Title :
Analysis of embedded applications by evolutionary fuzzing
Author :
Alimi, V. ; Vernois, S. ; Rosenberger, C.
Author_Institution :
Normandie Univ., St. Etienne-du-Rouvray, France
Abstract :
In this paper, we propose to use fuzzing techniques to discover vulnerabilities in programs hosted into smart cards used for telecommunications or banking purposes (SIM cards, credit cards, secure element into NFC mobile devices...). Those programs - called applets - usually host sensitive applications and manipulate sensitive data. A flaw by design or by implementation in one of those applet could have disastrous consequences. The proposed approach uses a genetic algorithm to optimize the vulnerabilities search. We illustrate the benefit of the proposed method on a MasterCard M/Chip applet through experimental results.
Keywords :
banking; credit transactions; embedded systems; genetic algorithms; security of data; smart cards; MasterCard M/Chip applet; NFC mobile devices; SIM cards; banking purposes; credit cards; embedded applications; evolutionary fuzzing techniques; genetic algorithm; program vulnerabilities; sensitive data manipulation; smart cards; telecommunications; Credit cards; Genetic algorithms; Libraries; Protocols; Smart cards; Sociology; Statistics;
Conference_Titel :
High Performance Computing & Simulation (HPCS), 2014 International Conference on
Conference_Location :
Bologna
Print_ISBN :
978-1-4799-5312-7
DOI :
10.1109/HPCSim.2014.6903734
