AI-Generated Smart Contracts May Fail Under Attack, Warns CertiK

NNicholas September 6, 2023 6:26 AM

Security chief of CertiK, a blockchain security firm, warns that using AI tools such as ChatGPT to write smart contracts could lead to more bugs and vulnerabilities, particularly if utilized by inexperienced programmers. He suggests that these tools are better suited as assistants for code analysis and reverse engineering.

ChatGPT's role in writing smart contracts

ChatGPT, an AI tool developed by OpenAI, has been identified as a possible liability when used to write smart contracts, particularly by those who are new to programming. This warning comes from Kang Li, the chief security officer at CertiK, a blockchain security firm. Li asserts that these AI tools might introduce more bugs than they identify, potentially causing significant issues for amateur coders who are trying to build their own projects. In the wake of these concerns, Li suggests that ChatGPT should be used as an assistant for code analysis and reverse engineering, rather than a tool for writing code.

AI and rising social engineering threats

With advancements in AI technology, there has been a significant increase in the sophistication of social engineering attacks executed using AI tools. Richard Ma, co-founder and CEO of Web3 security firm Quantstamp, notes that the recent trend of utilizing machine learning to write emails and messages has made these attempts much more convincing than they were a few years ago. This development is deeply concerning as it gets increasingly harder to distinguish between messages generated by AI from those written by humans, raising the stakes for potential cybersecurity threats.

As AI tools are becoming more adept at carrying out social engineering attacks, the need for robust defense mechanisms has never been more critical. Richard Ma, CEO of Quantstamp, notes that better anti-phishing software is being developed and brought to the market to help companies defend themselves against these increasingly sophisticated attacks. With this cybersecurity software, companies can equip themselves better to mitigate potential threats and ensure their integrity in the face of these emerging challenges.

More articles

Also read

Here are some interesting articles on other sites from our network.