Back to Search
Start Over
NDFuzz: a non-intrusive coverage-guided fuzzing framework for virtualized network devices.
- Source :
- Cybersecurity (2523-3246); 11/1/2022, Vol. 5 Issue 1, p1-21, 21p
- Publication Year :
- 2022
-
Abstract
- Network function virtualization provides programmable in-network middlewares by leveraging virtualization technologies and commodity hardware and has gained popularity among all mainstream network device manufacturers. Yet it is challenging to apply coverage-guided fuzzing, one of the state-of-the-art vulnerability discovery approaches, to those virtualized network devices, due to inevitable integrity protection adopted by those devices. In this paper, we propose a coverage-guided fuzzing framework NDFuzz for virtualized network devices with a novel integrity protection bypassing method, which is able to distinguish processes of virtualized network devices from hypervisors with a carefully designed non-intrusive page global directory inference technique. We implement NDFuzz atop of two black-box fuzzers and evaluate NDFuzz with three representative network protocols, SNMP , DHCP and NTP , on nine popular virtualized network devices. NDFuzz obtains an average 36% coverage improvement in comparison with its black-box counterparts. NDFuzz discovers 2 0-Day vulnerabilities and 1 1-Day vulnerability with coverage guidance while the black-box fuzzer can find only one of them. All discovered vulnerabilities are confirmed by corresponding vendors. [ABSTRACT FROM AUTHOR]
- Subjects :
- INTEGRITY
COMPUTER network protocols
MANUFACTURING industries
Subjects
Details
- Language :
- English
- ISSN :
- 25233246
- Volume :
- 5
- Issue :
- 1
- Database :
- Complementary Index
- Journal :
- Cybersecurity (2523-3246)
- Publication Type :
- Academic Journal
- Accession number :
- 159974704
- Full Text :
- https://doi.org/10.1186/s42400-022-00120-1