Binary program fuzz-testing method based on multi-population genetic algorithm

A binary program and genetic algorithm technology, applied in the field of binary program fuzzing, can solve problems such as few execution paths and inapplicability to complex programs, and achieve the effect of high code coverage

CN108427643AInactive Publication Date: 2018-08-21BEIJING INSTITUTE OF TECHNOLOGYGY

3 Cites 6 Cited by

Patent Information

Authority / Receiving Office: CN · China
Patent Type: Applications(China)
Current Assignee / Owner: BEIJING INSTITUTE OF TECHNOLOGYGY
Publication Date: 2018-08-21
Estimated Expiration: Not applicable · inactive patent

Smart Images

Figure 1
Figure 2

Patent Text Reader

Abstract

The invention relates to a binary program fuzz-testing method based on a multi-population genetic algorithm and belongs to the field of binary vulnerability discovery in information safety. The methodadopts the multi-population genetic algorithm. Firstly, each test data individual is abstracted into a chromosome, then one main population and sub-populations 1 and 2 are initialized randomly or initialized by initializing data, the number of newly found sides in testing data executing paths is recorded, and the side number relevant to the testing data serves as adaptability measurement criteria; secondly, excellent individuals of the sub-populations are obtained through adaptability sorting and are migrated to main population; finally, genetic manipulations (crossing and variation) are conducted on the main population and sub-populations to obtain new individuals for a new turn of tracing execution. By adopting the binary program fuzz-testing method, the coverage rate of program executing paths can be effectively improved, and specific program executing paths can be covered. The binary program fuzz-testing method has the remarkable guiding significance on testing data generation andhas very good application and popularization values.

Need to check novelty before this filing date? Find Prior Art

Description

technical field

[0001] The invention relates to a binary program fuzzy testing method, which belongs to the field of binary loophole mining in information security. Background technique

[0002] Fuzz testing technology is currently the most commonly used vulnerability mining method in the security field and has a good comprehensive effect. This technology provides randomly constructed or mutated test cases to the target software system to monitor whether there are abnormalities such as crashes during the execution of the software to observe the target. Whether the software has potential vulnerabilities. The higher the code coverage rate of the test data generated by the fuzz testing system, the greater the possibility of finding vulnerabilities. Therefore, the code coverage rate of the test data can be used as the evaluation standard for the quality of the test data generation. In general fuzz testing, we do not have the source code of the program under test, so the format ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine

Login to View More