Combining GPT and Code-Based Similarity Checking for Effective Smart Contract Vulnerability Detection
Jango Zhang
TL;DR
This paper introduces SimilarGPT, a novel tool combining GPT models with code similarity checks to improve vulnerability detection in smart contracts, achieving higher accuracy and fewer false positives.
Contribution
The paper presents a new approach that integrates LLMs with code similarity techniques for smart contract security, enhancing detection effectiveness.
Findings
Improved vulnerability detection accuracy.
Reduced false positives in security audits.
Effective identification of missed vulnerabilities.
Abstract
With the rapid growth of blockchain technology, smart contracts are now crucial to Decentralized Finance (DeFi) applications. Effective vulnerability detection is vital for securing these contracts against hackers and enhancing the accuracy and efficiency of security audits. In this paper, we present SimilarGPT, a unique vulnerability identification tool for smart contract, which combines Generative Pretrained Transformer (GPT) models with Code-based similarity checking methods. The main concept of the SimilarGPT tool is to measure the similarity between the code under inspection and the secure code from third-party libraries. To identify potential vulnerabilities, we connect the semantic understanding capability of large language models (LLMs) with Code-based similarity checking techniques. We propose optimizing the detection sequence using topological ordering to enhance logical…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsArtificial Intelligence in Law · Imbalanced Data Classification Techniques · Privacy-Preserving Technologies in Data