Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Industrial control protocol fuzzy test case generation method based on flow tracing

A technology of fuzzy testing and industrial control protocols, which is applied in digital transmission systems, electrical components, transmission systems, etc., can solve problems such as stagnation, difficulty in improving test efficiency, and large manpower costs, so as to improve coverage, reduce manual coding, and improve testing. efficiency effect

Active Publication Date: 2019-11-01
HANGZHOU DIANZI UNIV
View PDF8 Cites 16 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Fuzz testing can find program implementation deficiencies by inputting a large amount of random data without entering the system or obtaining the source code. Will directly reset the connection, so such a test can only stay in the initial stage of the protocol state
[0004] In response to such problems, many fuzzing technologies generate test cases through message templates, such as Kitty, Sulley and other network protocol test frameworks. After manual analysis of protocol interactions and protocol definitions, the framework is used to provide field definition protocols, and then the framework is generated through these definitions. The test message is sent to the target device for fuzz testing, so that the message generated by the test can be parsed by the device and enter a deeper test path. However, the disadvantage of this type of fuzz testing technology is that it takes a lot of money to write test cases according to each test path. It is difficult to improve test efficiency when manpower is used to write use cases

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Industrial control protocol fuzzy test case generation method based on flow tracing
  • Industrial control protocol fuzzy test case generation method based on flow tracing
  • Industrial control protocol fuzzy test case generation method based on flow tracing

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0038] The technical solutions in the present invention will be fully described below in conjunction with the drawings in the embodiments of the present invention.

[0039] The invention designs a method for generating fuzzy test cases of an industrial control protocol based on traffic traceability. It is necessary to obtain industrial control protocol packets before testing, such as figure 1 As shown, the packet capture tool is placed between the host computer and the industrial control device under test to capture the protocol packets on the communication link. The packet capture device can be a switch with port mirroring enabled, or use packet capture tools such as Wireshark, Tcpdump, and Scapy on the host computer, and finally obtain the data packet file. later as figure 2 As shown, the captured data message file and configuration file are used as input, and the method of the present invention is used to construct a test case script.

[0040] Embodiments of the method ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses an industrial control protocol fuzzy test case generation method based on flow tracing. The method comprises the following steps: step 1, reading a configuration file; step 2,extracting a protocol message related to the test protocol; step 3, filling the test case template to generate a test case script; analyzing real traffic, extracting message application layer data, converting the message data into Python language code representation, injecting the Python language code representation into a test case template, generating a test case script, and quickly carrying outa fuzzy test on the basis of not needing to manually compile a test case; and meanwhile, combining a plurality of different types of test cases in a targeted and random manner to test the target equipment. According to the invention, targeted and random combination is carried out by using a plurality of different types of test cases to test the target equipment, so that the test coverage rate iseffectively improved. The method is suitable for automatic testing of existing industrial control protocol vulnerability mining and industrial control protocol research and development.

Description

technical field [0001] The invention relates to the field of industrial network security, in particular to a method for generating fuzzy test cases of industrial control protocols based on traffic traceability. Background technique [0002] Industrial control systems are an important part of various infrastructures. With the development of computer and network technology, more and more Internet technologies are applied to them. While facing traditional control security threats, industrial control systems also face many threats from Internet network attacks, many of these attacks obtain key information of industrial control systems through loopholes in industrial control protocols, and even control the operation of industrial control system equipment through the network. Therefore, the security of industrial control protocols has become a focus of national information security. [0003] Fuzz testing is a highly automated black-box testing technique that is often used to disco...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L12/26H04L29/06
CPCH04L43/028H04L43/18H04L43/50H04L63/1433H04L69/08
Inventor 徐向华邵帅王然程宗毛
Owner HANGZHOU DIANZI UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com