Practical security testing using file fuzzing

Hyoungchun Kim, Younghan Choi, Dohoon Lee, Dong Hoon Lee

Research output: Chapter in Book/Report/Conference proceedingConference contribution

8 Citations (Scopus)

Abstract

File Fuzzing is the method that inserts fault into general file and monitors the errors during executing the software with fault-inserted file. In this paper, we propose the practical methodology for security testing of software using two file fuzzing approaches. The methodology focuses on binary fields and TAGs(in markup language) of the file. And we show the practical applying to WMF and HTML file.

Original languageEnglish
Title of host publicationInternational Conference on Advanced Communication Technology, ICACT
Pages1304-1307
Number of pages4
Volume2
DOIs
Publication statusPublished - 2008 May 29
Event2008 10th International Conference on Advanced Communication Technology - Phoenix Park, Korea, Republic of
Duration: 2008 Feb 172008 Feb 20

Other

Other2008 10th International Conference on Advanced Communication Technology
CountryKorea, Republic of
CityPhoenix Park
Period08/2/1708/2/20

    Fingerprint

Keywords

  • File fuzzing
  • Security testing
  • Software testing

ASJC Scopus subject areas

  • Electrical and Electronic Engineering

Cite this

Kim, H., Choi, Y., Lee, D., & Lee, D. H. (2008). Practical security testing using file fuzzing. In International Conference on Advanced Communication Technology, ICACT (Vol. 2, pp. 1304-1307). [4494003] https://doi.org/10.1109/ICACT.2008.4494003