Statistical vulnerabilities in Uniswap V3 Price Oracle

Pavel Anokhin

Abstract


Decentralized applications in blockchain make extensive use of the price oracles for a variety of purposes. All price oracle providers possess some unique security risks. This paper studies the statistical properties of one of the very popular price oracle providers – Uniswap v3 price oracle, and the statistical vulnerabilities which might arise from the usage of this price oracle. The study is performed using the Uniswap v3 historical trading data from the blockchain and the historical trading data from the Binance exchange for the ETH / USDT cryptocurrencies trading pair. The security consequences and possible statistical vulnerabilities which arise from the usage of Uniswap v3 oracle price based on the results of the study are discussed and the recommendations on procedures and measures to mitigate these vulnerabilities are given. The study can be of a practical use to blockchain software developers and smart contract auditors to better secure applications using the Uniswap v3 price oracles.

Full Text:

PDF

References


Fabian Schär, "Decentralized Finance: On Blockchain- and Smart Contract-Based Financial Markets," Federal Reserve Bank of St. Louis Review, Second Quarter 2021, pp. 153-74. https://doi.org/10.20955/r.103.153-74

Mohan, Vijay, Automated Market Makers and Decentralized Exchanges: a DeFi Primer (October 30, 2020). Financial Innovation 8, 20 (2022). https://doi.org/10.1186/s40854-021-00314-5

Guillermo Angeris and Tarun Chitra. 2020. Improved Price Oracles: Constant Function Market Makers. In Proceedings of the 2nd ACM Conference on Advances in Financial Technologies (AFT '20). Association for Computing Machinery, New York, NY, USA, 80–91. https://doi.org/10.1145/3419614.3423251

Wu, Siwei, et al. DeFiRanger: Detecting Price Manipulation Attacks on DeFi Applications. ArXiv:2104.15068 [Cs], Apr. 2021.

Adams, Austin and Wan, Xin and Zinsmeister, Noah, Uniswap v3 TWAP Oracles in Proof of Stake (October 27, 2022). Available at SSRN: https://ssrn.com/abstract=4384409 or http://dx.doi.org/10.2139/ssrn.4384409

Binance Exchange. Available from: https://www.binance.com

Binance Market Data. Daily Spot ETH/USDT, 1-second interval. Available from: https://data.binance.vision/?prefix=data/spot/daily/klines/ETHUSDT/1s/


Refbacks

  • There are currently no refbacks.


Abava  Кибербезопасность FRUCT 2024

ISSN: 2307-8162