Article

Enhancing Fuzzing Technique for OKL4 Syscalls Testing

Authors:

Amaury Gauthier,

Clement Mazin,

Julien Iguchi-Cartigny,

Jean-Louis LanetAuthors Info & Claims

ARES '11: Proceedings of the 2011 Sixth International Conference on Availability, Reliability and Security

Pages 728 - 733

https://doi.org/10.1109/ARES.2011.116

Published: 22 August 2011 Publication History

Abstract

Virtual machine monitor is a hot topic in the embedded community. Apart from high end system, current processors for embedded systems do not have any instructions helping to virtualize an operating system. Based on this fact, most of the current hyper visors for embedded devices use the Para virtualization technique. This is the case of the OKL4 kernel which is based on the L4 micro-kernel and implements among other the Linux kernel as guest OS. We introduce our ongoing work for testing the security of OKL4. We have chosen to focus on the most low level OKL4 interface usable from an external actor: the system call API. Because all operating system components use directly or indirectly these system calls, a minor flaw at this level can impact in chain the entire system including a virtualized kernel. We have developed a model describing the OKL4 system calls. This model also contains all constraints applicable to a system call. Based on these models, we are working on a tool using the constraints to compute a reduced set of system call input values which are highly likely to generate flaws in OKL4 if they are not fully checked by the hypervisor.

Cited By

View all

Liu ZChen CAhmed EZhang JLiu D(2023)WinkFuzz: Model-based Script Synthesis for FuzzingProceedings of the Third International Symposium on Advanced Security on Software and Systems10.1145/3591365.3592946(1-12)Online publication date: 10-Jul-2023
https://dl.acm.org/doi/10.1145/3591365.3592946
Moghimi DLipp MSunar BSchwarz MCapkun SRoesner F(2020)MedusaProceedings of the 29th USENIX Conference on Security Symposium10.5555/3489212.3489293(1427-1444)Online publication date: 12-Aug-2020
https://dl.acm.org/doi/10.5555/3489212.3489293
Lanet JBouder HBenattou MLegay A(2018)When time meets testInternational Journal of Information Security10.5555/3268268.326829917:4(395-409)Online publication date: 1-Aug-2018
https://dl.acm.org/doi/10.5555/3268268.3268299
Show More Cited By

Index Terms

Enhancing Fuzzing Technique for OKL4 Syscalls Testing
1. Software and its engineering
  1. Software organization and properties
    1. Contextual software domains
      1. Operating systems

Index terms have been assigned to the content through auto-classification.

Recommendations

Improving GPOS Real-Time Responsiveness Using vCPU Migration in an Embedded Multicore Virtualization Platform
CSE '13: Proceedings of the 2013 IEEE 16th International Conference on Computational Science and Engineering

In this paper, a vCPU (virtual CPU) migration mechanism in order to improve real-time responsiveness in a GPOS (General Purpose Operating System) is presented in the embedded multicore virtualization platform and can also be applied to CPS environment. ...
Transparently bridging semantic gap in CPU management for virtualized environments

Consolidated environments are progressively accommodating diverse and unpredictable workloads in conjunction with virtual desktop infrastructure and cloud computing. Unpredictable workloads, however, aggravate the semantic gap between the virtual ...
Enabling Instantaneous Relocation of Virtual Machines with a Lightweight VMM Extension
CCGRID '10: Proceedings of the 2010 10th IEEE/ACM International Conference on Cluster, Cloud and Grid Computing

We are developing an efficient resource management system with aggressive virtual machine (VM) relocation among physical nodes in a data center. Existing live migration technology, however, requires a long time to change the execution host of a VM, it ...

Comments

Information & Contributors

Information

Published In

ARES '11: Proceedings of the 2011 Sixth International Conference on Availability, Reliability and Security

August 2011

772 pages

ISBN:9780769544854

Publisher

IEEE Computer Society

United States

Publication History

Published: 22 August 2011

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

7
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 01 Sep 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Liu ZChen CAhmed EZhang JLiu D(2023)WinkFuzz: Model-based Script Synthesis for FuzzingProceedings of the Third International Symposium on Advanced Security on Software and Systems10.1145/3591365.3592946(1-12)Online publication date: 10-Jul-2023
https://dl.acm.org/doi/10.1145/3591365.3592946
Moghimi DLipp MSunar BSchwarz MCapkun SRoesner F(2020)MedusaProceedings of the 29th USENIX Conference on Security Symposium10.5555/3489212.3489293(1427-1444)Online publication date: 12-Aug-2020
https://dl.acm.org/doi/10.5555/3489212.3489293
Lanet JBouder HBenattou MLegay A(2018)When time meets testInternational Journal of Information Security10.5555/3268268.326829917:4(395-409)Online publication date: 1-Aug-2018
https://dl.acm.org/doi/10.5555/3268268.3268299
Schwarz MGruss DLipp MMaurice CSchuster TFogh AMangard SKim JAhn GKim SKim YLopez JKim T(2018)Automated Detection, Exploitation, and Elimination of Double-Fetch Bugs using Modern CPU FeaturesProceedings of the 2018 on Asia Conference on Computer and Communications Security10.1145/3196494.3196508(587-600)Online publication date: 29-May-2018
https://dl.acm.org/doi/10.1145/3196494.3196508
Han HCha SThuraisingham BEvans DMalkin TXu D(2017)IMFProceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security10.1145/3133956.3134103(2345-2358)Online publication date: 30-Oct-2017
https://dl.acm.org/doi/10.1145/3133956.3134103
Chen YSu TSun CSu ZZhao J(2016)Coverage-directed differential testing of JVM implementationsACM SIGPLAN Notices10.1145/2980983.290809551:6(85-99)Online publication date: 2-Jun-2016
https://dl.acm.org/doi/10.1145/2980983.2908095
Chen YSu TSun CSu ZZhao JKrintz CBerger E(2016)Coverage-directed differential testing of JVM implementationsProceedings of the 37th ACM SIGPLAN Conference on Programming Language Design and Implementation10.1145/2908080.2908095(85-99)Online publication date: 2-Jun-2016
https://dl.acm.org/doi/10.1145/2908080.2908095

View Options

View options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

Cited By

Index Terms

Recommendations

Improving GPOS Real-Time Responsiveness Using vCPU Migration in an Embedded Multicore Virtualization Platform

Transparently bridging semantic gap in CPU management for virtualized environments

Enabling Instantaneous Relocation of Virtual Machines with a Lightweight VMM Extension

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Get Access

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations