Schloss Dagstuhl - Leibniz-Zentrum für Informatik GmbH Schloss Dagstuhl - Leibniz-Zentrum für Informatik GmbH scholarly article en Gabbay, Murdoch J.; Jakobsson, Arvid; Sojakova, Kristina https://www.dagstuhl.de/oasics License: Creative Commons Attribution 4.0 license (CC BY 4.0)
when quoting this document, please refer to the following
DOI:
URN: urn:nbn:de:0030-drops-154267
URL:

; ;

Money Grows on (Proof-)Trees: The Formal FA1.2 Ledger Standard

pdf-format:


Abstract

Once you have invented digital money, you may need a ledger to track who owns what - along with an interface to that ledger so that users of your money can transact. On the Tezos blockchain this implies: a smart contract (distributed program), storing in its state a ledger to map owner addresses to token quantities; along with standardised entrypoints to query and transact on accounts.
A bank does a similar job - it maps account numbers to account quantities and permits users to transact - but in return the bank demands trust, it incurs expense to maintain a centralised server and staff, it uses a proprietary interface ... and it may speculate using your money and/or display rent-seeking behaviour. A blockchain ledger is by design decentralised, inexpensive, open, and it won't just decide to bet your tokens on risky derivatives (unless you want it to).
The FA1.2 standard is an open standard for ledger-keeping smart contracts on the Tezos blockchain. Several FA1.2 implementations already exist.
Or do they? Is the standard sensible and complete? Are the implementations correct? And what are they implementations of? The FA1.2 standard is written in English, a specification language favoured by wet human brains but notorious for its incompleteness and ambiguity when rendered into dry and unforgiving code.
In this paper we report on a formalisation of the FA1.2 standard as a Coq specification, and on a formal verification of three FA1.2-compliant smart contracts with respect to that specification. Errors were found and ambiguities were resolved; but also, there now exists a mathematically precise and battle-tested specification of the FA1.2 ledger standard.
We will describe FA1.2 itself, outline the structure of the Coq theories - which in itself captures some non-trivial and novel design decisions of the development - and review the detailed verification of the implementations.

BibTeX - Entry

@InProceedings{gabbay_et_al:OASIcs.FMBC.2021.2,
  author =	{Gabbay, Murdoch J. and Jakobsson, Arvid and Sojakova, Kristina},
  title =	{{Money Grows on (Proof-)Trees: The Formal FA1.2 Ledger Standard}},
  booktitle =	{3rd International Workshop on Formal Methods for Blockchains (FMBC 2021)},
  pages =	{2:1--2:14},
  series =	{Open Access Series in Informatics (OASIcs)},
  ISBN =	{978-3-95977-209-9},
  ISSN =	{2190-6807},
  year =	{2021},
  volume =	{95},
  editor =	{Bernardo, Bruno and Marmsoler, Diego},
  publisher =	{Schloss Dagstuhl -- Leibniz-Zentrum f{\"u}r Informatik},
  address =	{Dagstuhl, Germany},
  URL =		{https://drops.dagstuhl.de/opus/volltexte/2021/15426},
  URN =		{urn:nbn:de:0030-drops-154267},
  doi =		{10.4230/OASIcs.FMBC.2021.2},
  annote =	{Keywords: Distributed ledger, smart contracts, Coq, formal verification, blockchain}
}

Keywords: Distributed ledger, smart contracts, Coq, formal verification, blockchain
Seminar: 3rd International Workshop on Formal Methods for Blockchains (FMBC 2021)
Issue date: 2021
Date of publication: 30.11.2021
Supplementary Material: Software (Source Code): https://gitlab.com/nomadic-labs/mi-cho-coq/-/tree/kristina@fa12-verification-v2/src/contracts_coq archived at: https://archive.softwareheritage.org/swh:1:dir:d27f5d0a1c97463a68274d4006103dcc032a401b


DROPS-Home | Fulltext Search | Imprint | Privacy Published by LZI