SIA OpenIR  > 工业控制网络与系统研究室
一种结合遗传算法的工控协议模糊测试方法
Alternative TitleFuzzy test method for industrial control protocol combining genetic algorithm
张冠宇1,2,3; 尚文利1,3,4,5; 张博文1,3,4,5; 陈春雨1,3,4,5; 刘周斌6; 张锐2
Department工业控制网络与系统研究室
Source Publication计算机应用研究
ISSN1001-3695
2020
Volume38Issue:3Pages:1-6
Contribution Rank1
Funding Organization国家重点研发计划项目(2018YFB2004200) ; 国家自然科学基金项目(61773368) ; 2019年工业互联网创新发展工程—工业企业网络安全综合防护平台项目 ; 国家电网公司科技项目(52110418001B)
Keyword工控协议测试 遗传算法 模糊测试 漏洞挖掘
Abstract

模糊测试(fuzzy test)在工控协议的漏洞挖掘中有很好的适用性,但传统的模糊测试存在着用例的生成工作量大、失效率高等弊端。为了解决这些问题,设计了一个结合遗传算法(genetic algorithm)与模糊测试的工控协议模糊测试器GA-fuzzer,并引入基于维度变换的用例空间模型和危险点的概念。在GA-fuzzer中,构造了更有效的动态适应度函数,同时设计了动态变异算子和交叉算子,优化测试用例。在相同实验环境下,分别采用开源模糊测试方法Peach以及GA-Fuzzer对目标进行测试,结果显示GA-fuzzer可有效的改善传统遗传算法的过早收敛问题,且与Peach相比,达到相同的测试预期所使用的用例数量降低27.20%,测试时间降低34.82%。

Other Abstract

Fuzzy Test has good applicability in the exploitation of vulnerabilities in industrial control protocols. However, the traditional fuzzy test has the disadvantages of large test workload and a high failure rate. In order to solve these problems, it design an industrial control protocol fuzzy tester GA-fuzzer which combines genetic algorithm and fuzzy test. and propose the concepts of dangerous points and case space model based on dimensional transformation. In GA-fuzzer, it constructed a more efficient dynamic fitness function, and design dynamic mutation and crossover operators to optimize test cases. In the same experimental environment, it used open source fuzzy test method Peach and GA-Fuzzer to test the target. The results show that GA-fuzzer can effectively improve the premature convergence problem of traditional genetic algorithm, and compared to Peach, the number of cases used to achieve the same test expectation was reduced by 27.20% and the test time was reduced by 34.82%.

Language中文
Document Type期刊论文
Identifierhttp://ir.sia.cn/handle/173321/27657
Collection工业控制网络与系统研究室
Corresponding Author尚文利
Affiliation1.中科院网络化控制系统重点实验室
2.沈阳建筑大学信息与控制工程学院
3.中国科学院沈阳自动化研究所
4.中国科学院机器人与智能制造创新研究院
5.中国科学院大学
6.国网浙江省电力有限公司电力科学研究院
Recommended Citation
GB/T 7714
张冠宇,尚文利,张博文,等. 一种结合遗传算法的工控协议模糊测试方法[J]. 计算机应用研究,2020,38(3):1-6.
APA 张冠宇,尚文利,张博文,陈春雨,刘周斌,&张锐.(2020).一种结合遗传算法的工控协议模糊测试方法.计算机应用研究,38(3),1-6.
MLA 张冠宇,et al."一种结合遗传算法的工控协议模糊测试方法".计算机应用研究 38.3(2020):1-6.
Files in This Item:
File Name/Size DocType Version Access License
一种结合遗传算法的工控协议模糊测试方法.(699KB)期刊论文出版稿开放获取CC BY-NC-SAView Application Full Text
Related Services
Recommend this item
Bookmark
Usage statistics
Export to Endnote
Google Scholar
Similar articles in Google Scholar
[张冠宇]'s Articles
[尚文利]'s Articles
[张博文]'s Articles
Baidu academic
Similar articles in Baidu academic
[张冠宇]'s Articles
[尚文利]'s Articles
[张博文]'s Articles
Bing Scholar
Similar articles in Bing Scholar
[张冠宇]'s Articles
[尚文利]'s Articles
[张博文]'s Articles
Terms of Use
No data!
Social Bookmark/Share
File name: 一种结合遗传算法的工控协议模糊测试方法.pdf
Format: Adobe PDF
All comments (0)
No comment.
 

Items in the repository are protected by copyright, with all rights reserved, unless otherwise indicated.