Litcius/Paper detail

USBFuzz: A Framework for Fuzzing {USB} Drivers by Device Emulation

Hui Peng, Mathias Payer

2020Infoscience (Ecole Polytechnique Fédérale de Lausanne)28 citationsOpen Access PDF

Abstract

The Universal Serial Bus (USB) connects external devices to a host. This interface exposes the OS kernels and device drivers to attacks by malicious devices. Unfortunately, kernels and drivers were developed under a security model that implicitly trusts connected devices. Drivers expect faulty hardware but not malicious attacks. Similarly, security testing drivers is challenging as input must cross the hardware/software barrier. Fuzzing, the most widely used bug finding technique, relies on providing random data to programs. However, fuzzing device drivers is challenging due to the difficulty in crossing the hardware/software barrier and providing random device data to the driver under test.

Topics & Concepts

Fuzz testingEmulationUSBComputer scienceEmbedded systemOperating systemSoftwareEconomicsEconomic growthInteractive and Immersive DisplaysAdvanced Malware Detection TechniquesEmbedded Systems Design Techniques