AcoFuzz: Adaptive Energy Allocation for Greybox Fuzzing
In recent years, coverage-based greybox fuzzing (CGF) has become one of the most important techniques to discover security bugs. The existing fuzzers linearly allocate energy for each test case and repeatedly select the same seed for fuzzing, but those strategies proved to be inefficient and it has proved to be inefficient. Our experimental observations show that various test cases have diverse effectiveness, and the effectiveness of test cases changes increase with execution time.In this paper, we propose a novel yet lightweight energy allocation and seeds selection strategy, called AcoFuzz, to improve fuzzing efficiency. AcoFuzz has a following distinct advantage:Dynamically allocate energy for test cases based on computations to cope with their effectiveness variation.Extensive experiments based on real-world programs and the LAVA-M dataset have been conducted to evaluate the path discovery and vulnerability detection ability of AcoFuzz, which substantially outperforms 3 state-of-the-art fuzzers.
Fri 8 AprDisplayed time zone: Amsterdam, Berlin, Bern, Rome, Stockholm, Vienna change
13:40 - 14:20 | |||
13:40 20mFull-paper | Cross-Device Difference Detector for Mobile Application GUI Compatibility Testing NEXTA Yanwei Ren Baidu China Co. Ltd, Youda Gu Baidu China Co. Ltd, Zongqing Ma Beijing Information Science & Technology University, hualiang zhu Baidu China Co. Ltd, Fei Yin Baidu China Co. Ltd | ||
14:00 20mFull-paper | AcoFuzz: Adaptive Energy Allocation for Greybox Fuzzing NEXTA | ||
13:40-14:00 Yanwei Ren, Youda Gu, Zongqing Ma, Hualiang Zhu and Fei Yin: Cross-Device Difference Detector for Mobile Application GUI Compatibility Testing 14:00-14:20 Qi Zhan, You Wu, Haipeng Qu and Xiaoqi Zhao: AcoFuzz: Adaptive Energy Allocation for Greybox Fuzzing