MSFuzz: Augmenting Protocol Fuzzing with Message Syntax Comprehension via Large Language Models-Reference-Cited by-同舟云学术

MSFuzz: Augmenting Protocol Fuzzing with Message Syntax Comprehension via Large Language Models

Published:2024-07-04 Issue:13 Volume:13 Page:2632
ISSN:2079-9292
Container-title:Electronics
language:en
Short-container-title:Electronics

Author:

Cheng Mingjie¹²,Zhu Kailong¹²,Chen Yuanchao¹²^ORCID,Yang Guozheng¹²,Lu Yuliang¹²,Lu Canju¹²

Affiliation:

1. College of Electronic Engineering, National University of Defense Technology, Hefei 230037, China

2. Anhui Province Key Laboratory of Cyberspace Security Situation Awareness and Evaluation, Hefei 230037, China

Abstract

Network protocol implementations, as integral components of information communication, are critically important for security. Due to its efficiency and automation, fuzzing has become a popular method for protocol security detection. However, the existing protocol-fuzzing techniques face the critical problem of generating high-quality inputs. To address the problem, in this paper, we propose MSFuzz, which is a protocol-fuzzing method with message syntax comprehension. The core observation of MSFuzz is that the source code of protocol implementations contains detailed and comprehensive knowledge of the message syntax. Specifically, we leveraged the code-understanding capabilities of large language models to extract the message syntax from the source code and construct message syntax trees. Then, using these syntax trees, we expanded the initial seed corpus and designed a novel syntax-aware mutation strategy to guide the fuzzing. To evaluate the performance of MSFuzz, we compared it with the state-of-the-art (SOTA) protocol fuzzers, namely, AFLNET and CHATAFL. Experimental results showed that compared with AFLNET and CHATAFL, MSFuzz achieved average improvements of 22.53% and 10.04% in the number of states, 60.62% and 19.52% improvements in the number of state transitions, and 29.30% and 23.13% improvements in branch coverage. Additionally, MSFuzz discovered more vulnerabilities than the SOTA fuzzers.

Publisher

MDPI AG

Link

https://www.mdpi.com/2079-9292/13/13/2632/pdf

Reference44 articles.

1. Hermann, H., Johnson, R., and Engel, R. (1995, January 15–19). A framework for network protocol software. Proceedings of the OOPSLA ‘95, ACM SIGPLAN Notices, Austin, TX, USA.

2. Secure Intelligent Fuzzy Blockchain Framework: Effective Threat Detection in IoT Networks;Yazdinejad;Comput. Ind.,2023

3. Serebryany, K. (2017). OSS-Fuzz-Google’s Continuous Fuzzing Service for Open Source Software, USENIX.

4. Xu, M., Kashyap, S., Zhao, H., and Kim, T. (2020, January 18–21). Krace: Data race fuzzing for kernel file systems. Proceedings of the 2020 IEEE Symposium on Security and Privacy (SP), San Francisco, CA, USA.

5. Jero, S., Pacheco, M.L., Goldwasser, D., and Nita-Rotaru, C. (February, January 27). Leveraging textual specifications for grammar-based fuzzing of network protocols. Proceedings of the AAAI Conference on Artificial Intelligence, Honolulu, HI, USA.

Cited by 1 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. DynER: Optimized Test Case Generation for Representational State Transfer (REST)ful Application Programming Interface (API) Fuzzers Guided by Dynamic Error Responses;Electronics;2024-09-01