Practical security testing using file fuzzing

Hyoungchun Kim, Younghan Choi, Dohoon Lee, Donghoon Lee

Research output: Chapter in Book/Report/Conference proceedingConference contribution

8 Citations (Scopus)

Abstract

File Fuzzing is the method that inserts fault into general file and monitors the errors during executing the software with fault-inserted file. In this paper, we propose the practical methodology for security testing of software using two file fuzzing approaches. The methodology focuses on binary fields and TAGs(in markup language) of the file. And we show the practical applying to WMF and HTML file.

Original languageEnglish
Title of host publication10th International Conference on Advanced Communication Technology, ICACT 2008 - Proceedings
Pages1304-1307
Number of pages4
DOIs
Publication statusPublished - 2008
Event2008 10th International Conference on Advanced Communication Technology - Phoenix Park, Korea, Republic of
Duration: 2008 Feb 172008 Feb 20

Publication series

NameInternational Conference on Advanced Communication Technology, ICACT
Volume2
ISSN (Print)1738-9445

Other

Other2008 10th International Conference on Advanced Communication Technology
CountryKorea, Republic of
CityPhoenix Park
Period08/2/1708/2/20

Keywords

  • File fuzzing
  • Security testing
  • Software testing

ASJC Scopus subject areas

  • Electrical and Electronic Engineering

Fingerprint Dive into the research topics of 'Practical security testing using file fuzzing'. Together they form a unique fingerprint.

  • Cite this

    Kim, H., Choi, Y., Lee, D., & Lee, D. (2008). Practical security testing using file fuzzing. In 10th International Conference on Advanced Communication Technology, ICACT 2008 - Proceedings (pp. 1304-1307). [4494003] (International Conference on Advanced Communication Technology, ICACT; Vol. 2). https://doi.org/10.1109/ICACT.2008.4494003