Vulnerability Discovery: Solving the Vulnerability Uniqueness Problem

Abstract

Current vulnerability discovery techniques such as black-box fuzz testing and concolic testing are so effective that they routinely and hundreds of thousands of crashers, which crash the target program. We created a new methodology for precisely and naturally defining vulnerabilities through the creation of patches. We use our methodology to study important questions regarding the practice of fuzzing.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2015
Accession Number
AD1145846

Entities

Organizations

  • Carnegie Mellon University

Tags

DTIC Thesaurus Topics

  • Contracts
  • Copyrights
  • Department Of Defense
  • Engineering
  • Governments
  • Guarantees
  • Intellectual Property
  • Law
  • Materials
  • Patents
  • Software Development
  • Test Methods
  • Trademarks
  • Universities
  • Vulnerability

Fields of Study

  • Computer science

Readers

  • Applied Combinatorial Optimization and Logic Circuit Design.
  • Calculus or Mathematical Analysis
  • Cybersecurity.