Real-time Intrusion Detection
Can we detect DeFi attacks without hardcoded heuristics? Our learned LLM model says so, see our Technical Report.
We show that intrusion detection without heuristics can be done in real-time.
Learning a model of normal transactions, and thereby detecting abnormal transactions is a vast field of study. We've shown how it is possible to not rely on manually crafted heuristics to detect abnormal transactions. BlockGPT successfully identified 49 out of 124 attacks as among the top-3 most abnormal transactions, demonstrating its efficacy in real-time threat detection with an average batch throughput of 2,284 transactions per second. This capacity renders BlockGPT an effective real-time intrusion detection system for blockchain networks such as Ethereum, capable of triggering smart contract pause mechanisms to thwart attacks. This research marks a significant contribution to blockchain transaction analysis by pioneering the use of unsupervised/self-supervised learning for the anomaly detection of transactions, further supported by a custom-built large language model designed specifically for this purpose.