Leveraging Textual Specifications for Grammar-based Fuzzing of Network   Protocols

Samuel Jero; Maria Leonor Pacheco; Dan Goldwasser; Cristina; Nita-Rotaru

arXiv:1810.04755·cs.CR·January 26, 2021

Leveraging Textual Specifications for Grammar-based Fuzzing of Network Protocols

Samuel Jero, Maria Leonor Pacheco, Dan Goldwasser, Cristina, Nita-Rotaru

PDF

TL;DR

This paper presents an automated method to learn network protocol rules from textual specifications like RFCs, enhancing grammar-based fuzzing by reducing manual effort while maintaining effectiveness in vulnerability detection.

Contribution

It introduces an automated approach to extract protocol rules from textual specs, improving fuzzing efficiency without sacrificing attack discovery capabilities.

Findings

01

Automated rules lead to fewer test cases.

02

Maintains same attack detection as manual rules.

03

Reduces manual effort in fuzzing setup.

Abstract

Grammar-based fuzzing is a technique used to find software vulnerabilities by injecting well-formed inputs generated following rules that encode application semantics. Most grammar-based fuzzers for network protocols rely on human experts to manually specify these rules. In this work we study automated learning of protocol rules from textual specifications (i.e. RFCs). We evaluate the automatically extracted protocol rules by applying them to a state-of-the-art fuzzer for transport protocols and show that it leads to a smaller number of test cases while finding the same attacks as the system that uses manually specified rules.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.