论文信息 - Automated Vulnerability Analysis: Leveraging Control Flow for Evolutionary Input Crafting

Automated Vulnerability Analysis: Leveraging Control Flow for Evolutionary Input Crafting

We present an extension of traditional "black box" fuzz testing using a genetic algorithm based upon a dynamic Markov model fitness heuristic. This heuristic allows us to "intelligently" guide input selection based upon feedback concerning the "success" of past inputs that have been tried. Unlike many software testing tools, our implementation is strictly based upon binary code and does not require that source code be available. Our evaluation on a Windows server program shows that this approach is superior to random black box fuzzing for increasing code coverage and depth of penetration into program control flow logic. As a result, the technique may be beneficial to the development of future automated vulnerability analysis tools.

[1] Gary McGraw,et al. Exploiting Software: How to Break Code , 2004 .

[2] Barton P. Miller,et al. An empirical study of the reliability of UNIX utilities , 1990, Commun. ACM.

[3] Barton P. Miller,et al. An empirical study of the robustness of Windows NT applications using random testing , 2000 .

[4] Koushik Sen,et al. DART: directed automated random testing , 2005, PLDI '05.

[5] Peter Grogono,et al. Using a genetic algorithm and formal concept analysis to generate branch coverage test data automatically , 2004, Proceedings. 19th International Conference on Automated Software Engineering, 2004..

[6] Patrice Godefroid,et al. Automated Whitebox Fuzz Testing , 2008, NDSS.

[7] Michael O'Neill,et al. Grammatical Evolution: Evolving Programs for an Arbitrary Language , 1998, EuroGP.

[8] Yoonsik Cheon,et al. A specification-based fitness function for evolutionary testing of object-oriented programs , 2006, GECCO '06.

[9] Phil McMinn,et al. Evolutionary testing of state-based programs , 2005, GECCO '05.

[10] Conor Ryan,et al. Grammatical evolution , 2001, IEEE Trans. Evol. Comput..

[11] Ethem Alpaydin,et al. Introduction to machine learning , 2004, Adaptive computation and machine learning.