Corpus ID: 235352711

The Closer You Look, The More You Learn: A Grey-box Approach to Protocol State Machine Learning

@article{Stone2021TheCY,
  title={The Closer You Look, The More You Learn: A Grey-box Approach to Protocol State Machine Learning},
  author={Chris McMahon Stone and Sam L. Thomas and M. Vanhoef and James Henderson and Nicolas Bailluet and Tom Chothia},
  journal={ArXiv},
  year={2021},
  volume={abs/2106.02623}
}
In this paper, we propose a new approach to infer state machine models from protocol implementations. Our method, STATEINSPECTOR, learns protocol states by using novel program analyses to combine observations of run-time memory and I/O. It requires no access to source code and only lightweight execution monitoring of the implementation under test. We demonstrate and evaluate STATEINSPECTOR’s effectiveness on numerous TLS and WPA/2 implementations. In the process, we show STATEINSPECTOR enables… Expand

Figures and Tables from this paper

References

SHOWING 1-10 OF 37 REFERENCES
MACE: Model-inference-Assisted Concolic Exploration for Protocol and Vulnerability Discovery
Inferring OpenVPN State Machines Using Protocol State Fuzzing
A Tale of the OpenSSL State Machine: A Large-Scale Black-Box Analysis
Ijon: Exploring Deep State Spaces via Fuzzing
Protocol State Fuzzing of TLS Implementations
Pulsar: Stateful Black-Box Fuzzing of Proprietary Network Protocols
Prospex: Protocol Specification Extraction
Angora: Efficient Fuzzing by Principled Search
...
1
2
3
4
...