Formal-Guided Fuzz Testing: Targeting Security Assurance from Specification to Implementation for 5G and Beyond. (arXiv:2307.11247v1 [cs.CR])

Softwarization and virtualization in 5G and beyond necessitate thorough
testing to ensure the security of critical infrastructure and networks,
requiring the identification of vulnerabilities and unintended emergent
behaviors from protocol designs to their software stack implementation. To
provide an efficient and comprehensive solution, we propose a novel and
first-of-its-kind approach that connects the strengths and coverage of formal
and fuzzing methods to efficiently detect vulnerabilities across protocol logic
and implementation stacks in a hierarchical manner. We design and implement
formal …

assurance beyond critical critical infrastructure fuzz fuzz testing identification implementation infrastructure networks protocol security security assurance software solution stack targeting testing virtualization vulnerabilities