paper
• Porthos: Macroprogramming Blockchain Systems

  2019cites this paper
• solc-verify: A Modular Verifier for Solidity Smart Contracts

  2019cites this paper
• Fuzzing for Smart Contract Interworking Security Evaluation: An Empirical Evaluation of the State of the Art

  year unknowncites this paper