基于适应度和输入约束模型的内核驱动漏洞挖掘  被引量:2

Kernel driver vulnerability mining based on fitness and input constraint model

在线阅读下载全文

作  者:佘庚达 付才[1] 岑泽威 吕建强 She Gengda;Fu Cai;Cen Zewei;Lyu Jianqiang(Hubei Key Laboratory of Distributed System Security,Hubei Engineering Research Center on Big Data Security,School of Cyber Science&Engineering,Huazhong University of Science&Technology,Wuhan 430074,China)

机构地区:[1]华中科技大学、网络空间安全学院、湖北省大数据安全工程技术研究中心、分布式系统安全湖北省重点实验室,武汉430074

出  处:《计算机应用研究》2023年第7期2151-2156,共6页Application Research of Computers

基  金:国家自然科学基金资助项目(62072200,6217071437)。

摘  要:针对驱动程序在运行过程中难以监控和输入复杂的问题,提出并实现基于适应度和输入约束模型的驱动程序模糊测试工具DrgenFuzzer。该工具利用内核跟踪技术结合二进制程序的静态分析实现驱动运行的信息监控;分析驱动接口参数,设计了样本约束的方案;提出了新型适应度计算方案和交叉变异方案。实验证明,与常用的内核模糊测试工具对比,该工具经过输入约束模型之后生成的样本测试成功率达到了其他工具的10倍以上,生成的样本质量更高。该工具对驱动程序进行模糊测试,挖掘到i2c驱动中的空指针引用漏洞。DrgenFuzzer能有效引导和规范样本生成,提高了样本测试成功率和运行效率,增强了漏洞挖掘能力。In order to solve the problem that the driver is difficult to monitor and input complex during the running process,this paper proposed and implemented a driver fuzzing tool DrgenFuzzer based on the fitness and input constraint model.The tool utilized the kernel tracing technology combined with the static analysis of binary programs to realize the information monitoring of the driver operation,analyzed the driver interface parameters,designed a sample constraint scheme,proposed a new fitness calculation scheme and a crossover mutation scheme.Experiments show that compared with the commonly used kernel fuzzing tools,the test success rate of samples generated by this tool after the input constraint model is more than 10 times that of other tools,and the quality of the generated samples is higher.This tool performed a fuzzy test on the driver and exploits the null pointer reference vulnerability in the i2c driver.DrgenFuzzer can effectively guide and standardize sample generation,improve the success rate and operating efficiency of sample testing,and enhance the vulnerability mining ability.

关 键 词:模糊测试 遗传算法 适应度 输入约束模型 

分 类 号:TP311[自动化与计算机技术—计算机软件与理论]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象