摘要
低功耗蓝牙(Bluetooth Low Energy,BLE)协议的安全问题成为近年来无线通信领域中的研究热点。在协议帧格式复杂的情况下,基于状态机模型的BLE协议黑盒测试难免会出现测试效率低且大量输入数据被待测设备拒绝处理的情况。本文对不同类型字段采取更具针对性的变异方法,运用基于权重的反馈优化策略,为产生严重测试结果的变异策略设置更高的权值。实验结果表明,在选取的已披露漏洞的14台蓝牙设备中,该方法的漏洞检出率为93.7%,高于现有的BLE测试框架,并将状态机模型覆盖率从51.6%提升至84%,使输入有效率从66%提升至91%。
The security of the BLE protocol has become a research hotspot in the field of wireless communication in recent years.In the case of complex protocol frame format,the black box test of BLE protocol based on the state machine model will inevitably have low test efficiency and a large amount of input data will be rejected by the device under test.This paper adopts a more targeted mutation method for different types of fields,and uses a weight-based feedback optimization strategy to set higher weights for mutation strategies that produce severe test results.The experimental results show that among the selected 14 Bluetooth devices with disclosed vulnerabilities,the vulnerability detection rate of this method is 93.7%,which is higher than the existing BLE test framework,and the coverage rate of the state machine model is increased from 51.6%to 84%.%,increasing the input efficiency from 66%to 91%.
作者
关晓彤
GUAN Xiaotong(School of Computer Science,Nanjing University of Posts and Telecommunications,Nanjing Jiangsu 210003)
出处
《软件》
2023年第4期107-111,共5页
Software
