计算机技术与发展2024,Vol.34Issue(10) :84-92.DOI:10.20165/j.cnki.ISSN1673-629X.2024.0165

基于多样化反馈演进策略的协议模糊测试

Fuzzing of Network Protocol Based on Multiple Strategies of Feedback and Evolution

钟宏 夏云浩 张金鑫 马致原
计算机技术与发展2024,Vol.34Issue(10) :84-92.DOI:10.20165/j.cnki.ISSN1673-629X.2024.0165
  • 国家科技期刊平台
  • NETL
  • NSTL
  • 万方数据

基于多样化反馈演进策略的协议模糊测试

Fuzzing of Network Protocol Based on Multiple Strategies of Feedback and Evolution

钟宏 1夏云浩 2张金鑫 2马致原2
扫码查看

作者信息

  • 1. 移动网络和移动多媒体技术国家重点实验室,广东 深圳 518055;深圳市中兴软件有限责任公司,广东 深圳 518057
  • 2. 移动网络和移动多媒体技术国家重点实验室,广东 深圳 518055;南京中兴新软件有限责任公司,江苏 南京 210012
  • 折叠

摘要

网络协议是当今互联网通信的基础,其存在的安全问题可能会导致网络中大量设备面临灾难性风险.网络协议涵盖了各种层次和类型,每层都有其特性和目的,协议实现中的漏洞挖掘是计算机安全的一个具有挑战性的问题.该文提出一种适配多种公开或私有网络协议的黑盒模糊测试方案,可以在无需了解协议代码和规范的状况下发现协议实现中的漏洞.该方法面对物理层到应用层的多种网络协议,可以实现自动特征提取与学习,并依据结果生成高效的测试用例.同时,设计状态反馈、权重反馈、机器学习等多种反馈演进变异策略提高测试用例的有效性.此外,采用污点分析、执行流跟踪等技术监控被测目标测试执行过程及结果,使得测试结果更加精准,提升漏洞挖掘准确率.为了评估该方法的有效性,设计并实现了一个模糊测试原型系统,成功识别出协议实现中存在的未知漏洞.此外,还与业界主流的模糊测试工具进行了性能对比,从变异效率的多个维度体现该方法的优势.

Abstract

Network protocols are the basis of Internet communications,and security issues of them may expose a large number of devices in the network to catastrophic risks.Network protocols cover various layers and types,and each layer has its own characteristics and purposes.Vulnerabilities mining in the protocol implementation is a challenging task in computer security.We propose a black-box fuzzing scheme for multiple public or private network protocols,which can discover vulnerabilities in protocol implementation without knowledge of code and specifications.The proposed method can automatically implement protocol learning and feature extraction for a variety of network protocols from the physical layer to the application layer,and generate efficient test cases according to the results.In addition,multiple feedback strategies,such as status feedback,weight feedback,and machine learning are designed to improve the effectiveness of test cases.Furthermore,technologies such as taint analysis and execution flow tracking are used to monitor the process and results of test execution of the tested target,making the test result more accurate and improving the accuracy of vulnerability mining.In order to evaluate the effectiveness of the proposed method,we design and implement a fuzzing prototype system and several unknown security vulnerabilities in the protocol implementation are detected.Furthermore,compared with other schemes in terms of performance,the proposed method is outperformed in multiple dimensions of efficiency variation.

关键词

网络协议/漏洞挖掘/模糊测试/状态反馈/权重反馈/机器学习

Key words

network protocol/vulnerability mining/fuzzing/status feedback/weight feedback/machine learning

引用本文复制引用

基金项目

国家自然科学基金(U23B2003)

广东省重点领域研发计划项目(2020B0101120003)

出版年

2024
计算机技术与发展
陕西省计算机学会

计算机技术与发展

CSTPCD
影响因子:0.621
ISSN:1673-629X
段落导航相关论文