FIRM-AFL: High-Throughput Greybox Fuzzing of IoT Firmware via Augmented Process Emulation
Ali Davanian, University of California, Riverside
Cyber attacks against IoT devices are a severe threat. These attacks exploit software vulnerabilities in IoT firmware. Fuzzing is an effective software testing technique for finding these vulnerabilities so they can be patched. In this work, we present FIRM-AFL, the first high-throughput greybox fuzzer for IoT firmware. FIRM-AFL addresses two fundamental problems in IoT fuzzing. First, it addresses compatibility issues by enabling fuzzing for POSIX-compatible firmware that can be emulated in a system emulator. Second, it addresses the performance bottleneck caused by system-mode emulation with a novel technique called augmented process emulation. By integrating system-mode emulation and usermode emulation, augmented process emulation provides high compatibility as system-mode emulation and high throughput as user-mode emulation. Our evaluation results show that (1)FIRM-AFL is fully functional and capable of finding real world vulnerabilities in IoT programs and (2) the throughput of FIRM-AFL is on average 10 times higher than system-mode emulation based fuzzing; and (3) FIRM-AFL is able to find 1-day vulnerabilities much faster than system-mode emulation based fuzzing, and is able to find 0-day vulnerabilities.
View the full USENIX Security ’19 program at https://www.usenix.org/conference/usenixsecurity19/technical-sessions
Related Post:
- USENIX Security '19 – All Things Considered: An Analysis of IoT Devices on Home Networks
- Cloud AI, Augmented Reality, IoT Come Alive with 5G Low Latency, High Throughput
- ⭐️ EOS R / RP – Ein weiterer Augen-Autofokus Firmware-Update Test? (Canon Firmware 1.4 und 1.3)
- IoT Security: Backdooring a smart camera by creating a malicious firmware upgrade
- Ripple/XRP News: Increasing Speed, Scalability, & Throughput
- IOT CHAIN (ITC) COIN 10X Potential – A HIGH-SECURITY LITE IoT OS – RICH TV LIVE
- A HIGH-SECURITY LITE IoT OS | IoT CHAIN REVIEW!
- Is IOT CHAIN (ITC) a Buy? A High-Security LITE IoT OS – RICH TV LIVE
- A HIGH-SECURITY LITE IoT OS | IoT Chain ITC Review
- IoT Chain – A HIGH-SECURITY LITE IoT OS