Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing

Han Lin Lu; Guan Ming Lin; Shih Kun Huang

doi:10.1109/DSA56465.2022.00062

Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing

Han Lin Lu, Guan Ming Lin, Shih Kun Huang^*

^*Corresponding author for this work

Center for Information Technology Services

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Recently, fuzzers have become more important in software security. Various fuzzer strategies have been proposed continuously in order to improve the efficiency of fuzzer exploration. In order to find more program vulnerabilities, multi-parameter fuzzing has been proposed in recent years. For example, SQ-Fuzz and CRFuzz use multi-argument fuzzing to find many program vulnerabilities that were not found by single-argument fuzzer. However, there is no relevant research on optimizing parameter-based fuzzing at present. To make multi-argument fuzzer more efficient, selecting suitable combinations of command arguments is necessary. Therefore, in this paper, we propose Guan-fuzz, which uses the MeanShift algorithm to group the execution coverage of different program parameters. It can reduce the number of execution of similar parameters. The experimental results show that Guan-fuzz has 84% and 14% higher program coverage than AFL and SQ-Fuzzer. Guan-fuzz's improvement in multi-argument fuzzing is significant. Guan-fuzz can find more vulnerabilities that SQ-Fuzzu did not find, and in the real world programs, Guan-fuzz found 41 new bugs, of which 32 have been fixed, and eight have been assigned CVE IDs.

Original language	English
Title of host publication	Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	421-430
Number of pages	10
ISBN (Electronic)	9781665488778
DOIs	https://doi.org/10.1109/DSA56465.2022.00062
State	Published - 2022
Event	9th International Conference on Dependable Systems and Their Applications, DSA 2022 - Wulumuqi, China Duration: 4 Aug 2022 → 5 Aug 2022

Publication series

Name	Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022

Conference

Conference	9th International Conference on Dependable Systems and Their Applications, DSA 2022
Country/Territory	China
City	Wulumuqi
Period	4/08/22 → 5/08/22

Keywords

fuzz testing
meanshift
multi-argument fuzz testing
software security

Access to Document

10.1109/DSA56465.2022.00062

Cite this

Lu, H. L., Lin, G. M., & Huang, S. K. (2022). Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing. In Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022 (pp. 421-430). (Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/DSA56465.2022.00062

Lu, Han Lin ; Lin, Guan Ming ; Huang, Shih Kun. / Guan-fuzz : Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing. Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022. Institute of Electrical and Electronics Engineers Inc., 2022. pp. 421-430 (Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022).

@inproceedings{03d568729e91446e91364dfb1ad9867c,

title = "Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing",

abstract = "Recently, fuzzers have become more important in software security. Various fuzzer strategies have been proposed continuously in order to improve the efficiency of fuzzer exploration. In order to find more program vulnerabilities, multi-parameter fuzzing has been proposed in recent years. For example, SQ-Fuzz and CRFuzz use multi-argument fuzzing to find many program vulnerabilities that were not found by single-argument fuzzer. However, there is no relevant research on optimizing parameter-based fuzzing at present. To make multi-argument fuzzer more efficient, selecting suitable combinations of command arguments is necessary. Therefore, in this paper, we propose Guan-fuzz, which uses the MeanShift algorithm to group the execution coverage of different program parameters. It can reduce the number of execution of similar parameters. The experimental results show that Guan-fuzz has 84% and 14% higher program coverage than AFL and SQ-Fuzzer. Guan-fuzz's improvement in multi-argument fuzzing is significant. Guan-fuzz can find more vulnerabilities that SQ-Fuzzu did not find, and in the real world programs, Guan-fuzz found 41 new bugs, of which 32 have been fixed, and eight have been assigned CVE IDs.",

keywords = "fuzz testing, meanshift, multi-argument fuzz testing, software security",

author = "Lu, {Han Lin} and Lin, {Guan Ming} and Huang, {Shih Kun}",

note = "Publisher Copyright: {\textcopyright} 2022 IEEE.; 9th International Conference on Dependable Systems and Their Applications, DSA 2022 ; Conference date: 04-08-2022 Through 05-08-2022",

year = "2022",

doi = "10.1109/DSA56465.2022.00062",

language = "English",

series = "Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "421--430",

booktitle = "Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022",

address = "United States",

}

Lu, HL, Lin, GM & Huang, SK 2022, Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing. in Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022. Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022, Institute of Electrical and Electronics Engineers Inc., pp. 421-430, 9th International Conference on Dependable Systems and Their Applications, DSA 2022, Wulumuqi, China, 4/08/22. https://doi.org/10.1109/DSA56465.2022.00062

Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing. / Lu, Han Lin; Lin, Guan Ming; Huang, Shih Kun.
Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022. Institute of Electrical and Electronics Engineers Inc., 2022. p. 421-430 (Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Guan-fuzz

T2 - 9th International Conference on Dependable Systems and Their Applications, DSA 2022

AU - Lu, Han Lin

AU - Lin, Guan Ming

AU - Huang, Shih Kun

PY - 2022

Y1 - 2022

N2 - Recently, fuzzers have become more important in software security. Various fuzzer strategies have been proposed continuously in order to improve the efficiency of fuzzer exploration. In order to find more program vulnerabilities, multi-parameter fuzzing has been proposed in recent years. For example, SQ-Fuzz and CRFuzz use multi-argument fuzzing to find many program vulnerabilities that were not found by single-argument fuzzer. However, there is no relevant research on optimizing parameter-based fuzzing at present. To make multi-argument fuzzer more efficient, selecting suitable combinations of command arguments is necessary. Therefore, in this paper, we propose Guan-fuzz, which uses the MeanShift algorithm to group the execution coverage of different program parameters. It can reduce the number of execution of similar parameters. The experimental results show that Guan-fuzz has 84% and 14% higher program coverage than AFL and SQ-Fuzzer. Guan-fuzz's improvement in multi-argument fuzzing is significant. Guan-fuzz can find more vulnerabilities that SQ-Fuzzu did not find, and in the real world programs, Guan-fuzz found 41 new bugs, of which 32 have been fixed, and eight have been assigned CVE IDs.

AB - Recently, fuzzers have become more important in software security. Various fuzzer strategies have been proposed continuously in order to improve the efficiency of fuzzer exploration. In order to find more program vulnerabilities, multi-parameter fuzzing has been proposed in recent years. For example, SQ-Fuzz and CRFuzz use multi-argument fuzzing to find many program vulnerabilities that were not found by single-argument fuzzer. However, there is no relevant research on optimizing parameter-based fuzzing at present. To make multi-argument fuzzer more efficient, selecting suitable combinations of command arguments is necessary. Therefore, in this paper, we propose Guan-fuzz, which uses the MeanShift algorithm to group the execution coverage of different program parameters. It can reduce the number of execution of similar parameters. The experimental results show that Guan-fuzz has 84% and 14% higher program coverage than AFL and SQ-Fuzzer. Guan-fuzz's improvement in multi-argument fuzzing is significant. Guan-fuzz can find more vulnerabilities that SQ-Fuzzu did not find, and in the real world programs, Guan-fuzz found 41 new bugs, of which 32 have been fixed, and eight have been assigned CVE IDs.

KW - fuzz testing

KW - meanshift

KW - multi-argument fuzz testing

KW - software security

UR - http://www.scopus.com/inward/record.url?scp=85141368712&partnerID=8YFLogxK

U2 - 10.1109/DSA56465.2022.00062

DO - 10.1109/DSA56465.2022.00062

M3 - Conference contribution

AN - SCOPUS:85141368712

T3 - Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022

SP - 421

EP - 430

BT - Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 4 August 2022 through 5 August 2022

ER -

Lu HL, Lin GM, Huang SK. Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing. In Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022. Institute of Electrical and Electronics Engineers Inc. 2022. p. 421-430. (Proceedings - 2022 9th International Conference on Dependable Systems and Their Applications, DSA 2022). doi: 10.1109/DSA56465.2022.00062

Guan-fuzz: Argument Selection With Mean Shift Clustering for Multi-argument Fuzzing

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Cite this