AspFuzz: A state-aware protocol fuzzer based on application-layer protocols

Takahisa Kitagawa; Miyuki Hanaoka; Kenji Kono

doi:10.1109/ISCC.2010.5546704

AspFuzz: A state-aware protocol fuzzer based on application-layer protocols

Takahisa Kitagawa, Miyuki Hanaoka, Kenji Kono

Department of Information and Computer Science

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

21 Citations (Scopus)

Abstract

In the face of constant malicious attacks to network-connected software systems, software vulnerabilities need to be discovered early in the development phase. In this paper, we present AspFuzz, a state-aware protocol fuzzer based on the specifications of application-layer protocols. AspFuzz automatically generates anomalous messages that exploit possible vulnerabilities. The key observation behind AspFuzz is that most of the previously reported attack messages violate the strict specifications of application-layer protocols. For example, they do not conform to the rigid format or syntax required of each message. In addition, some attack messages ignore the protocol states and have incorrect orders of messages. AspFuzz automatically generates a large number of anomalous messages that deliberately violate the specifications of application-layer protocols. It then sends the generated messages in both anomalous orders and correct orders. To demonstrate the effectiveness of AspFuzz, we conducted experiments with POP3 and HTTP servers. With AspFuzz, we can discover 20 reported and 1 previously unknown vulnerabilities for POP3 servers and 25 reported vulnerabilities for HTTP servers.

Original language	English
Title of host publication	IEEE Symposium on Computers and Communications, ISCC 2010
Pages	202-208
Number of pages	7
DOIs	https://doi.org/10.1109/ISCC.2010.5546704
Publication status	Published - 2010 Sept 17
Event	15th IEEE Symposium on Computers and Communications, ISCC 2010 - Riccione, Italy Duration: 2010 Jun 22 → 2010 Jun 25

Publication series

Name	Proceedings - IEEE Symposium on Computers and Communications
ISSN (Print)	1530-1346

Other

Other	15th IEEE Symposium on Computers and Communications, ISCC 2010
Country/Territory	Italy
City	Riccione
Period	10/6/22 → 10/6/25

Keywords

Fuzzing
Software vulnerability testing

ASJC Scopus subject areas

Software
Signal Processing
Mathematics(all)
Computer Science Applications
Computer Networks and Communications

Access to Document

10.1109/ISCC.2010.5546704

Cite this

Kitagawa, T, Hanaoka, M & Kono, K 2010, AspFuzz: A state-aware protocol fuzzer based on application-layer protocols. in IEEE Symposium on Computers and Communications, ISCC 2010., 5546704, Proceedings - IEEE Symposium on Computers and Communications, pp. 202-208, 15th IEEE Symposium on Computers and Communications, ISCC 2010, Riccione, Italy, 10/6/22. https://doi.org/10.1109/ISCC.2010.5546704

@inproceedings{7bba319ebdb748bd8485a2098424f13c,

title = "AspFuzz: A state-aware protocol fuzzer based on application-layer protocols",

abstract = "In the face of constant malicious attacks to network-connected software systems, software vulnerabilities need to be discovered early in the development phase. In this paper, we present AspFuzz, a state-aware protocol fuzzer based on the specifications of application-layer protocols. AspFuzz automatically generates anomalous messages that exploit possible vulnerabilities. The key observation behind AspFuzz is that most of the previously reported attack messages violate the strict specifications of application-layer protocols. For example, they do not conform to the rigid format or syntax required of each message. In addition, some attack messages ignore the protocol states and have incorrect orders of messages. AspFuzz automatically generates a large number of anomalous messages that deliberately violate the specifications of application-layer protocols. It then sends the generated messages in both anomalous orders and correct orders. To demonstrate the effectiveness of AspFuzz, we conducted experiments with POP3 and HTTP servers. With AspFuzz, we can discover 20 reported and 1 previously unknown vulnerabilities for POP3 servers and 25 reported vulnerabilities for HTTP servers.",

keywords = "Fuzzing, Software vulnerability testing",

author = "Takahisa Kitagawa and Miyuki Hanaoka and Kenji Kono",

year = "2010",

month = sep,

day = "17",

doi = "10.1109/ISCC.2010.5546704",

language = "English",

isbn = "9781424477555",

series = "Proceedings - IEEE Symposium on Computers and Communications",

pages = "202--208",

booktitle = "IEEE Symposium on Computers and Communications, ISCC 2010",

note = "15th IEEE Symposium on Computers and Communications, ISCC 2010 ; Conference date: 22-06-2010 Through 25-06-2010",

}

TY - GEN

T1 - AspFuzz

T2 - 15th IEEE Symposium on Computers and Communications, ISCC 2010

AU - Kitagawa, Takahisa

AU - Hanaoka, Miyuki

AU - Kono, Kenji

PY - 2010/9/17

Y1 - 2010/9/17

N2 - In the face of constant malicious attacks to network-connected software systems, software vulnerabilities need to be discovered early in the development phase. In this paper, we present AspFuzz, a state-aware protocol fuzzer based on the specifications of application-layer protocols. AspFuzz automatically generates anomalous messages that exploit possible vulnerabilities. The key observation behind AspFuzz is that most of the previously reported attack messages violate the strict specifications of application-layer protocols. For example, they do not conform to the rigid format or syntax required of each message. In addition, some attack messages ignore the protocol states and have incorrect orders of messages. AspFuzz automatically generates a large number of anomalous messages that deliberately violate the specifications of application-layer protocols. It then sends the generated messages in both anomalous orders and correct orders. To demonstrate the effectiveness of AspFuzz, we conducted experiments with POP3 and HTTP servers. With AspFuzz, we can discover 20 reported and 1 previously unknown vulnerabilities for POP3 servers and 25 reported vulnerabilities for HTTP servers.

AB - In the face of constant malicious attacks to network-connected software systems, software vulnerabilities need to be discovered early in the development phase. In this paper, we present AspFuzz, a state-aware protocol fuzzer based on the specifications of application-layer protocols. AspFuzz automatically generates anomalous messages that exploit possible vulnerabilities. The key observation behind AspFuzz is that most of the previously reported attack messages violate the strict specifications of application-layer protocols. For example, they do not conform to the rigid format or syntax required of each message. In addition, some attack messages ignore the protocol states and have incorrect orders of messages. AspFuzz automatically generates a large number of anomalous messages that deliberately violate the specifications of application-layer protocols. It then sends the generated messages in both anomalous orders and correct orders. To demonstrate the effectiveness of AspFuzz, we conducted experiments with POP3 and HTTP servers. With AspFuzz, we can discover 20 reported and 1 previously unknown vulnerabilities for POP3 servers and 25 reported vulnerabilities for HTTP servers.

KW - Fuzzing

KW - Software vulnerability testing

UR - http://www.scopus.com/inward/record.url?scp=77956540790&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=77956540790&partnerID=8YFLogxK

U2 - 10.1109/ISCC.2010.5546704

DO - 10.1109/ISCC.2010.5546704

M3 - Conference contribution

AN - SCOPUS:77956540790

SN - 9781424477555

T3 - Proceedings - IEEE Symposium on Computers and Communications

SP - 202

EP - 208

BT - IEEE Symposium on Computers and Communications, ISCC 2010

Y2 - 22 June 2010 through 25 June 2010

ER -

AspFuzz: A state-aware protocol fuzzer based on application-layer protocols

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this