Fuzzy test method and system for stateful network protocol

Abstract

The invention belongs to the technical field of network space security testing, and particularly relates to a stateful network protocol-oriented fuzzy testing method and system.The stateful network protocol-oriented fuzzy testing method comprises the steps of extracting protocol rules from grammar and semantic dimensions according to protocol format specifications to be tested, and constructing a rule set; generating a message test template by using rules in the rule set, and marking variation operation related fields in the message test template by using a message label; analyzing the message test template and executing a corresponding mutation operation according to the message label to obtain a test message for finishing a fuzzy test by guiding the state transition of the protocol to be tested; and sending the test message to the to-be-tested protocol target program, and performing state abnormity judgment in the fuzzy test according to the reply message state. According to the method and the device, the legality of the test message can be improved, the condition of program verification failure caused by variation of special fields is avoided, the test message can be used for testing and can also be used for replacing an auxiliary message to guide protocol state transition, the test efficiency is improved, and system resources are saved.

Description

technical field [0001] The invention belongs to the technical field of cyberspace security testing, and in particular relates to a fuzzy testing method and system for a stateful network protocol. Background technique [0002] Fuzzing is an effective method to discover targeted vulnerabilities by generating large amounts of undesired mutated data as program input. Since stateful network protocols often have program syntax and semantic verification, the existing technology is good in syntax inspection, but poor in semantic inspection. Although a large number of test packets are generated, the validity of the test packets is very low. , it is difficult to go deep into the program to find potential security problems. In addition, stateful network protocols have complex state transitions. When existing fuzzing techniques are applied to stateful network protocols, they often send a series of pre-normal packets based on the protocol state machine model to guide the protocol to the...

AI Technical Summary

Problems solved by technology

[0004] To this end, the present invention provides a fuzzy testing method and system for stateful network protocols, which solves the problems that the previous methods are difficult to pass the protocol data verification, uses a large number of auxiliary messages to drive the protocol state transfer, and effectively improves the legitimacy of the test messages And the efficiency of fuzz testing, more vulnerabilities can be found in a shorter time, which can effectively guarantee the security of cyberspace

Images