一种基于语法感知和粒子群优化的覆盖引导灰盒模糊方法

2022 IEEE 22nd International Conference on Software Quality, Reliability, and Security Companion (QRS-C) Pub Date : 2022-12-01 DOI:10.1109/QRS-C57518.2022.00132

Shengran Wang, Jinfu Chen, Saihua Cai, Chi Zhang, Haibo Chen

{"title":"一种基于语法感知和粒子群优化的覆盖引导灰盒模糊方法","authors":"Shengran Wang, Jinfu Chen, Saihua Cai, Chi Zhang, Haibo Chen","doi":"10.1109/QRS-C57518.2022.00132","DOIUrl":null,"url":null,"abstract":"Coverage-guided Greybox Fuzzing (CGF) as a popular testing approach has been widely used in software testing. However, the existing CGF has some problems, for example, the testing efficiency is often poor in the face of structured input. To solve this problem, Grammar-Aware Greybox Fuzzing (GAGF) has gained attention for its use of abstract syntax trees (AST) to help processing the structured inputs and it has achieved higher fuzzing efficiency than CGF. However, the improvement of efficiency may not be enough. Therefore, we proposed a particle swarm optimization algorithm to help GAGF to further improving the efficiency. The proposed algorithm can selectively optimize the mutation operator in GAGF mutation stage, as well as accelerate the mutation efficiency of fuzzing to achieve more higher code coverage.","PeriodicalId":183728,"journal":{"name":"2022 IEEE 22nd International Conference on Software Quality, Reliability, and Security Companion (QRS-C)","volume":"26 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"A Novel Coverage-Guided Greybox Fuzzing Method based on Grammar-Aware with Particle Swarm Optimization\",\"authors\":\"Shengran Wang, Jinfu Chen, Saihua Cai, Chi Zhang, Haibo Chen\",\"doi\":\"10.1109/QRS-C57518.2022.00132\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Coverage-guided Greybox Fuzzing (CGF) as a popular testing approach has been widely used in software testing. However, the existing CGF has some problems, for example, the testing efficiency is often poor in the face of structured input. To solve this problem, Grammar-Aware Greybox Fuzzing (GAGF) has gained attention for its use of abstract syntax trees (AST) to help processing the structured inputs and it has achieved higher fuzzing efficiency than CGF. However, the improvement of efficiency may not be enough. Therefore, we proposed a particle swarm optimization algorithm to help GAGF to further improving the efficiency. The proposed algorithm can selectively optimize the mutation operator in GAGF mutation stage, as well as accelerate the mutation efficiency of fuzzing to achieve more higher code coverage.\",\"PeriodicalId\":183728,\"journal\":{\"name\":\"2022 IEEE 22nd International Conference on Software Quality, Reliability, and Security Companion (QRS-C)\",\"volume\":\"26 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE 22nd International Conference on Software Quality, Reliability, and Security Companion (QRS-C)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/QRS-C57518.2022.00132\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE 22nd International Conference on Software Quality, Reliability, and Security Companion (QRS-C)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/QRS-C57518.2022.00132","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

灰盒模糊测试作为一种流行的测试方法，在软件测试中得到了广泛的应用。然而，现有的CGF存在一些问题，如面对结构化输入时，测试效率往往较差。为了解决这一问题，语法感知灰盒模糊(Grammar-Aware Greybox Fuzzing, GAGF)利用抽象语法树(abstract syntax trees, AST)来帮助处理结构化输入，并取得了比CGF更高的模糊效率，从而引起了人们的关注。然而，效率的提高可能还不够。因此，我们提出了一种粒子群优化算法来帮助GAGF进一步提高效率。该算法可以选择性地优化GAGF突变阶段的突变算子，提高模糊化的突变效率，实现更高的代码覆盖率。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

A Novel Coverage-Guided Greybox Fuzzing Method based on Grammar-Aware with Particle Swarm Optimization

Coverage-guided Greybox Fuzzing (CGF) as a popular testing approach has been widely used in software testing. However, the existing CGF has some problems, for example, the testing efficiency is often poor in the face of structured input. To solve this problem, Grammar-Aware Greybox Fuzzing (GAGF) has gained attention for its use of abstract syntax trees (AST) to help processing the structured inputs and it has achieved higher fuzzing efficiency than CGF. However, the improvement of efficiency may not be enough. Therefore, we proposed a particle swarm optimization algorithm to help GAGF to further improving the efficiency. The proposed algorithm can selectively optimize the mutation operator in GAGF mutation stage, as well as accelerate the mutation efficiency of fuzzing to achieve more higher code coverage.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2022 IEEE 22nd International Conference on Software Quality, Reliability, and Security Companion (QRS-C)

自引率

0.00%

发文量

期刊最新文献

Software Bug Prediction based on Complex Network Considering Control Flow A Fault Localization Method Based on Similarity Weighting with Unlabeled Test Cases What Should Abeeha do? an Activity for Phishing Awareness The Real-Time General Display and Control Platform Designing Method based on Software Product Line Code Search Method Based on Multimodal Representation