S2F: Discover Hard-to-Reach Vulnerabilities by Semi-Symbolic Fuzz Testing

2017 13th International Conference on Computational Intelligence and Security (CIS) Pub Date : 2017-12-01 DOI:10.1109/CIS.2017.00127

Bin Zhang, Jiaxi Ye, Chao Feng, Chaojing Tang

引用次数: 8

Abstract

Fuzz testing is a popular program testing technique. However, it is difficult to find hard-to-reach vulnerabilities that are nested with complex branches. In this paper, we propose semi-symbolic fuzz testing to discover hard-to-reach vulnerabilities. Our method groups inputs into high frequency and low frequency ones. Then symbolic execution is utilized to solve only uncovered branches to mitigate the path explosion problem. Especially, in order to play the advantages of fuzz testing, our method locates critical branch for each low frequency input and corrects the generated test cases to comfort the branch condition. We also implemented a prototype|S2F, and the experimental results show that S2F can gain 17.70% coverage performance and discover more hard-to-reach vulnerabilities than other vulnerability detection tools for our benchmark.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

S2F:通过半符号模糊测试发现难以触及的漏洞

模糊测试是一种流行的程序测试技术。然而，很难找到嵌套在复杂分支中的难以触及的漏洞。在本文中，我们提出了半符号模糊测试来发现难以到达的漏洞。我们的方法将输入分为高频和低频。然后利用符号执行只求解未覆盖的分支，以缓解路径爆炸问题。特别地，为了发挥模糊测试的优势，我们的方法为每个低频输入定位关键支路，并对生成的测试用例进行校正以适应支路条件。我们还实现了一个原型|S2F，实验结果表明，在我们的基准测试中，S2F可以获得17.70%的覆盖率，并且发现了比其他漏洞检测工具更多的难以触及的漏洞。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2017 13th International Conference on Computational Intelligence and Security (CIS)

自引率

0.00%

发文量

期刊最新文献

Multi-hop Based Centrality of a Path in Complex Network Improving Hybrid Gravitational Search Algorithm for Adaptive Adjustment of Parameters Document Sensitivity Classification for Data Leakage Prevention with Twitter-Based Document Embedding and Query Expansion Side Channel Attack on SM4 Algorithm with Ensemble Method Pedestrian Detection Method Based on Faster R-CNN