Name
Abstract | ||
|---|---|---|
Nowadays, one of the most effective ways to identify software vulnerabilities by testing is the use of fuzzing, whereby the robustness of software is tested against invalid inputs that play on implementation limits or data boundaries. A high number of random combinations of such inputs are sent to the system through its interfaces. Although fuzzing is a fast technique which detects real errors, its efficiency should be improved. Indeed, the main drawbacks of fuzz testing are its poor coverage which involves missing many errors, and the quality of tests. Enhancing fuzzing with advanced approaches such as: data tainting and coverage analysis would improve its efficiency and make it smarter. This paper will present an idea on how these techniques when combined give better error detection by iteratively guiding executions and generating the most pertinent test cases able to trigger potential vulnerabilities and maximize the coverage of testing. |
Year | DOI | Venue |
|---|---|---|
2011 | 10.1109/ICST.2011.48 | ICST |
Keywords | Field | DocType |
fuzz testing,fast technique,smart fuzzing,better error detection,effective way,enhancing fuzzing,advanced approach,finding software vulnerabilities,software vulnerability,coverage analysis,poor coverage,data boundary,testing,error detection,fuzzing,security,assembly,algorithm design and analysis,algorithm design,software robustness,security testing | Algorithm design,Fuzz testing,Computer science,Error detection and correction,Robustness (computer science),Software,Test case,Program testing,Reliability engineering,Vulnerability | Conference |
Citations | PageRank | References |
21 | 1.20 | 6 |
Authors | ||
4 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Sofia Bekrar | 1 | 38 | 2.14 |
| Chaouki Bekrar | 2 | 38 | 2.14 |
| Roland Groz | 3 | 496 | 50.60 |
| Laurent Mounier | 4 | 1187 | 79.54 |