基于动态污点分析的工控软件模糊测试技术研究
首发时间:2016-01-25
摘要:近年来工业控制系统安全形势日益严峻,工控软件安全问题尤为突出。解决工控软件安全问题的根本在于发现安全漏洞并修复。本文以工控软件安全检测为研究重点,首先分析了工控软件相关特性和常用模糊测试技术,针对现有模糊测试效率低下等不足,从数据变异位置选择角度出发,结合工控软件特性,提出了一种基于动态污点分析的工控软件模糊测试方法,并对动态污点分析中污点数据存储以及污点数据分析方法进行了改进。本方法主要通过对工控软件进行动态污点分析来辅助完成模糊测试中变异数据位置的选取,进而减少模糊测试中无效的测试用例,提高模糊测试效率。最后,本文结合现有实验环境进行测试,测试结果表明,该方法与现有模糊测试技术相比检测效率显著提高,并成功发现多例拒绝服务漏洞,证明了该方法的正确性。
For information in English, please click here
Research on Fuzzing Testing Technology Based on Dynamic Taint Analysis of Industrial Control Software
Abstract:In recent years, with the increasingly severe security situation of industrial control system, industrial control software security problem is particularly prominent. The fundamental solution to solve security problems of Industrial control software lies in discovering security vulnerabilities and fixes. In this paper, the security testing of industrial control software is concentrated on. Firstly, this paper analyzes the relevant characteristics of industrial control software and common fuzzing technology. The existing fuzzy testing technology has the disadvantage of low efficiency and other issues. From the perspective of data variability position selection, combined with industrial control software features, this paper proposed a fuzzing method based on dynamic taint analysis of industrial control software, which optimized the existing method both in the storage and analysis of the tainted data. This method is mainly through the industrial dynamic taint analysis software to assist in the completion of the selection of the fuzzing position variation data, thereby reducing invalid test cases of the fuzzing test, and improve the efficiency of fuzzing test. Finally, this paper conducted several experiments with the existing test environment. The test results show that this method significantly improve the detection efficiency compared with the existing fuzzing method. Furthermore, this experiment successfully found some cases of denial of service vulnerability, which strongly proves the correctness of this method.
Keywords: industrial control software dynamic taint analysis fuzzing test
论文图表:
引用
No.4676264112607514****
同行评议
共计0人参与
勘误表
基于动态污点分析的工控软件模糊测试技术研究
评论
全部评论0/1000