计算机工程 ›› 2019, Vol. 45 ›› Issue (8): 22-24,30.doi: 10.19678/j.issn.1000-3428.0051008

所属专题: 网络空间安全专题

• 网络空间安全专题 • 上一篇    下一篇

基于改进PCFG的语言解释器模糊测试

刘志昊, 孙晓山, 张阳   

  1. 中国科学院软件研究所, 北京 100190
  • 收稿日期:2018-03-29 修回日期:2018-06-29 出版日期:2019-08-15 发布日期:2018-07-17
  • 作者简介:刘志昊(1993-),男,博士研究生,主研方向为网络与系统安全;孙晓山,助理研究员;张阳,副研究员。
  • 基金项目:
    国家自然科学基金(61471344)。

Fuzzy Testing of Language Interpreter Based on Improved PCFG

LIU Zhihao, SUN Xiaoshan, ZHANG Yang   

  1. Institute of Software, Chinese Academy of Sciences, Beijing 100190, China
  • Received:2018-03-29 Revised:2018-06-29 Online:2019-08-15 Published:2018-07-17

摘要: 为在语言解释器的模糊测试中构造符合语言规范的样本,并尽可能地得出异常测试结果以便发现漏洞,采用改进的概率上下文无关语法模型控制样本的变异过程,对变异结果中的未定义变量进行修正以提高符合语言规范的样本比率。在此基础上,对语言解释器进行模糊测试,结果表明,该测试所生成样本中符合语法、语义规范的比率高达96%。

关键词: 模糊测试, 马尔科夫模型, 概率上下文无关语法, 机器学习, 语言解释器

Abstract: In order to construct samples that conform to language norms in fuzzy testing of language interpreter,and get abnormal test results as far as possible to find vulnerabilities,the improved Probabilistic Context Free Grammar(PCFG) model is used to control the variation process of samples,and the undefined variables in the variation results are modified to increase the ratio of samples that conform to language norms.On this basis,the language interpreter is tested by fuzzy testing.Results show that the ratio of samples generated by the test that conform to the grammatical and semantic norms is as high as 96%.

Key words: fuzzing testing, Markov model, Probabilistic Context Free Grammar(PCFG), machine learning, language interpreter

中图分类号: