计算机工程 ›› 2014, Vol. 40 ›› Issue (12): 68-73.doi: 10.3969/j.issn.1000-3428.2014.12.012

• 安全技术 • 上一篇    下一篇

一种Cisco IOS启发式模糊测试方法

陈立根,刘胜利,肖达,彭飞   

  1. 数学工程与先进计算国家重点实验室,郑州 450001
  • 收稿日期:2014-01-07 修回日期:2014-02-19 出版日期:2014-12-15 发布日期:2015-01-16
  • 作者简介:陈立根(1988-),男,硕士研究生,主研方向:网络信息安全;刘胜利,副教授:肖 达,讲师;彭 飞,硕士研究生。
  • 基金项目:
    国家科技支撑计划基金资助项目(2012BAH43B00);郑州市科技创新团队基金资助项目(10CXTD150)。 

A Heuristic Fuzzing Test Method for Cisco IOS

CHEN Ligen,LIU Shengli,XIAO Da,PENG Fei   

  1. State Key Laboratory of Mathematical Engineering and Advanced Computing,Zhengzhou 450001,China
  • Received:2014-01-07 Revised:2014-02-19 Online:2014-12-15 Published:2015-01-16

摘要: 在思科互联网操作系统(Cisco IOS)中,系统安全漏洞已经成为信息安全风险的主要根源之一,全面发现与及时修补IOS的漏洞非常必要。为此,提出一种基于细粒度污点分析的启发式模糊测试方法。给出细粒度污点传播规则的形式化描述,以及基于细粒度污点分析的安全敏感操作判定规则,为获取启发式信息提供依据;采用启发式测试用例生成的方法,设计并实现Cisco IOS漏洞挖掘原型系统CTaintMiner,测试结果表明,系统具备较好的漏洞挖掘能力,验证了启发式模糊测试方法的有效性。

关键词: 思科互联网操作系统, 网络安全, 启发式模糊测试, 漏洞挖掘, 污点分析

Abstract: Cisco Internet Operating System(IOS) is an operating system running on Cisco routing and switching equipment.Its security is very important.As the system security vulnerability becomes one of the main causes of information security risk,to discover and timely repair vulnerabilities in IOS is very necessary.A heuristic fuzzing method based on fine-grained taint analysis is proposed.Fine-grained taint propagation rules are presented in formal description.Judgment rules based on fine-grained taint analysis are proposed,providing the basis to acquire heuristic information.A method to generate heuristic test cases is proposed.It designs and develops a vulnerability mining prototype system named CTaintMiner for Cisco IOS.The mining system is used to do practical tests,and results show that CTaintMiner mining system has a better ability to do vulnerability mining and verifies the validity of the test method.

Key words: Cisco Internet Operating System(IOS), network security, heuristic fuzzing test, vulnerability mining, taint analysis

中图分类号: