中图分类号： TP301
文献标识码： A
DOI： 10.19358/j.issn.2096-5133.2021.05.003
引用格式： 朱雪阳. The DAO事件的形式化分析[J].信息技术与网络安全，2021，40(5)：13-19.

Formal analysis of the DAO exploit

Abstract： Along with the spread and deepening of blockchain technology application, the role of smart contracts inevitably become more and more important, and the security of smart contracts must receive more attention. Due to the immutable nature of blockchain, once a smart contract is deployed，it cannot be changed. Therefore, it is particularly important to guarantee the reliability during the development stage of smart contracts. In the DAO exploit, hackers were able to steal lots of ether, which was of great value at the time, due to a vulnerability called Reentrancy. This paper illustrates the feature of the vulnerability and the attack behavior by formal analysis, and by which the model checking based formal verification of smart contracts is also introduced.

Key words : smart contract；formal verification；model checking；vulnerability