A Novel Protocol Fuzz Testing Approach
Authors
Haifeng Li, Bo Shuai, Jian Wang, ChaoJing Tang
Corresponding Author
Haifeng Li
Available Online December 2015.
- DOI
- 10.2991/nceece-15.2016.190How to use a DOI?
- Keywords
- Fuzz; genetic algorithm; DAT; fitness function
- Abstract
In this paper we are discussing about the fuzz testing of network protocol. Compared with the general software vulnerability mining, the difficulty of using fuzz method to detect the protocol vulnerabilities is that the network protocol is a state machine, and the correctness of the input message has a strong constraint. In order to solve the problems of test message being rejected by the network protocol, a novel method is proposed by introducing the genetic algorithm into the test message generation process. Meanwhile, an improved AC algorithm is applied in the process of packet format identification. Experiments show that the proposed fuzz testing method could achieve effective results.
- Copyright
- © 2016, the Authors. Published by Atlantis Press.
- Open Access
- This is an open access article distributed under the CC BY-NC license (http://creativecommons.org/licenses/by-nc/4.0/).
Cite this article
TY - CONF AU - Haifeng Li AU - Bo Shuai AU - Jian Wang AU - ChaoJing Tang PY - 2015/12 DA - 2015/12 TI - A Novel Protocol Fuzz Testing Approach BT - Proceedings of the 2015 4th National Conference on Electrical, Electronics and Computer Engineering PB - Atlantis Press SP - 1067 EP - 1072 SN - 2352-5401 UR - https://doi.org/10.2991/nceece-15.2016.190 DO - 10.2991/nceece-15.2016.190 ID - Li2015/12 ER -