Bitcoin Forum>Alternate cryptocurrencies>Altcoin Discussion
Author

Topic: Could Ethereum & automated transactions spread viruses/malware? (Read 1695 times)

CIYAM
legendary
Activity: 1890
Merit: 1072
Ian Knowles - CIYAM Lead Developer
Could Ethereum & automated transactions spread viruses/malware?
March 02, 2015, 11:24:53 PM
#7
Quote from: ThomasVeil on March 02, 2015, 09:58:33 PM
Couldn't someone use some kind of memory overflow, to then make the computer execute code on the machine? So it would need some sort of bug - but since bugs tend to exist, such things have been done on other systems routinely.

In the case of AT it would only really be possible via the AT API having a bug (which is why it is purposely not a very large API).

Thorough testing of API functions should ensure that there is no "deadly memory leak" or the like but of course "complete coverage" isn't so easy (so constant reviewing of the API source code would be required).
ThomasVeil
sr. member
Activity: 252
Merit: 250
Re: Could Ethereum & automated transactions spread viruses/malware?
March 02, 2015, 09:58:33 PM
#6
Couldn't someone use some kind of memory overflow, to then make the computer execute code on the machine? So it would need some sort of bug - but since bugs tend to exist, such things have been done on other systems routinely.
vbcs
full member
Activity: 137
Merit: 100
AT - Automated Transactions - CIYAM Developer
Re: Could Ethereum & automated transactions spread viruses/malware?
March 02, 2015, 09:58:02 AM
#5
Thus writing a Virus Smart Contract is not feasible, but exploiting the underlying implementation somehow by founding a bug is a different story.
CIYAM
legendary
Activity: 1890
Merit: 1072
Ian Knowles - CIYAM Lead Developer
Re: Could Ethereum & automated transactions spread viruses/malware?
March 02, 2015, 09:52:11 AM
#4
ATs cannot execute any code outside of their own machine code and its API has been kept intentionally very minimal so that it isn't possible to create anything more nefarious than a smart contract that fails to work properly.

For example - it cannot create files, it cannot create or use internet connections but can only operate within its very limited sandbox.

Although I haven't studied Ethereum in detail I would expect it is also safe from this sort of issue.

Of course a "bug" in a particular implementation (of the API in particular) could present a huge problem and that is why such things need extensive testing.
Come-from-Beyond
legendary
Activity: 2142
Merit: 1009
Newbie
Re: Could Ethereum & automated transactions spread viruses/malware?
March 02, 2015, 09:48:10 AM
#3
Quote from: Lorenzo on March 02, 2015, 09:04:50 AM
Forgive my ignorance but would this be possible?

Yes, if there is a bug/feature that gives a chance to execute code outside of the virtual machine running smart contracts.
vbcs
full member
Activity: 137
Merit: 100
AT - Automated Transactions - CIYAM Developer
Re: Could Ethereum & automated transactions spread viruses/malware?
March 02, 2015, 09:41:20 AM
#2
I will speak on behalf the AT smart engine that is currently live on burst coin. No you cannot infect the host pc with virus using AT contracts. But for sure someone can create an AT contract that says it does x but it does y and you end up loosing money if you send coins to the AT, but at least anyone can check the code the AT is executing.
Lorenzo
sr. member
Activity: 406
Merit: 250
Re: Could Ethereum & automated transactions spread viruses/malware?
March 02, 2015, 09:04:50 AM
#1
Forgive my ignorance but would this be possible? I admit I know very little about this but from what I understand, Ethereum and a few other coins are developing automated transactions and Turing complete scripting engines that interpret code/applications uploaded to the blockchain. Could applications written in this manner execute in the users' machine or are they confined to the blockchain?
Bitcoin Forum>Alternate cryptocurrencies>Altcoin Discussion
Jump to: