北京邮电大学学报

  • EI核心期刊

北京邮电大学学报 ›› 2015, Vol. 38 ›› Issue (4): 10-14.doi: 10.13190/j.jbupt.2015.04.003

• 论文 • 上一篇    下一篇

高效的SIP服务器模糊测试方法

王玉龙1,2, 靳国栋1, 王雨骄1   

  1. 1. 北京邮电大学 网络与交换技术国家重点实验室, 北京 100876;
    2. 通信网信息传输与分发技术重点实验室, 石家庄 050081
  • 收稿日期:2014-11-24 出版日期:2015-08-28 发布日期:2015-07-03
  • 作者简介:王玉龙(1977-),男,副教授,硕士生导师,E-mail:wyl@bupt.edu.cn.
  • 基金资助:

    国家高技术研究发展计划(863计划)项目(2015AA017201);国家自然科学基金创新群体项目(61121061);网络与交换技术国家重点实验室自主课题(N2012002)

An Efficient Fuzzing Test Method for SIP Servers

WANG Yu-long1,2, JIN Guo-dong1, WANG Yu-jiao1   

  1. 1. State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing 100876, China;
    2. Science and Technology on Information Transmission and Dissemination in Communication Networks Laboratory, Shijiazhuang 050081, China
  • Received:2014-11-24 Online:2015-08-28 Published:2015-07-03

摘要:

提出了一种高效的会话发起协议(SIP)服务器畸形消息测试方法.通过SIP协议栈源代码静态分析,建立危险库函数与SIP服务器接口的映射关系;通过SIP消息模板和畸形库,生成针对危险库函数的畸形消息集;通过攻击效果分析和变异、继承操作逐代优化畸形消息集,得到具有显著攻击效果的SIP畸形消息测试集.对所提方法的有效性进行了实验验证.

关键词: 会话发起协议服务器, 安全, 畸形消息, 模糊测试

Abstract:

An efficient fuzzing test method for session initiation protocol (SIP) servers was proposed, compared to the conventional method, the generated number of malformed SIP messages was reduced, good attacking result was produced. It establishes mappings between dangerous library functions and interfaces of the SIP server through static source code analysis. It also obtains a set of malformed SIP messages targeting those dangerous functions. Finally, it optimizes the set of malformed SIP messages by analyzing its attack effects and generating better messages through inheritance and mutation operations, and obtains the set of messages having the most notable attack effects. Experiments are carried out to verify the effectiveness of the proposed method.

Key words: session initiation protocol server, security, malformed messages, fuzzing test

中图分类号: