Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Software fuzz testing method and device, electronic device and storage medium

A technology of fuzz testing and software, applied in the computer field, can solve problems such as inability to execute code, failure to trigger security vulnerabilities, and difficulty in effectively finding security vulnerabilities, so as to improve the probability of discovery, avoid state explosion, and reduce overhead.

Active Publication Date: 2022-08-05
TSINGHUA UNIV
View PDF4 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

State-insensitive fuzz testing cannot effectively discover security vulnerabilities related to the state, either because the program state cannot be satisfied and the corresponding code cannot be executed, thereby failing to trigger the security hole; or even if the corresponding code is executed, the program state is not satisfied. Unable to trigger the security hole
Therefore, it is difficult to effectively discover security vulnerabilities related to state

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Software fuzz testing method and device, electronic device and storage medium
  • Software fuzz testing method and device, electronic device and storage medium
  • Software fuzz testing method and device, electronic device and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0050] In order to make the objectives, technical solutions and advantages of the present invention clearer, the technical solutions in the present invention will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are part of the embodiments of the present invention. , not all examples. Based on the embodiments of the present invention, all other embodiments obtained by those of ordinary skill in the art without creative efforts shall fall within the protection scope of the present invention.

[0051] For the convenience of description, the present invention takes the smallest granularity online unit tool as the object, and the tool is regarded as the smallest granularity unit that completes a single business function by different functional modules in a certain integrated manner. For any specific event, it can be divided into several single business function blocks, and form a specific and complex event ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The present invention provides a software fuzzy testing method and device, electronic equipment and storage medium, wherein the method includes: identifying the state of the program under test from the source code of the program under test, and the state of the program under test includes state variables and state variables Range of value range; based on state variables, code instrumentation is performed when the source code of the program under test is compiled, and the program under test after instrumentation is obtained; based on the program under test after instrumentation, the feedback information of code instrumentation and feedback information are obtained Including code coverage information and state variable writing information; based on feedback information and the state of the program under test, perform multi-dimensional feedback fuzz testing on the source code of the program under test. In the process of software fuzzy testing, the present invention tracks state variables and screens input test cases through genetic algorithm, so as to cover more state variable value ranges, so as to traverse the code and program state of the software under test as much as possible, and discover more potential security vulnerabilities, increasing the probability of vulnerability discovery.

Description

technical field [0001] The present invention relates to the field of computers, and in particular, to a software fuzzy testing method and device, an electronic device and a storage medium. Background technique [0002] With the continuous popularization of informatization, program software has been applied to all aspects of society, and people have put forward higher requirements for software security. Once there is a security loophole in the software, it will cause huge economic losses and even threaten to life safety. For example, now that autonomous driving is gradually put into practical application, once the security loopholes in the autonomous driving system are exploited by hackers, causing abnormal driving of the vehicle, while damaging the vehicle, it may also cause the safety of drivers and pedestrians. Therefore, it is very important for today's society to find software security vulnerabilities in advance and fix them immediately. [0003] Software fuzzing is on...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Patents(China)
IPC IPC(8): G06F11/36
Inventor 张超赵博栋
Owner TSINGHUA UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com