Research on Multidimensional Mutation Strategy Method of Fuzzing Test
作者单位:School of Mechanical Engineering and AutomationShanghai University
会议名称:《第40届中国控制会议》
会议日期:2021年
学科分类:08[工学] 0839[工学-网络空间安全] 0802[工学-机械工程] 0835[工学-软件工程] 080201[工学-机械制造及其自动化]
关 键 词:Industrial Control Network Protocol Multidimensional mutation strategy Multidimensional Protocol Field Matrix Variation factor matrix
摘 要:Industrial control network security has become increasingly severe and has been highly *** paper studies the problems of low code coverage and relatively rough mutation strategies in the generation method of industrial control network protocol fuzzing test cases,and proposes a multidimensional mutation strategy-based fuzzing test ***,construct a multidimensional protocol field matrix according to the fields of the industrial control network protocol messages,and generate the corresponding variation factor matrix according to the characteristics of the ***,the agreement field matrix and the mutation factor matrix are processed by the Cartesian product to generate a multidimensional mutation *** strategy is used to guide the mutation of original data and test case ***,this method has undergone a comparative experiment on the Modbus/TCP *** results show that the proposed method not only improves the acceptance rate and coverage rate of test cases that generate malformed data,but also discovers two new zero-day vulnerabilities.