• DocumentCode
    3638781
  • Title

    Improving Fuzz Testing Using Game Theory

  • Author

    Sheila Becker;Humberto Abdelnur;Jorge Lucangeli Obes;Radu State;Olivier Festor

  • Author_Institution
    Univ. of Luxembourg, Luxembourg, Luxembourg
  • fYear
    2010
  • Firstpage
    263
  • Lastpage
    268
  • Abstract
    We propose a game theoretical model for fuzz testing, consisting in generating unexpected input to search for software vulnerabilities. As of today, no performance guarantees or assessment frameworks for fizzing exist. Our paper addresses these issues and describes a simple model that can be used to assess and identify optimal fizzing strategies, by leveraging game theory. In this context, payoff functions are obtained using a tainted data analysis and instrumentation of a target application to assess the impact of different fizzing strategies.
  • Keywords
    "Games","Entropy","Testing","Nash equilibrium","Instruction sets"
  • Publisher
    ieee
  • Conference_Titel
    Network and System Security (NSS), 2010 4th International Conference on
  • Print_ISBN
    978-1-4244-8484-3
  • Type

    conf

  • DOI
    10.1109/NSS.2010.81
  • Filename
    5635490
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3638781