research-article

Noncompliance as Deviant Behavior: An Automated Black-box Noncompliance Checker for 4G LTE Cellular Devices

Authors:

Syed Rafiul Hussain,

Abdullah Al Ishtiaq,

Omar Chowdhury,

Elisa BertinoAuthors Info & Claims

CCS '21: Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security

Pages 1082 - 1099

https://doi.org/10.1145/3460120.3485388

Published: 13 November 2021 Publication History

Abstract

The paper focuses on developing an automated black-box testing approach called DIKEUE that checks 4G Long Term Evolution (LTE) control-plane protocol implementations in commercial-off-the-shelf (COTS) cellular devices (also, User Equipments or UEs) for noncompliance with the standard. Unlike prior noncompliance checking approaches which rely on property-guided testing, DIKEUE adopts a property-agnostic, differential testing approach, which leverages the existence of many different control-plane protocol implementations in COTS UEs. DIKEUE uses deviant behavior observed during differential analysis of pairwise COTS UEs as a proxy for identifying noncompliance instances. For deviant behavior identification, DIKEUE first uses black-box automata learning, specialized for 4G LTE control-plane protocols, to extract input-output finite state machine (FSM) for a given UE. It then reduces the identification of deviant behavior in two extracted FSMs as a model checking problem. We applied DIKEUE in checking noncompliance in 14 COTS UEs from 5 vendors and identified 15 new deviant behavior as well as 2 previous implementation issues. Among them, 11 are exploitable whereas 3 can cause potential interoperability issues.

Supplementary Material

MP4 File (CCS21-fp595.mp4)

Noncompliance as deviant behavior: an automated black-box noncompliance checker for 4G LTE cellular devices - presentation video, CCS 2021.

Download
1143.47 MB

References

[1]

[n. d.]. DIKEUE. https://github.com/SyNSec-den/DIKEUE.

[2]

[n. d.]. Evolved Universal T Radio Re Prot (3GPP TS 36.3 TECHNICAL SPECIFICATION 136 331 V13.0.0 (2016 LTE; l Terrestrial Radio Access (E- Resource Control (RRC).

[3]

[n. d.]. GNU Compilers. Gcov - Using the GNU Compiler Collection (GCC)).

[4]

[n. d.]. libimobiledevice A cross-platform protocol library to access iOS devices. https://github.com/libimobiledevice.

[5]

[n. d.]. LTE; Evolved Universal Terrestrial Radio Access (E-UTRA) and Evolved Packet Core (EPC); User Equipment (UE) conformance specification; Part 1: Protocol conformance specification (3GPP TS 36.523--1).

[6]

[n. d.]. srsLTE. https://github.com/srsLTE.

[7]

[n. d.]. TS 24.301 Universal Mobile Telecommunications System (UMTS); LTE; 5G; Non-Access-Stratum (NAS) protocol for Evolved Packet System (EPS); Stage 3 (3GPP TS 24.301 version 15.4.0 Release 15).

[8]

[n. d.]. TS 33.401 3GPP System Architecture Evolution (SAE).

[9]

[n. d.]. Universal Mobile Telecommunications System (UMTS); LTE; 5G; Non-Access-Stratum (NAS) protocol for Evolved Packet System (EPS); Stage 3 (3GPP TS 24.301 version 15.4.0 Release 15).

[10]

Dana Angluin. 1987. Learning regular sets from queries and counterexamples. Information and Computation 75, 2 (1987), 87 -- 106. https://doi.org/10.1016/0890--5401(87)90052--6

Digital Library

[11]

George Argyros, Ioannis Stais, Suman Jana, Angelos D. Keromytis, and Aggelos Kiayias. 2016. SFADiff: Automated Evasion Attacks and Fingerprinting Using Black-Box Differential Automata Learning. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security (Vienna, Austria) (CCS '16). Association for Computing Machinery, New York, NY, USA, 1690--1701. https://doi.org/10.1145/2976749.2978383

Digital Library

[12]

David Basin, Jannik Dreier, Lucca Hirschi, Sa?a Radomirovic, Ralf Sasse, and Vincent Stettler. 2018. A Formal Analysis of 5G Authentication. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security (Toronto, Canada) (CCS '18). Association for Computing Machinery, New York, NY, USA, 1383--1396. https://doi.org/10.1145/3243734.3243846

Digital Library

[13]

Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine Delignat-Lavaud, Cédric Fournet, Markulf Kohlweiss, Alfredo Pironti, Pierre-Yves Strub, and Jean Karim Zinzindohoue. 2015. A Messy State of the Union: Taming the Composite State Machines of TLS. In 2015 IEEE Symposium on Security and Privacy. 535--552. https://doi.org/10.1109/SP.2015.39

Digital Library

[14]

Roberto Cavada, Alessandro Cimatti, Michele Dorigatti, Alberto Griggio, Alessandro Mariotti, Andrea Micheli, Sergio Mover, Marco Roveri, and Stefano Tonetta. 2014. The nuXmv Symbolic Model Checker. In Computer Aided Verification, Armin Biere and Roderick Bloem (Eds.). Springer International Publishing, Cham, 334--342.

[15]

Merlin Chlosta, David Rupprecht, and Thorsten Holz. 2021. On the Challenges of Automata Reconstruction in LTE Networks. In Proceedings of the 14th ACM Conference on Security and Privacy in Wireless and Mobile Networks (Abu Dhabi, United Arab Emirates) (WiSec '21). Association for Computing Machinery, New York, NY, USA, 164--174. https://doi.org/10.1145/3448300.3469133

Digital Library

[16]

Merlin Chlosta, David Rupprecht, Thorsten Holz, and Christina Pöpper. 2019. LTE Security Disabled: Misconfiguration in Commercial Networks. In Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks (Miami, Florida) (WiSec '19). Association for Computing Machinery, New York, NY, USA, 261--266. https://doi.org/10.1145/3317549.3324927

Digital Library

[17]

T. S. Chow. 1978. Testing Software Design Modeled by Finite-State Machines. IEEE Transactions on Software Engineering SE-4, 3 (1978), 178--187. https://doi. org/10.1109/TSE.1978.231496

Digital Library

[18]

P. M. Comparetti, Gilbert Wondracek, C. Krügel, and E. Kirda. 2009. Prospex: Protocol Specification Extraction. 2009 30th IEEE Symposium on Security and Privacy (2009), 110--125.

[19]

C. Cremers and Martin Dehnel-Wild. 2019. Component-Based Formal Analysis of 5G-AKA: Channel Assumptions and Session Confusion. In 26th Annual Network and Distributed System Security Symposium, NDSS 2019, San Diego, CA, USA, February 24--27, 2019. https://doi.org/10.14722/ndss.2019.23394

[20]

L. Daniel, E. Poll, and J. de Ruiter. 2018. Inferring OpenVPN State Machines Using Protocol State Fuzzing. In 2018 IEEE European Symposium on Security and Privacy Workshops (EuroS PW). 11--19. https://doi.org/10.1109/EuroSPW.2018.00009

[21]

Joeri De Ruiter and Erik Poll. 2015. Protocol State Fuzzing of TLS Implementations. In Proceedings of the 24th USENIX Conference on Security Symposium (Washington, D.C.) (SEC'15). USENIX Association, USA, 193--206.

[22]

Simon Erni, Patrick Leu, Martin Kotuliak, Marc Röschlin, and Srdjan Capkun. 2021. AdaptOver : Adaptive Overshadowing of LTE signals. In https://arxiv.org/abs/2106.05039. arxiv.

[23]

CheolJun Park Insu Yun Yongdae Kim Eunsoo Kim, Dongkwan Kim. 2021. BASESPEC: Comparative Analysis of Baseband Software and Cellular Specifications for L3 Protocols. NDSS 2021 (2021). https://doi.org/10.14722/ndss.2021.24365

[24]

Robert B. Evans and Alberto Savoia. 2007. Differential Testing: A New Approach to Change Detection. In The 6th Joint Meeting on European Software Engineering Conference and the ACM SIGSOFT Symposium on the Foundations of Software Engineering: Companion Papers (Dubrovnik, Croatia) (ESEC-FSE companion '07). Association for Computing Machinery, New York, NY, USA, 549--552. https://doi.org/10.1145/1295014.1295038

Digital Library

[25]

Ramon Janssen, and Frits Vaandrager. 2016. Combining Model Learning and Model Checking to Analyze TCP Implementations. In Computer Aided Verification, Swarat Chaudhuri and Azadeh Farzan (Eds.). Springer International Publishing, Cham, 454--471.

[26]

Paul Fiterau-Brostean, Bengt Jonsson, Robert Merget, Joeri de Ruiter, Konstantinos Sagonas, and Juraj Somorovsky. 2020. Analysis of DTLS Implementations Using Protocol State Fuzzing. In 29th USENIX Security Symposium (USENIX Security . USENIX Association, 2523--2540. https://www.usenix.org/conference/usenixsecurity20/presentation/fiterau-brostean

[27]

Toon Lenaerts, Erik Poll, Joeri de Ruiter, Frits Vaandrager, and Patrick Verleg. 2017. Model Learning and Model Checking of SSH Implementations. In Proceedings of the 24th ACM SIGSOFT International SPIN Symposium on Model Checking of Software (Santa Barbara, CA, USA) (SPIN 2017). Association for Computing Machinery, New York, NY, USA, 142--151. https://doi.org/10.1145/3092282.3092289

Digital Library

[28]

Grant Hernandez and Kevin R. B. Butler. 2019. Basebads: Automated Security Analysis of Baseband Firmware: Poster. In Proceedings of the 12th Conference on Security and Privacy in Wireless and Mobile Networks (Miami, Florida) (WiSec'19). Association for Computing Machinery, New York, NY, USA, 318--319. https://doi.org/10.1145/3317549.3326310

Digital Library

[29]

Yating Hsu, Guoqiang Shu, and David Lee. 2008. A model-based approach to security flaw detection of network protocol implementations. In 2008 IEEE International Conference on Network Protocols. 114--123. https://doi.org/10.1109/ICNP.2008.4697030

Digital Library

[30]

Syed Rafiul Hussain, Omar Chowdhury, Shagufta Mehnaz, and Elisa Bertino. 2018. LTEInspector: A Systematic Approach for Adversarial Testing of 4G LTE. In 25th Annual Network and Distributed System Security Symposium, NDSS 2018, San Diego, California, USA, February 18--21, 2018. The Internet Society. https://www.ndss-symposium.org/wp-content/uploads/2018/02/ndss2018_02A-3_Hussain_paper.pdf

[31]

Syed Rafiul Hussain, Mitziu Echeverria, Omar Chowdhury, Ninghui Li, and Elisa Bertino. 2019. Privacy Attacks to the 4G and 5G Cellular Paging Protocols Using Side Channel Information. In 26th Annual Network and Distributed System Security Symposium, NDSS 2019, San Diego, California, USA, February 24--27, 2019. The Internet Society. https://www.ndss-symposium.org/wp-content/uploads/2019/02/ndss2019_05B-5_Hussain_paper.pdf

[32]

Syed Rafiul Hussain, Mitziu Echeverria, Imtiaz Karim, Omar Chowdhury, and Elisa Bertino. 2019. 5GReasoner: A Property-Directed Security and Privacy Analysis Framework for 5G Cellular Network Protocol. In Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security (London, United Kingdom) (CCS '19). Association for Computing Machinery, New York, NY, USA, 669--684. https://doi.org/10.1145/3319535.3354263

Digital Library

[33]

Malte Isberner. 2015. Foundations of active automata learning: an algorithmic perspective. Ph.D. Dissertation.

[34]

Malte Isberner, Falk Howar, and Bernhard Steffen. 2014. The TTT Algorithm: A Redundancy-Free Approach to Active Automata Learning. In Runtime Verification, Borzoo Bonakdarpour and Scott A. Smolka (Eds.). Springer International Publishing, Cham, 307--322.

[35]

Malte Isberner, Falk Howar, and Bernhard Steffen. 2015. The Open-Source Learn- Lib. In Computer Aided Verification, Daniel Kroening and Corina S. P's?reanu (Eds.). Springer International Publishing, Cham, 487--495.

[36]

Imtiaz Karim, Fabrizio Cicala, Syed Rafiul Hussain, Omar Chowdhury, and Elisa Bertino. 2019. Opening Pandora's Box through ATFuzzer: Dynamic Analysis of AT Interface for Android Smartphones. In Proceedings of the 35th Annual Computer Security Applications Conference (San Juan, Puerto Rico, USA) (ACSAC '19). Association for Computing Machinery, New York, NY, USA, 529--543. https://doi.org/10.1145/3359789.3359833

Digital Library

[37]

Imtiaz Karim, Syed Hussain, and Elisa Bertino. 2021. ProChecker: An Automated Security and Privacy Analysis Framework for 4G LTE Protocol Implementations. In Proceedings of the 41st IEEE International Conference on Distributed Computing Systems, ICDCS 2021.

[38]

Hongil Kim, Dongkwan Kim, Minhee Kwon, Hyungseok Han, Yeongjin Jang, Dongsu Han, Taesoo Kim, and Yongdae Kim. 2015. Breaking and Fixing VoLTE: Exploiting Hidden Data Channels and Mis-Implementations. In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (Denver, Colorado, USA) (CCS '15). Association for Computing Machinery, New York, NY, USA, 328--339. https://doi.org/10.1145/2810103.2813718

Digital Library

[39]

Hongil Kim, Jiho Lee, Eunkyu Lee, and Yongdae Kim. 2019. Touching the Untouchables: Dynamic Security Analysis of the LTE Control Plane. In 2019 IEEE Symposium on Security and Privacy (SP). 1153--1168. https://doi.org/10.1109/SP.2019.00038

[40]

Chi-Yu Li, Guan-Hua Tu, Chunyi Peng, Zengwen Yuan, Yuanjie Li, Songwu Lu, and Xinbing Wang. 2015. Insecurity of Voice Solution VoLTE in LTE Mobile Networks. In Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security (Denver, Colorado, USA) (CCS '15). Association for Computing Machinery, New York, NY, USA, 316--327. https://doi.org/10.1145/2810103.2813618

Digital Library

[41]

Dominik Maier, Lukas Seidel, and Shinjo Park. 2020. BaseSAFE: Baseband Sanitized Fuzzing through Emulation. In Proceedings of the 13th ACM Conference on Security and Privacy in Wireless and Mobile Networks (Linz, Austria) (WiSec '20). Association for Computing Machinery, New York, NY, USA, 122--132. https://doi.org/10.1145/3395351.3399360

Digital Library

[42]

William M. McKeeman. 1998. Differential Testing for Software. DIGITAL TECHNICAL JOURNAL 10, 1 (1998), 100--107.

[43]

Chris McMahon Stone, Tom Chothia, and Joeri de Ruiter. 2018. Extending Automated Protocol State Learning for the 802.11 4-Way Handshake. In Computer Security, Javier Lopez, Jianying Zhou, and Miguel Soriano (Eds.). Springer International Publishing, Cham, 325--345.

[44]

Soo-Jin Moon, Jeffrey Helt, Yifei Yuan, Yves Bieri, Sujata Banerjee, Vyas Sekar, Wenfei Wu, Mihalis Yannakakis, and Ying Zhang. 2019. Alembic: Automated Model Inference for Stateful Network Functions. In Proceedings of the 16th USENIX Conference on Networked Systems Design and Implementation (Boston, MA, USA) (NSDI'19). USENIX Association, USA, 699--718.

[45]

Harald Raffelt, Bernhard Steffen, and Margaria Tiziana. 2007. Dynamic Testing Via Automata Learning. 136--152. https://doi.org/10.1007/978--3--540--77966--7_13

[46]

Abdullah Rasool, Greg Alpár, and Joeri de Ruiter. 2019. State machine inference of QUIC. CoRR abs/1903.04384 (2019). arXiv:1903.04384 http://arxiv.org/abs/1903.04384

[47]

David Rupprecht, Kai Jansen, and Christina Pöpper. 2016. Putting LTE Security Functions to the Test: A Framework to Evaluate Implementation Correctness. In Proceedings of the 10th USENIX Conference on Offensive Technologies (Austin, (WOOT'16). USENIX Association, USA, 40--51.

[48]

David Rupprecht, Katharina Kohls, Thorsten Holz, and Christina Pöpper. 2020. Call Me Maybe: Eavesdropping Encrypted LTE Calls With ReVoLTE. In USENIX Security Symposium (SSYM). USENIX Association.

[49]

David Rupprecht, Katharina Kohls, Thorsten Holz, and Christina Pöpper. 2019. Breaking LTE on Layer Two. In 2019 IEEE Symposium on Security and Privacy (SP). 1121--1136. https://doi.org/10.1109/SP.2019.00006

[50]

Muzammil Shahbaz and Roland Groz. 2009. Inferring Mealy Machines. In FM 2009: Formal Methods, Ana Cavalcanti and Dennis R. Dams (Eds.). Springer Berlin Heidelberg, Berlin, Heidelberg, 207--222.

[51]

Altaf Shaik, Jean-Pierre Seifert, Ravishankar Borgaonkar, N. Asokan, and Valtteri Niemi. 2016. Practical Attacks Against Privacy and Availability in 4G/LTE Mobile Communication Systems. In 23rd Annual Network and Distributed System Security Symposium, NDSS 2016, San Diego, California, USA, February 21--24, 2016. The Internet Society.

[52]

Suphannee Sivakorn, George Argyros, Kexin Pei, Angelos D. Keromytis, and Suman Jana. 2017. HVLearn: Automated Black-Box Analysis of Hostname Verification in SSL/TLS Implementations. In 2017 IEEE Symposium on Security and Privacy (SP). 521--538. https://doi.org/10.1109/SP.2017.46

[53]

M. Tappler, B. K. Aichernig, and R. Bloem. 2017. Model-Based Testing IoT Communication via Active Automata Learning. In 2017 IEEE International Conference on Software Testing, Verification and Validation (ICST). 276--287. https://doi.org/10.1109/ICST.2017.32

[54]

Mark Utting and Bruno Legeard. 2006. Practical Model-Based Testing: A Tools Approach. Morgan Kaufmann Publishers Inc., San Francisco, CA, USA.

Digital Library

[55]

Frits Vaandrager. 2017. Model Learning. Commun. ACM 60, 2 (Jan. 2017), 86--95. https://doi.org/10.1145/2967606

Digital Library

Cited By

Zhao DGuo JGu CZheng YZhang X(2025)AGLFuzz: Automata-Guided Fuzzing for detecting logic errors in security protocol implementationsComputers & Security10.1016/j.cose.2024.103979149(103979)Online publication date: Feb-2025
https://doi.org/10.1016/j.cose.2024.103979
Tu KAl Ishtiaq ARashid SDong YWang WWu THussain SBalzarotti DXu W(2024)Logic gone astrayProceedings of the 33rd USENIX Conference on Security Symposium10.5555/3698900.3699072(3063-3080)Online publication date: 14-Aug-2024
https://dl.acm.org/doi/10.5555/3698900.3699072
Arreche OGuntur TAbdallah M(2024)XAI-IDS: Toward Proposing an Explainable Artificial Intelligence Framework for Enhancing Network Intrusion Detection SystemsApplied Sciences10.3390/app1410417014:10(4170)Online publication date: 14-May-2024
https://doi.org/10.3390/app14104170
Show More Cited By

Index Terms

Noncompliance as Deviant Behavior: An Automated Black-box Noncompliance Checker for 4G LTE Cellular Devices
1. Networks
  1. Network protocols
    1. Protocol correctness
      1. Protocol testing and verification
2. Security and privacy
  1. Network security
    1. Mobile and wireless security

Recommendations

Analyses of ping-pong handovers in real 4G telecommunication networks
Abstract
The last decade has been characterized by a rapid increase in the usage of mobile communications. One of the main aspects of mobile communications is mobility. This means that mobile phones have to switch between base station cells in order to ...
IP Multimedia Relay Architectures with Multi-RAT Support in LTE-Advanced Wireless Network
AMS '13: Proceedings of the 2013 7th Asia Modelling Symposium

LTE/LTE-Advanced is the competing leader of access network technology in 4G wireless networks. LTE is one of 3GPP standards, and furthermore LTE and LTE-Advanced are developed by 3GPP which are organized by telecommunication manufacturers and operators. ...
Handover Enhancement in LTE-advanced Relay Networks
IS3C '12: Proceedings of the 2012 International Symposium on Computer, Consumer and Control

LTE and IEEE 802.16 WiMAX are competing access network technologies in 4G wireless networks. LTE is one of 3GPP standards while 802.16 WiMAX is standardized by IEEE. Although WiMAX already commercially operates in Taiwan, it is limited to the ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

CCS '21: Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security

November 2021

3558 pages

ISBN:9781450384544

DOI:10.1145/3460120

General Chairs:
Yongdae Kim
KAIST, Republic of Korea
,
Jong Kim
POSTECH, Republic of Korea
,
Program Chairs:
Giovanni Vigna
University of California, Santa Barbara / VMware, USA
,
Elaine Shi
Carnegie Mellon University, USA

Copyright © 2021 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 13 November 2021

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

DARPA YFA
NSF IIS
Intel Corporation
NSF CNS

Conference

CCS '21

Sponsor:

SIGSAC

CCS '21: 2021 ACM SIGSAC Conference on Computer and Communications Security

November 15 - 19, 2021

Virtual Event, Republic of Korea

Acceptance Rates

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

16
Total Citations
View Citations
906
Total Downloads

Downloads (Last 12 months)221
Downloads (Last 6 weeks)23

Reflects downloads up to 20 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Zhao DGuo JGu CZheng YZhang X(2025)AGLFuzz: Automata-Guided Fuzzing for detecting logic errors in security protocol implementationsComputers & Security10.1016/j.cose.2024.103979149(103979)Online publication date: Feb-2025
https://doi.org/10.1016/j.cose.2024.103979
Tu KAl Ishtiaq ARashid SDong YWang WWu THussain SBalzarotti DXu W(2024)Logic gone astrayProceedings of the 33rd USENIX Conference on Security Symposium10.5555/3698900.3699072(3063-3080)Online publication date: 14-Aug-2024
https://dl.acm.org/doi/10.5555/3698900.3699072
Arreche OGuntur TAbdallah M(2024)XAI-IDS: Toward Proposing an Explainable Artificial Intelligence Framework for Enhancing Network Intrusion Detection SystemsApplied Sciences10.3390/app1410417014:10(4170)Online publication date: 14-May-2024
https://doi.org/10.3390/app14104170
Zhang XZhang CLi XDu ZMao BLi YZheng YLi YPan LLiu YDeng R(2024)A Survey of Protocol FuzzingACM Computing Surveys10.1145/369678857:2(1-36)Online publication date: 10-Oct-2024
https://dl.acm.org/doi/10.1145/3696788
Li WWen HLin ZLuo BLiao XXu JKirda ELie D(2024)BaseMirror: Automatic Reverse Engineering of Baseband Commands from Android's Radio Interface LayerProceedings of the 2024 on ACM SIGSAC Conference on Computer and Communications Security10.1145/3658644.3690254(2311-2325)Online publication date: 2-Dec-2024
https://dl.acm.org/doi/10.1145/3658644.3690254
Fiterău-Broştean PJonsson BSagonas KTåquist FChristakis MPradel M(2024)SMBugFinder: An Automated Framework for Testing Protocol Implementations for State Machine BugsProceedings of the 33rd ACM SIGSOFT International Symposium on Software Testing and Analysis10.1145/3650212.3685310(1866-1870)Online publication date: 11-Sep-2024
https://dl.acm.org/doi/10.1145/3650212.3685310
Hu YChen MYan HCheng CTu GLi CXie TPeng CXiao LTang JGanesan DLane NShi W(2024)Uncovering Problematic Designs Hindering Ubiquitous Cellular Emergency Services AccessProceedings of the 30th Annual International Conference on Mobile Computing and Networking10.1145/3636534.3690704(1455-1469)Online publication date: 4-Dec-2024
https://dl.acm.org/doi/10.1145/3636534.3690704
Moon SSrivastava MBieri YMartins RSekar V(2024)Pryde: A Modular Generalizable Workflow for Uncovering Evasion Attacks Against Stateful Firewall Deployments2024 IEEE Symposium on Security and Privacy (SP)10.1109/SP54263.2024.00144(4440-4458)Online publication date: 19-May-2024
https://doi.org/10.1109/SP54263.2024.00144
Ammann MHirschi LKremer S(2024)DY Fuzzing: Formal Dolev-Yao Models Meet Cryptographic Protocol Fuzz Testing2024 IEEE Symposium on Security and Privacy (SP)10.1109/SP54263.2024.00096(1481-1499)Online publication date: 19-May-2024
https://doi.org/10.1109/SP54263.2024.00096
Arreche OBibers IAbdallah M(2024)A Two-Level Ensemble Learning Framework for Enhancing Network Intrusion Detection SystemsIEEE Access10.1109/ACCESS.2024.340702912(83830-83857)Online publication date: 2024
https://doi.org/10.1109/ACCESS.2024.3407029
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten