all InfoSec news
Homo in Machina: Improving Fuzz Testing Coverage via Compartment Analysis. (arXiv:2212.11162v1 [cs.CR])
Dec. 22, 2022, 2:10 a.m. | Joshua Bundt, Andrew Fasano, Brendan Dolan-Gavitt, William Robertson, Tim Leek
cs.CR updates on arXiv.org arxiv.org
Fuzz testing is often automated, but also frequently augmented by experts who
insert themselves into the workflow in a greedy search for bugs. In this paper,
we propose Homo in Machina, or HM-fuzzing, in which analyses guide the manual
efforts, maximizing benefit. As one example of this paradigm, we introduce
compartment analysis. Compartment analysis uses a whole-program dominator
analysis to estimate the utility of reaching new code, and combines this with a
dynamic analysis indicating drastically under-covered edges guarding that …
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
KDN IAM Associate Consultant
@ KPMG India | Hyderabad, Telangana, India
Staff Test and Evaluation Engineer - Electronic Warfare
@ Anduril | Costa Mesa, California, United States
Junior Project Cybersecurity Manager
@ NXP Semiconductors | Bucharest
Embedded PSOC Analyst
@ Sibylline Ltd | London, United Kingdom