1 of 13

Instructional Labs for Developing Blockchain Security Applications

Yuzhe Tang

EECS

NSF blockchain education workshop

on Feb. 14-15, 2022

1

2 of 13

Motivation

  • Blockchain is a multi-trillion USD economy
    • Real-life adoption in DeFi
  • Growing workforce demand
    • Urgent workforce shortage
    • “14 jobs for each current�blockchain developer.”

2

3 of 13

Learning Goals

3

4 of 13

Learning Goals

4

5 of 13

Learning Goals

5

6 of 13

Learning Goals

6

7 of 13

Example Lab: Decentralized Token Exchange

DEX is very popular on Ethereum

Start from simplest exercise

  • Trusted protocol design, �running code (not writing code)

Gradually increase complexity

  • Order settlement w. atomicity
  • Order matchmaking: �orderbook, AMM

Online lab: shorturl.at/cgrLU

7

8 of 13

Current Progress

  • Development (O1):
    • Six labs for FinTech security
    • Other labs in progress
    • Github shorturl.at/bmGM0
  • Lab dissemination (O2/O3)
    • Within SU campus
    • In the HBCU community (collaboration in FAMU)

8

9 of 13

Current Progress

  • Lab dissemination at SU (O2)
    • Taught a blockchain course CSE/FIN629
      • Crosslisted between CS and finance
    • Used the labs in CSE/FIN629 in Fall 2021
    • Student feedback
      • Positive and also informative with suggestion on adjusting lab difficulties.

9

10 of 13

Acknowledgements

  • Support from NSF, NSA, Intel, SU.
  • Collaboration
    • Dr. Wenliang Du, EECS, SU
    • Dr. Farzana Rahman, Asso. teaching professor, EECS, SU
    • Dr. Jing Lei, School of Education, SU
    • Dr. Hongmei Chi, Professor, FAMU
  • Students at SU
    • Kai Li, Vinutha, Burak, etc.

10

11 of 13

Summary

  • Learning goals: Blockchain for/by security
  • Proposed labs on four tasks: financial security, infosec, BKC API security and network security.
  • Lab development (O1) and dissemination (O2/O3).

11

Dr. Yuzhe Tang

Web: tristartom.github.io

ytang100@syr.edu

Q/A

12 of 13

My Other Blockchain Research

  • Blockchain systems/network security
  • DApp security
  • DApp cost efficiency�
  • Results
    • Research papers (CCS, NDSS, IMC, FSE, MW, ICDE)
    • Security vulnerabilities with broader impacts on Ethereum community.

12

13 of 13

Education Tools: ChainGrader

  • Idea:
    • Let grading occur on chain to enable transparency and dispute resolution
    • Incentivize students to learn in HW late submission.
  • Web Interface of the tool:
    • Interfaces for students and instructor