{"id":"https://openalex.org/W4414605384","doi":"https://doi.org/10.1109/qrs65678.2025.00079","title":"WASDAM: Effectively Detecting Vulnerabilities in Wasm Smart Contracts Based on the Data Access Model","display_name":"WASDAM: Effectively Detecting Vulnerabilities in Wasm Smart Contracts Based on the Data Access Model","publication_year":2025,"publication_date":"2025-07-16","ids":{"openalex":"https://openalex.org/W4414605384","doi":"https://doi.org/10.1109/qrs65678.2025.00079"},"language":"en","primary_location":{"id":"doi:10.1109/qrs65678.2025.00079","is_oa":false,"landing_page_url":"https://doi.org/10.1109/qrs65678.2025.00079","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 25th International Conference on Software Quality, Reliability and Security (QRS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5112313737","display_name":"Chu Chen","orcid":"https://orcid.org/0000-0002-3055-6988"},"institutions":[{"id":"https://openalex.org/I202126657","display_name":"Qufu Normal University","ror":"https://ror.org/03ceheh96","country_code":"CN","type":"education","lineage":["https://openalex.org/I202126657"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Chu Chen","raw_affiliation_strings":["School of Computer Science, Qufu Normal University,Rizhao,Shandong,China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science, Qufu Normal University,Rizhao,Shandong,China","institution_ids":["https://openalex.org/I202126657"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100328991","display_name":"Xuan Wang","orcid":"https://orcid.org/0000-0002-2094-5111"},"institutions":[{"id":"https://openalex.org/I202126657","display_name":"Qufu Normal University","ror":"https://ror.org/03ceheh96","country_code":"CN","type":"education","lineage":["https://openalex.org/I202126657"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xuan Wang","raw_affiliation_strings":["School of Computer Science, Qufu Normal University,Rizhao,Shandong,China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science, Qufu Normal University,Rizhao,Shandong,China","institution_ids":["https://openalex.org/I202126657"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5112953884","display_name":"Pinghong Ren","orcid":null},"institutions":[{"id":"https://openalex.org/I202126657","display_name":"Qufu Normal University","ror":"https://ror.org/03ceheh96","country_code":"CN","type":"education","lineage":["https://openalex.org/I202126657"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Pinghong Ren","raw_affiliation_strings":["School of Computer Science, Qufu Normal University,Rizhao,Shandong,China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science, Qufu Normal University,Rizhao,Shandong,China","institution_ids":["https://openalex.org/I202126657"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101538432","display_name":"Bin Yu","orcid":"https://orcid.org/0000-0003-3794-1069"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Bin Yu","raw_affiliation_strings":["School of Computer Science and Technology, Xidian University,Xi&#x0027;an,China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Xidian University,Xi&#x0027;an,China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5023719440","display_name":"Jin Liu","orcid":"https://orcid.org/0000-0001-7415-3729"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jin Liu","raw_affiliation_strings":["School of Computer Science and Engineering, Xi&#x0027;an University of Technology,Xi&#x0027;an,China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Engineering, Xi&#x0027;an University of Technology,Xi&#x0027;an,China","institution_ids":[]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.35624267,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9591000080108643,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10270","display_name":"Blockchain Technology Applications and Security","score":0.9591000080108643,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14260","display_name":"Impact of AI and Big Data on Business and Society","score":0.909600019454956,"subfield":{"id":"https://openalex.org/subfields/1803","display_name":"Management Science and Operations Research"},"field":{"id":"https://openalex.org/fields/18","display_name":"Decision Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.8885999917984009},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.7746000289916992},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.5195000171661377},{"id":"https://openalex.org/keywords/path","display_name":"Path (computing)","score":0.5026999711990356},{"id":"https://openalex.org/keywords/state","display_name":"State (computer science)","score":0.4814999997615814},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.4377000033855438},{"id":"https://openalex.org/keywords/data-breach","display_name":"Data breach","score":0.43529999256134033},{"id":"https://openalex.org/keywords/vulnerability-management","display_name":"Vulnerability management","score":0.43290001153945923}],"concepts":[{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.8885999917984009},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.7746000289916992},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7642999887466431},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.675000011920929},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.5195000171661377},{"id":"https://openalex.org/C2777735758","wikidata":"https://www.wikidata.org/wiki/Q817765","display_name":"Path (computing)","level":2,"score":0.5026999711990356},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.4814999997615814},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.4377000033855438},{"id":"https://openalex.org/C165609540","wikidata":"https://www.wikidata.org/wiki/Q1172486","display_name":"Data breach","level":2,"score":0.43529999256134033},{"id":"https://openalex.org/C172776598","wikidata":"https://www.wikidata.org/wiki/Q7943570","display_name":"Vulnerability management","level":4,"score":0.43290001153945923},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.39800000190734863},{"id":"https://openalex.org/C47487241","wikidata":"https://www.wikidata.org/wiki/Q5227230","display_name":"Data access","level":2,"score":0.3643999993801117},{"id":"https://openalex.org/C110406131","wikidata":"https://www.wikidata.org/wiki/Q41349","display_name":"Smart card","level":2,"score":0.35100001096725464},{"id":"https://openalex.org/C33762810","wikidata":"https://www.wikidata.org/wiki/Q461671","display_name":"Data integrity","level":2,"score":0.3431999981403351},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.320499986410141},{"id":"https://openalex.org/C527821871","wikidata":"https://www.wikidata.org/wiki/Q228502","display_name":"Access control","level":2,"score":0.3181000053882599},{"id":"https://openalex.org/C38369872","wikidata":"https://www.wikidata.org/wiki/Q7445009","display_name":"Security analysis","level":2,"score":0.30869999527931213},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.30660000443458557},{"id":"https://openalex.org/C107101626","wikidata":"https://www.wikidata.org/wiki/Q842234","display_name":"Full disclosure","level":2,"score":0.2685999870300293},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.2554999887943268},{"id":"https://openalex.org/C2779950589","wikidata":"https://www.wikidata.org/wiki/Q7544035","display_name":"Smart contract","level":3,"score":0.25450000166893005},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.25110000371932983}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/qrs65678.2025.00079","is_oa":false,"landing_page_url":"https://doi.org/10.1109/qrs65678.2025.00079","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 25th International Conference on Software Quality, Reliability and Security (QRS)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G5998918922","display_name":null,"funder_award_id":"62202361,62202371,62402372","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G978285720","display_name":null,"funder_award_id":"XJS210305","funder_id":"https://openalex.org/F4320335787","funder_display_name":"Fundamental Research Funds for the Central Universities"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320335787","display_name":"Fundamental Research Funds for the Central Universities","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W2987328450","https://openalex.org/W3008357810","https://openalex.org/W3098450669","https://openalex.org/W3127104553","https://openalex.org/W3163257481","https://openalex.org/W3181957689","https://openalex.org/W3183146186","https://openalex.org/W3204160722","https://openalex.org/W3214421193","https://openalex.org/W4206712151","https://openalex.org/W4226145659","https://openalex.org/W4285490420","https://openalex.org/W4287888697","https://openalex.org/W4292230978","https://openalex.org/W4308632432","https://openalex.org/W4316661173","https://openalex.org/W4321061919","https://openalex.org/W4376613318","https://openalex.org/W4384154469","https://openalex.org/W4391724771","https://openalex.org/W4393188189","https://openalex.org/W4405265011"],"related_works":[],"abstract_inverted_index":{"As":[0],"WebAssembly":[1],"(Wasm)":[2],"smart":[3,109],"contracts":[4,110],"are":[5],"widely":[6],"deployed":[7],"in":[8,38,107,119],"blockchain":[9,28],"platforms":[10],"such":[11],"as":[12],"EOSIO,":[13],"the":[14,24,36,81,114],"threat":[15],"of":[16,27,83,92,121],"vulnerability":[17,32,84],"attacks":[18],"has":[19],"become":[20],"increasingly":[21],"significant.":[22],"Protecting":[23],"legitimate":[25],"interests":[26],"users":[29],"necessitates":[30],"robust":[31],"detection":[33],"approaches.":[34],"Despite":[35],"advancements":[37],"existing":[39],"approaches,":[40],"several":[41],"challenges":[42],"remain,":[43],"including":[44],"state":[45,48],"dependency,":[46],"cross-function":[47],"transfer,":[49],"and":[50,75,94],"path":[51,77],"selection.":[52],"To":[53],"tackle":[54],"these":[55],"issues,":[56],"we":[57],"introduce":[58],"a":[59],"novel":[60],"concolic":[61,116],"fuzzing":[62],"approach":[63],"called":[64],"WASDAM,":[65],"which":[66],"integrates":[67],"data":[68],"access":[69],"modeling,":[70],"dynamic":[71],"sensitive":[72],"code":[73],"tracing,":[74],"shortest":[76],"optimization":[78],"to":[79],"enhance":[80],"effectiveness":[82],"detection.":[85],"We":[86],"have":[87],"developed":[88],"an":[89],"open-source":[90],"prototype":[91],"WASDAM":[93,104],"performed":[95],"comprehensive":[96],"experimental":[97],"evaluations.":[98],"The":[99],"evaluation":[100],"results":[101],"demonstrate":[102],"that":[103],"detects":[105],"vulnerabilities":[106],"Wasm":[108],"more":[111],"effectively":[112],"than":[113],"state-of-the-art":[115],"fuzzer":[117],"WASAI":[118],"terms":[120],"various":[122],"performance":[123],"metrics.":[124]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}