350 rub
Journal Radioengineering №2 for 2024 г.
Article in number:
Approach to fuzzing testing of network interfaces of Linux family operating systems using hardware virtualization technology
Type of article: scientific article
DOI: https://doi.org/10.18127/j00338486-202402-07
UDC: 004.056
Keywords: Fuzzing cybersecurity network stack hardware virtualization Linux
Authors:

N.N. Samarin, N.D. Krotov

Abstract:

The purpose of this research is to create a new approach to fuzzing testing of network interfaces of Linux family operating systems.  The relevance of the research is due to the growing number of network attacks, the prevalence of Linux family operating systems on server hardware, and their use in the construction of cloud computing systems. According to data as of November 2021, among all web servers whose operating system is known, 38.9% use Linux family operating systems. In this work, the architecture and implementation of the Linux kernel networking stack are investigated. Current research in the field of Linux kernel security is analyzed.

Pages: 45-52
For citation

Samarin N.N., Krotov N.D. Approach to fuzzing testing of network interfaces of Linux family operating systems using hardware virtualization technology. Radiotekhnika. 2024. V. 88. № 2. P. 45−52. DOI: https://doi.org/10.18127/j00338486-202402-07 (In Russian)

References
  1. Aktual'nye kiberugrozy: I kvartal 2021 goda fuzzer [Jelektronnyj resurs]. URL: https://www.ptsecurity.com/ru-ru/research/ana-lytics/cybersecurity-threatscape-2021-q1/. (data obrashhenija: 03.10.2023) (in Russian).
  2. Seth S., Venkatesulu M.A. TCP/IP architecture, design and implementation in Linux. New York. NY, USA: Wiley. 2008.
  3. Networking Stack [Jelektronnyj resurs]. URL: https://www.sciencedirect.com/topics/computer-science/networking-stack. (data obrashhenija: 03.10.2023).
  4. Linux networking stack from the ground up [Jelektronnyj resurs]. URL: https://www.privateinternetaccess.com/blog/linux-net-working-stack-from-the-ground-up-part-1/. (data obrashhenija: 03.10.2023).
  5. Anatomy of the Linux network stack: From socket to device driver [Jelektronnyj resurs]. URL: https://programmer-sought.com/article/80461736380/. (data obrashhenija: 03.10.2023).
  6. Krasnyansky M., Yevmenkin M. Universal TUN/TAP device driver //URL: http://www. kernel. org/pub/linux/kernel/, FILE: people/marcelo/linux-2.4/Documentation/networking/tuntap. txt. 2007.
  7. Lu K., et al. Unleashing Use-Before-Initialization Vulnerabilities in the Linux Kernel Using Targeted Stack Spraying. NDSS. 2017.
  8. Tan Z., Lu H. A Systemic Review of Kernel Fuzzing //Proceedings of the 2020 International Conference on Cyberspace Innovation of Advanced Technologies. 2020. Р. 283-289.
  9. Shi H., et al. Industry practice of coverage-guided enterprise linux kernel fuzzing. Proceedings of the 2019 27th ACM Joint Meeting on European Software Engineering Conference and Symposium on the Foundations of Software Engineering. 2019. С. 986-995.
  10. Kim K., et al. HFL: Hybrid Fuzzing on the Linux Kernel. NDSS. 2020.
  11. Pailoor S., Aday A., Jana S. Moonshine: Optimizing {OS} fuzzer seed selection with trace distillation //2 7th {USENIX} Security Symposium ({USENIX} Security 18). 2018. Р. 729-743.
  12. Li D., Chen H. FastSyzkaller: Improving fuzz efficiency for linux kernel fuzzing. Journal of Physics: Conference Series. IOP Publishing. 2019. V. 1176. № 2. Р. 022013.
  13. Schumilo S., et al. Nyx-Net: Network Fuzzing with Incremental Snapshots //arXiv preprint arXiv:2111.03013. 2021.
  14. Aschermann C., et al. Ijon: Exploring deep state spaces via fuzzing. 2020 IEEE Symposium on Security and Privacy (SP). IEEE, 2020. Р. 1597-1612.
  15. Song D., et al. Agamotto: Accelerating kernel driver fuzzing with lightweight virtual machine checkpoints. 29th {USENIX} Security Symposium ({USENIX} Security 20). 2020. Р. 2541-2557.
  16. Schumilo S., et al. HYPER-CUBE: High-Dimensional Hypervisor Fuzzing. NDSS. 2020.
  17. Pan J., Yan G., Fan X. Digtool: A virtualization-based framework for detecting kernel vulnerabilities. 26th {USENIX} Security Symposium ({USENIX} Security 17). 2017. Р. 149-165.
  18. Schumilo S., et al. kafl: Hardware-assisted feedback fuzzing for {OS} kernels //26th {USENIX} Security Symposium ({USENIX} Security 17). 2017. Р. 167-182.
  19. Carabas C., Carabas M. Fuzzing the Linux kernel. 2017 Computing Conference. IEEE. 2017. Р. 839-843.
  20. Dukhan Ye.I., Voyevodin S.V., Sazonov V.Yu., Zvezhinskiy S.S. Obobshchennaya metodika izmereniya kharakteristik kharakteristik obnaruzheniya na osnove metoda mashinnogo eksperimenta. Radiotekhnika. T.86. № 1. 2022. S. 41-48. DOI: https://doi.org/10.18127/j00338-486-202201-07.
Date of receipt: 26.12.2023
Approved after review: 10.01.2024
Accepted for publication: 29.01.2024