SIA OpenIR  > 工业控制网络与系统研究室
一种面向Modbus协议的模糊测试方法
Alternative TitleModbus protocol-oriented fuzz testing method
于海斌; 曾鹏; 尚文利; 万明; 赵剑明
Department工业控制网络与系统研究室
Rights Holder中国科学院沈阳自动化研究所
Patent Agent沈阳科苑专利商标代理有限公司 21002
Country中国
Subtype发明授权
Status有权
Abstract本发明提供了一种面向Modbus协议的模糊测试方法,能够发现工业控制系统的现场设备对Modbus协议数据的处理缺陷。该方法先通过专家知识划分Modbus协议域为静态与动态部分,动态部分通过异常变异树方法构造测试数据集合,大幅度过滤不易引发故障的模糊测试用例;之后整合已公开的漏洞信息构造测试用例,融合到模糊测试用例;再之后基于公开漏洞信息的相似特征通过遗传算法变异出一个或多个测试用例,融合到模糊测试用例,最终生成面向Modbus协议的模糊测试用例,最后设计模糊测试用例的响应信息识别方法,判断缺陷是否存在。该方法实现的装置工作于Modbus TCP/IP层,只需简单点对点的网络配置,即能有效地发现现场设备对Modbus协议数据的处理缺陷。
Other AbstractThe invention provides a Modbus protocol-oriented fuzz testing method capable of discovering the processing defects of field equipment of an industry control system on Modbus protocol data. The method comprises the steps of dividing a Modbus protocol domain into a static portion and a dynamic portion via expert knowledge, constructing a test data set in the dynamic portion via an abnormal mutation tree method, and greatly filtering fuzz testing cases which do not easily cause faults; integrating the disclosed bug information to construct testing cases, and fusing the testing cases to the fuzz testing cases; mutating one or more testing cases via a genetic algorithm based on the similarity of the disclosed bug information, fusing the one or more testing cases to the fuzz testing cases, finally generating a Modbus protocol-oriented fuzz testing case, designing a response information recognition method of the fuzz testing case, and judging whether defects exist or not. A device for implementing the method works on a Modbus TCP/IP layer, and the processing defects of field equipment on Modbus protocol data can be effectively discovered only by simple point-to-point network configuration.
PCT Attributes
Application Date2014-11-30
2016-06-29
Date Available2017-03-22
Application NumberCN201410713390.7
Open (Notice) NumberCN105721230B
Language中文
Contribution Rank1
Document Type专利
Identifierhttp://ir.sia.cn/handle/173321/20166
Collection工业控制网络与系统研究室
Affiliation中国科学院沈阳自动化研究所
Recommended Citation
GB/T 7714
于海斌,曾鹏,尚文利,等. 一种面向Modbus协议的模糊测试方法[P]. 2016-06-29.
Files in This Item: Download All
File Name/Size DocType Version Access License
CN201410713390.7授权.p(489KB)专利 开放获取CC BY-NC-SAView Download
Related Services
Recommend this item
Bookmark
Usage statistics
Export to Endnote
Google Scholar
Similar articles in Google Scholar
[于海斌]'s Articles
[曾鹏]'s Articles
[尚文利]'s Articles
Baidu academic
Similar articles in Baidu academic
[于海斌]'s Articles
[曾鹏]'s Articles
[尚文利]'s Articles
Bing Scholar
Similar articles in Bing Scholar
[于海斌]'s Articles
[曾鹏]'s Articles
[尚文利]'s Articles
Terms of Use
No data!
Social Bookmark/Share
File name: CN201410713390.7授权.pdf
Format: Adobe PDF
All comments (0)
No comment.
 

Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.