Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Binary program fuzz-testing method based on multi-population genetic algorithm

A binary program and genetic algorithm technology, applied in the field of binary program fuzzing, can solve problems such as few execution paths and inapplicability to complex programs, and achieve the effect of high code coverage

Inactive Publication Date: 2018-08-21
BEIJING INSTITUTE OF TECHNOLOGYGY
View PDF3 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] The purpose of the present invention is to solve the problem that the binary program fuzzing method with unknown input data format is not suitable for complex programs and the execution paths of the test are few, and proposes a binary program fuzzing method based on multi-population genetic algorithm

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Binary program fuzz-testing method based on multi-population genetic algorithm
  • Binary program fuzz-testing method based on multi-population genetic algorithm

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] In order to better illustrate the purpose and advantages of the present invention, the implementation of the method of the present invention will be further described in detail below in conjunction with examples.

[0037] The specific process is:

[0038] Step 1, population initialization.

[0039] Step 1.1, firstly, the main population and the subpopulation are composed of several individuals, and each individual can be abstractly expressed as a chromosome, then the i-th individual in the population can be expressed as X i =(x i,1 ,x i,2 ,x i,3 ,...,x i,D ). The process of population initialization is for X i Each gene x in i,d assignment, for each x i,d Represents a byte, and the length D is the number of bytes of test data.

[0040] In step 1.2, the present invention initializes the main population and subpopulations by means of random assignment. Both the class1 and class2 subpopulations use one population to test, and the initialization of the class2 subp...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a binary program fuzz-testing method based on a multi-population genetic algorithm and belongs to the field of binary vulnerability discovery in information safety. The methodadopts the multi-population genetic algorithm. Firstly, each test data individual is abstracted into a chromosome, then one main population and sub-populations 1 and 2 are initialized randomly or initialized by initializing data, the number of newly found sides in testing data executing paths is recorded, and the side number relevant to the testing data serves as adaptability measurement criteria; secondly, excellent individuals of the sub-populations are obtained through adaptability sorting and are migrated to main population; finally, genetic manipulations (crossing and variation) are conducted on the main population and sub-populations to obtain new individuals for a new turn of tracing execution. By adopting the binary program fuzz-testing method, the coverage rate of program executing paths can be effectively improved, and specific program executing paths can be covered. The binary program fuzz-testing method has the remarkable guiding significance on testing data generation andhas very good application and popularization values.

Description

technical field [0001] The invention relates to a binary program fuzzy testing method, which belongs to the field of binary loophole mining in information security. Background technique [0002] Fuzz testing technology is currently the most commonly used vulnerability mining method in the security field and has a good comprehensive effect. This technology provides randomly constructed or mutated test cases to the target software system to monitor whether there are abnormalities such as crashes during the execution of the software to observe the target. Whether the software has potential vulnerabilities. The higher the code coverage rate of the test data generated by the fuzz testing system, the greater the possibility of finding vulnerabilities. Therefore, the code coverage rate of the test data can be used as the evaluation standard for the quality of the test data generation. In general fuzz testing, we do not have the source code of the program under test, so the format ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/36G06N3/00
CPCG06F11/3684G06N3/006
Inventor 罗森林侯留洋潘丽敏焦龙龙张笈
Owner BEIJING INSTITUTE OF TECHNOLOGYGY
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products