Proceedings 2020 Network and Distributed System Security Symposium 2020
DOI: 10.14722/ndss.2020.23096
|View full text |Cite
|
Sign up to set email alerts
|

HYPER-CUBE: High-Dimensional Hypervisor Fuzzing

Abstract: Virtual machine monitors (VMMs, also called hypervisors) represent a very critical part of a modern software stack: compromising them could allow an attacker to take full control of the whole cloud infrastructure of any cloud provider. Hence their security is critical for many applications, especially in the context of Infrastructure-as-a-Service. In this paper, we present the design and implementation of HYPER-CUBE, a novel fuzzer that aims explicitly at testing hypervisors in an efficient, effective, and pre… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1
1
1

Citation Types

0
47
0

Year Published

2020
2020
2024
2024

Publication Types

Select...
6
2
1

Relationship

1
8

Authors

Journals

citations
Cited by 46 publications
(47 citation statements)
references
References 23 publications
0
47
0
Order By: Relevance
“…A higher execution speed means that fuzzing can examine more test cases, which ofers a higher opportunity to ind defects. Therefore, researchers put many eforts to improve the execution speed of fuzzing, including binary analysis [58,134], optimized execution processes [46,133,204,216], and application-speciied techniques [91,162,163,174,195,196,211].…”
Section: Improvement Of Execution Speedmentioning
confidence: 99%
See 1 more Smart Citation
“…A higher execution speed means that fuzzing can examine more test cases, which ofers a higher opportunity to ind defects. Therefore, researchers put many eforts to improve the execution speed of fuzzing, including binary analysis [58,134], optimized execution processes [46,133,204,216], and application-speciied techniques [91,162,163,174,195,196,211].…”
Section: Improvement Of Execution Speedmentioning
confidence: 99%
“…FIRM-AFL [211] mitigates the overhead via combining user-mode emulation and full-system emulation, and it mainly runs programs in the user-mode emulation. In order to fuzz VMMs (i.e., hypervisors), Schumilo et al [162,163] design a customized OS and a fast snapshot restoration mechanism to conduct fuzzing eiciently. As to the ile systems, mutating a whole disk image degrades the fuzzing throughput signiicantly because an image is too large.…”
Section: Various Applicationsmentioning
confidence: 99%
“…Recently, researchers employ newer hardware-based features (e.g. Intel-PT) for low-level hypervisor fuzzing [79,80], kernel failure reverse debugging [36] as well as machine learning approaches [5], to discover vulnerabilities and bugs. Similar ideas are deployed for embedded systems arming application tracing [26], debugging [67,70], unpacking [94] on Arm processors.…”
Section: Related Workmentioning
confidence: 99%
“…Fuzzers such as syzkaller or kAFL [25,43,53,55,58,63] adapted AFL's fuzzing model to kernel fuzzing. Fuzzers like VDF and Nyx even target hypervisors [24,51,52]. Hypervisor-based fuzzing is also commonly used to fuzz firmware [12,35,50,69] Snapshots were also used previously to speed up fuzzing.…”
Section: Related Workmentioning
confidence: 99%