Authors : Kwang-Jik Kim, Yong-Sun Ko, Jae-Pyo Park and Jong-Hee Lee
Abstract: Recently, program developed by open source tends to be utilized in various industrial fields but inexperienced developers can produce the open source code vulnerable to security such as not complying with secure coding standard or standard of programming language, etc., rather due to the advantages of open source which anyone can view, correct and distribute source code freely. In this study, it suggests the smart fuzzing tool interworked white box test and black box test in order to analyze the effective vulnerability of open source. The smart fuzzing tool was implemented as a prototype and it was found that the accuracy of the vulnerability detection was improved through the vulnerability analysis regarding the open source. It is expected that the suggested smart fuzzing tool detects the vulnerability with automated measure, more exactly and effectively and overcomes the limit which existing fuzzing system has.
Kwang-Jik Kim, Yong-Sun Ko, Jae-Pyo Park and Jong-Hee Lee, 2018. A Smart Fuzzing Tool for Vulnerability Analysis of Open Source Software. Journal of Engineering and Applied Sciences, 13: 9468-9473.