Leveraging Textual Specifications for Grammar-Based Fuzzing of Network Protocols

被引:0
|
作者
Jero, Samuel [1 ]
Pacheco, Maria Leonor [1 ]
Goldwasser, Dan [1 ]
Nita-Rotaru, Cristina [2 ]
机构
[1] Purdue Univ, W Lafayette, IN 47907 USA
[2] Northeastern Univ, Boston, MA 02115 USA
来源
THIRTY-THIRD AAAI CONFERENCE ON ARTIFICIAL INTELLIGENCE / THIRTY-FIRST INNOVATIVE APPLICATIONS OF ARTIFICIAL INTELLIGENCE CONFERENCE / NINTH AAAI SYMPOSIUM ON EDUCATIONAL ADVANCES IN ARTIFICIAL INTELLIGENCE | 2019年
关键词
D O I
暂无
中图分类号
TP18 [人工智能理论];
学科分类号
081104 ; 0812 ; 0835 ; 1405 ;
摘要
Grammar-based fuzzing is a technique used to find software vulnerabilities by injecting well-formed inputs generated following rules that encode application semantics. Most grammar-based fuzzers for network protocols rely on human experts to manually specify these rules. In this work we study automated learning of protocol rules from textual specifications (i.e. RFCs). We evaluate the automatically extracted protocol rules by applying them to a state-of-the-art fuzzer for transport protocols and show that it leads to a smaller number of test cases while finding the same attacks as the system that uses manually specified rules.
引用
收藏
页码:9478 / 9483
页数:6
相关论文
共 50 条
  • [41] Grammar-Based String Refinement Types
    Zhu, Fengmin
    [J]. 2023 IEEE/ACM 45TH INTERNATIONAL CONFERENCE ON SOFTWARE ENGINEERING: COMPANION PROCEEDINGS, ICSE-COMPANION, 2023, : 267 - 269
  • [42] Model-Based Grey-Box Fuzzing of Network Protocols
    Pan, Yan
    Lin, Wei
    Jiao, Liang
    Zhu, Yuefei
    [J]. SECURITY AND COMMUNICATION NETWORKS, 2022, 2022
  • [43] Grammar-based geodesics in semantic networks
    Rodriguez, Marko A.
    Watkins, Jennifer H.
    [J]. KNOWLEDGE-BASED SYSTEMS, 2010, 23 (08) : 844 - 855
  • [44] Grammar-Based Compression of Unranked Trees
    Gascon, Adria
    Lohrey, Markus
    Maneth, Sebastian
    Reh, Carl Philipp
    Sieber, Kurt
    [J]. THEORY OF COMPUTING SYSTEMS, 2020, 64 (01) : 141 - 176
  • [45] Applying the UML performance profile: Graph grammar-based derivation of LQN models from UML specifications
    Petriu, DC
    Shen, H
    [J]. COMPUTER PERFORMANCE EVALUATION: MODELLING TECHNIQUES AND TOOLS, 2002, 2324 : 159 - 177
  • [46] Grammar-based test generation with YouGen
    Hoffman, Daniel Malcolm
    Ly-Gagnon, David
    Strooper, Paul
    Wang, Hong-Yi
    [J]. SOFTWARE-PRACTICE & EXPERIENCE, 2011, 41 (04): : 427 - 447
  • [47] Grammar-based connectionist approaches to language
    Smolensky, P
    [J]. COGNITIVE SCIENCE, 1999, 23 (04) : 589 - 613
  • [48] GRAMMAR-BASED DEFINITION OF METAPROGRAMMING SYSTEMS
    CAMERON, RD
    ITO, MR
    [J]. ACM TRANSACTIONS ON PROGRAMMING LANGUAGES AND SYSTEMS, 1984, 6 (01): : 20 - 54
  • [49] A Grammar-Based Approach to Invertible Programs
    Matsuda, Kazutaka
    Mu, Shin-Cheng
    Hu, Zhenjiang
    Takeichi, Masato
    [J]. PROGRAMMING LANGUAGES AND SYSTEMS, PROCEEDINGS, 2010, 6012 : 448 - +
  • [50] Grammar-based Genetic Programming: a survey
    Robert I. McKay
    Nguyen Xuan Hoai
    Peter Alexander Whigham
    Yin Shan
    Michael O’Neill
    [J]. Genetic Programming and Evolvable Machines, 2010, 11 : 365 - 396
12345