| 基于符号化执行的Fuzzing测试方法 |
| |
| 引用本文: | 陈建敏,舒辉,熊小兵.基于符号化执行的Fuzzing测试方法[J].计算机工程,2009,35(21):33-35. |
| |
| 作者姓名: | 陈建敏 舒辉 熊小兵 |
| |
| 作者单位: | 解放军信息工程大学信息工程学院,郑州,450002 |
| |
| 摘 要: | 设计并实现一种基于符号化执行的Fuzzing测试方法。通过代码插装,在程序执行过程中收集路径约束条件,依据一定的路径遍历算法生成新路径约束条件并进行求解,构造可以引导程序向新路径执行的输入测试数据。提出一种改进的污点分析机制,对路径约束条件进行简化,提高了代码覆盖率和漏洞检测的效率。
|
| 关 键 词: | Fuzzing测试 代码插装 符号化执行 污点分析 |
| 修稿时间: | |
Fuzzing Test Approach Based on Symbolic Execution |
| |
| CHEN Jian-min,SHU Hui,XIONG Xiao-bing.Fuzzing Test Approach Based on Symbolic Execution[J].Computer Engineering,2009,35(21):33-35. |
| |
| Authors: | CHEN Jian-min SHU Hui XIONG Xiao-bing |
| |
| Affiliation: | (Institute of Information Engineering, PLA Information Engineering University, Zhengzhou 450002) |
| |
| Abstract: | This paper designs and implements an approach of Fuzzing test based on symbolic execution. The path constraints are collected and generated through code instrumentation during the application execution, and new path constraints are generated with a search algorithm and solved, which constructs new inputs that can steer the application to follow alternative execution paths. An improved taint analysis mechanism is presented to optimize the path constraints. This approach improves the code coverage and the vulnerabilities exploiting efficiency. |
| |
| Keywords: | Fuzzing test code instrumentation symbolic execution taint analysis |
| 本文献已被 维普 万方数据 等数据库收录! |
| 点击此处可从《计算机工程》浏览原始摘要信息 |
|
点击此处可从《计算机工程》下载全文 |
