TY - GEN
T1 - A Transpilation-Based Approach to Writing Secure Access Control Smart Contracts
AU - Bellaj, Badr
AU - Ouaddah, Aafaf
AU - Crespi, Noel
AU - Mezrioui, Abdellatif
AU - Bertin, Emmanuel
N1 - Publisher Copyright:
© 2023 IEEE.
PY - 2023/1/1
Y1 - 2023/1/1
N2 - In blockchain space, access control is a crucial aspect of smart contract development, as it guarantees that only authorized users can execute specific functions within a contract. The growing interest in employing smart contracts for access control mechanisms stems from their ability to provide reliable, secure and efficient enforcement of access control policies. However, Solidity, the most popular smart contract language, was not designed explicitly for writing access control policies, unlike specialized languages such as Alfa or XACML. The differences between these languages leads to a difficulty for those who wish to use smart contracts as access control mechanisms but lack the knowledge of Solidity or the ability to evaluate their code's security. To bridge this gap, we introduce ASAC, an Alfa to Solidity transpiler that translates Alfa policies into secure Solidity contracts. Our transpiler leverages the ANTLR (ANother Tool for Language Recognition) parser generator and translate complex Alfa policies into smart contracts. We showcase the effectiveness of our transpiler through a set of case studies and offer an evaluation of its performance.
AB - In blockchain space, access control is a crucial aspect of smart contract development, as it guarantees that only authorized users can execute specific functions within a contract. The growing interest in employing smart contracts for access control mechanisms stems from their ability to provide reliable, secure and efficient enforcement of access control policies. However, Solidity, the most popular smart contract language, was not designed explicitly for writing access control policies, unlike specialized languages such as Alfa or XACML. The differences between these languages leads to a difficulty for those who wish to use smart contracts as access control mechanisms but lack the knowledge of Solidity or the ability to evaluate their code's security. To bridge this gap, we introduce ASAC, an Alfa to Solidity transpiler that translates Alfa policies into secure Solidity contracts. Our transpiler leverages the ANTLR (ANother Tool for Language Recognition) parser generator and translate complex Alfa policies into smart contracts. We showcase the effectiveness of our transpiler through a set of case studies and offer an evaluation of its performance.
KW - Alfa
KW - Solidity
KW - access control
KW - smart contracts
KW - transpiler
U2 - 10.1109/BRAINS59668.2023.10316873
DO - 10.1109/BRAINS59668.2023.10316873
M3 - Conference contribution
AN - SCOPUS:85179625722
T3 - 5th Conference on Blockchain Research and Applications for Innovative Networks and Services, BRAINS 2023
BT - 5th Conference on Blockchain Research and Applications for Innovative Networks and Services, BRAINS 2023
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 5th Conference on Blockchain Research and Applications for Innovative Networks and Services, BRAINS 2023
Y2 - 11 October 2023 through 13 October 2023
ER -