A Novel Network Protocol Syntax Extracting Method for Grammar-Based Fuzzing
-
Published:2024-03-13
Issue:6
Volume:14
Page:2409
-
ISSN:2076-3417
-
Container-title:Applied Sciences
-
language:en
-
Short-container-title:Applied Sciences
Author:
Li Huashan12, Zhang Lei12, Zhao Dawei12ORCID, Xu Lijuan12, Li Xin12, Yang Shumian12, Han Xiaohui3
Affiliation:
1. Key Laboratory of Computing Power Network and Information Security, Ministry of Education, Shandong Computer Science Center (National Supercomputer Center in Jinan), Qilu University of Technology (Shandong Academy of Sciences), Jinan 250014, China 2. Shandong Provincial Key Laboratory of Computer Networks, Shandong Fundamental Research Center for Computer Science, Jinan 250014, China 3. Quancheng Provincial Laboratory, Jinan 250014, China
Abstract
Network protocol syntax information plays a crucial role in grammar-based fuzzing. Current network protocol syntax extraction methods are less versatile, inefficient, and the extracted information is not comprehensive. This paper proposes a novel method for extracting syntax information, which innovatively extracts network protocol syntax from Wireshark protocol dissector files. The extracted syntax information includes packet types of the protocol, the constituent fields of each packet type, and detailed attributes of each field. Based on this method, an automated system for network protocol syntax information extraction was developed. The experiment was conducted with this system on a variety of protocols including DCCP, DNP3.0, Modbus TCP, and S7COMM. The experimental results show that compared with the current methods, our method has a better performance in terms of efficiency and versatility and at the same time ensures the comprehensiveness and accuracy of the extracted syntax information.
Funder
National Key R&D Program of China Young Innovation Team of Colleages and Universities in Shandong Province National Natural Science Foundation of China Natural Science Foundation of Shandong Province Innovation Ability Pormotion Project for Small and Medium-sized Technology-based Enterprise of Shandong Province Talent Research Project of Qilu University of Technology Pilot Project for Integrated Innovation of Science, Education and Industry of Qilu University of Technology Taishan Scholars Program Key Research Project of Quancheng Laboratory “20 New Universities” Project of Jinan City
Reference31 articles.
1. Olsthoorn, M., van Deursen, A., and Panichella, A. (2020, January 21–25). Generating highly-structured input data by combining search-based testing and grammar-based fuzzing. Proceedings of the 35th IEEE/ACM International Conference on Automated Software Engineering, Melbourne, Australia. 2. Wondracek, G., Comparetti, P.M., Kruegel, C., Kirda, E., and Anna, S.S.S. (2008, January 10–13). Automatic Network Protocol Analysis. Proceedings of the NDSS, Citeseer, San Diego, CA, USA. 3. Fuzzing: A survey for roadmap;Zhu;ACM Comput. Surv. CSUR,2022 4. She, D., Shah, A., and Jana, S. (2022, January 23–25). Effective seed scheduling for fuzzing with graph centrality analysis. Proceedings of the 2022 IEEE Symposium on Security and Privacy (SP), IEEE, San Francisco, CA, USA. 5. Godefroid, P., Kiezun, A., and Levin, M.Y. (2008, January 7–13). Grammar-based whitebox fuzzing. Proceedings of the 29th ACM SIGPLAN Conference on Programming Language Design and Implementation, Tucson, AZ, USA.
|
|