all InfoSec news
HyPFuzz: Formal-Assisted Processor Fuzzing. (arXiv:2304.02485v1 [cs.CR])
cs.CR updates on arXiv.org arxiv.org
Recent research has shown that hardware fuzzers can effectively detect
security vulnerabilities in modern processors. However, existing hardware
fuzzers do not fuzz well the hard-to-reach design spaces. Consequently, these
fuzzers cannot effectively fuzz security-critical control- and data-flow logic
in the processors, hence missing security vulnerabilities. To tackle this
challenge, we present HyPFuzz, a hybrid fuzzer that leverages formal
verification tools to help fuzz the hard-to-reach part of the processors. To
increase the effectiveness of HyPFuzz, we perform optimizations in time …
challenge control critical data design detect effectively flow fuzz fuzzer fuzzing hard hardware hybrid logic missing processor processors research security space strategy tools under verification vulnerabilities