一种UEFI DXE 驱动二进制模糊测试方法

北京邮电大学学报 ›› 2023, Vol. 46 ›› Issue (1): 121-126.

• 研究报告 • 上一篇

一种UEFI DXE 驱动二进制模糊测试方法

龙翔,崔宝江,吴佳桐

北京邮电大学

收稿日期:2022-01-01 修回日期:2022-06-13 出版日期:2023-02-28 发布日期:2023-02-22
通讯作者: 崔宝江 E-mail:cuibj@bupt.edu.cn
基金资助:
中央高校基本科研业务费专项项目

A Binary Fuzzy Test Method for UEFI DXE Drivers

#br#

1. Beijing University of Posts and Telecommunications

Received:2022-01-01 Revised:2022-06-13 Online:2023-02-28 Published:2023-02-22

摘要/Abstract

摘要： 为了简化现有统一可扩展固件接口驱动执行环境(UEFI DXE)驱动的二进制安全分析流程,提出了一种基于依赖分析和调用劫持的 UEFI DXE 驱动仿真技术和基于调用引导和即时检测的灰盒模糊测试方法。实验结果证明,所提方法在公开评测样本集上可以检出全部种类的漏洞,并在已知公开漏洞披露的 UEFI DXE 固件上得到验证,所提方法可以达到更高的代码覆盖率,且需要的前置条件更少。

关键词: 模糊测试, 统一可扩展固件接口固件, UEFI DXE 驱动

Abstract: To simplify the binary security analysis process of existing unified extensible firmware interface driver execution environment ( UEFI DXE) driver, a fuzzing method for UEFI DXE binary based on dependency analysis and call hijacking is proposed. A driver emulation technology and a gray-box fuzzing method based on call guidance and on-the-fly detection is also proposed. The experiment results show that all types of vulnerabilities can be detected on the public evaluation sample set and verified on the UEFI DXE firmware with known common vulnerabilities & exposures. Moreover, the proposed method can achieve higher code coverage with fewer pre-requisites.

Key words: fuzzing test, unified extensible firmware interface firmware, unified extensible firmware interface driver execution environment driver

中图分类号:

TP309.5

龙翔崔宝江吴佳桐. 一种UEFI DXE 驱动二进制模糊测试方法[J]. 北京邮电大学学报, 2023, 46(1): 121-126.

LONG Xiang, CUI Baojiang, WU Jiatong. A Binary Fuzzy Test Method for UEFI DXE Drivers[J]. Journal of Beijing University of Posts and Telecommunications, 2023, 46(1): 121-126.

一种UEFI DXE 驱动二进制模糊测试方法

A Binary Fuzzy Test Method for UEFI DXE Drivers

PDF

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 1

编辑推荐

Metrics

本文评价