Software Vulnerability Discovery Techniques: A Survey

Liu, Bingchang; Shi, Liang; Cai, Zhipeng; Li, Min

doi:10.1109/mines.2012.202

Cited by 97 publications

(40 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Fuzzing was first thought by Barton Miller Lars Fredriksen and Bryan So casually [3]. Fuzzing is an automatic software testing technology based on defective injection.…”

Section: Technologies Of Vulnerability Discoverymentioning

confidence: 99%

“…Because the computer program is not computable, we cannot use the mathematical method to completely eliminate all the logical defects and vulnerabilities in the software, so the vulnerability has necessity [3]. And in general, vulnerabilities are usually exposed with the use of software user, the computer system and software may have been running for a long time, so the vulnerability has permanence.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Survey of Software Vulnerability Discovery Technology

Wang¹

2017

Proceedings of the 2017 7th International Conference on Social Network, Communication and Education (SNCE 2017)

View full text Add to dashboard Cite

Abstract. The 21st century is the information age. The rapid development of computer technology supports the rapid development of the information age. With the rapid spread of computers and networks, more and more software products play an important role in people's daily life. In computer security[1], a vulnerability[2] is a weakness which allows an attacker to reduce a system's information assurance. Vulnerability is the intersection of three elements: a system susceptibility or flaw, attacker access to the flaw, and attacker capability to exploit the flaw. Due to software developer's negligence in the development process of software or programming language limitations, software products often have security and functional flaws which damage software, known as software vulnerabilities. Software vulnerability discovery aims at discovering vulnerabilities that already exist in software, and then developers patch vulnerabilities to eliminate damages brought to software products. Now, vulnerability discovery ,in the field of information security, is becoming increasingly important. This paper mainly introduces the main methods of vulnerability discovery.

show abstract

“…Fuzzing was first thought by Barton Miller Lars Fredriksen and Bryan So casually [3]. Fuzzing is an automatic software testing technology based on defective injection.…”

Section: Technologies Of Vulnerability Discoverymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Survey of Software Vulnerability Discovery Technology

Wang¹

2017

Proceedings of the 2017 7th International Conference on Social Network, Communication and Education (SNCE 2017)

View full text Add to dashboard Cite

show abstract

“…소프트웨어의 취약점을 검출하기 위한 연구로는 정 적분석, 퍼징, 침투테스트 등의 방법이 있다 [5] . 정적분 석은 프로그램을 실행하지 않고 프로그램 텍스트를 정적으로 분석하여 프로그램 내의 취약 요소를 찾아 내는 방법으로써 사람에 의한 매뉴얼 분석이나 정적 분석 도구를 이용하는 분석 방법이 있다 [5] .…”

Section: 스템에 내재된 취약점을 찾아 사이버-물리 공격을 수 행할 수 없도록 제어시스템의 취약점을 조기에 검출unclassified

“…정적분 석은 프로그램을 실행하지 않고 프로그램 텍스트를 정적으로 분석하여 프로그램 내의 취약 요소를 찾아 내는 방법으로써 사람에 의한 매뉴얼 분석이나 정적 분석 도구를 이용하는 분석 방법이 있다 [5] . 수백만 라 인의 소스코드를 짧은 시간에 분석하기 위해서는 보 안약점과 관련된 패턴 등 진단규칙이 반영된 정적분 석 도구를 이용하며, 이러한 분석 도구는 진단규칙 보 유 수준과 이를 기반으로 한 진단능력 등이 성능에 중 요한 영향을 미친다 [6] .…”

Section: 스템에 내재된 취약점을 찾아 사이버-물리 공격을 수 행할 수 없도록 제어시스템의 취약점을 조기에 검출unclassified

“…수백만 라 인의 소스코드를 짧은 시간에 분석하기 위해서는 보 안약점과 관련된 패턴 등 진단규칙이 반영된 정적분 석 도구를 이용하며, 이러한 분석 도구는 진단규칙 보 유 수준과 이를 기반으로 한 진단능력 등이 성능에 중 요한 영향을 미친다 [6] . 정적분석은 프로그램을 실행하 기 위한 환경구축이 필요 없으며, 개발 과정에서 공통 적으로 나타나는 소프트웨어 버그를 제거하는데 효과 적인 반면, 높은 오탐율과 운영환경 및 설정 상에서 발생하는 취약점을 분석하기 어려우며, 특히 프로그램 소스가 확보되어야 하는 단점이 있다 [5] . 퍼징 테스트 는 랜덤한 입력 스트링을 만들어 시험하는 방법 [7] [9] .…”

Section: 스템에 내재된 취약점을 찾아 사이버-물리 공격을 수 행할 수 없도록 제어시스템의 취약점을 조기에 검출unclassified

See 1 more Smart Citation

Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System

Kim¹,

Jang

Seo³

et al. 2014

The Journal of Korea Information and Communications Society

View full text Add to dashboard Cite

Key Words : Fuzzing, DNP3, Vulnerability Assessment, Control System Security, SCADA Security ABSTRACT A railway SCADA system is a control systems that provide the trains with the electricity. A railway SCADA system sends commands to the RTUs(remote terminal unit) and then it gathers status information of the field devices in the RTUs or controls field devices connected with the RTUs . The RTU can controls input output modules directly, gathers the status information of the field devices connected with it, and send the information to the control center. In this way, a railway SCADA system monitors and controls the electricity power for running trains. The cyber attackers may use some vulnerabilities in the railway SCADA system software to attack critical infrastructures. The vulnerabilities might be created in the railway software development process.Therefore it need to detect and remove the vulnerabilities in the control system. In this paper we propose a new control protocol fuzzing method to detect the vulnerabilities in the DNP3 protocol based application running on VxWorks in RTU(Remote Terminal Unit) that is a component of the centralized traffic control system for railway. Debug-channel based fuzzing method is required to obtain process status information from the VxWorks

show abstract

A Survey of the Software Vulnerability Discovery Using Machine Learning Techniques

Jiang

Sun

et al. 2019

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Software Vulnerability Discovery Techniques: A Survey

Cited by 97 publications

References 29 publications

Survey of Software Vulnerability Discovery Technology

Survey of Software Vulnerability Discovery Technology

Vulnerability Discovery Method Based on Control Protocol Fuzzing for a Railway SCADA System

A Survey of the Software Vulnerability Discovery Using Machine Learning Techniques

Contact Info

Product

Resources

About