Improving fuzzing assessment methods through the analysis of metrics and experimental conditions
| dc.rights.license | Attribution-NonCommercial-NoDerivatives 4.0 International | * |
| dc.contributor.author | Iturbe, Mikel | |
| dc.contributor.other | Eceiza Olaizola, Maialen | |
| dc.contributor.other | Flores, José Luis | |
| dc.date.accessioned | 2022-11-17T14:16:30Z | |
| dc.date.available | 2022-11-17T14:16:30Z | |
| dc.date.issued | 2023 | |
| dc.identifier.issn | 0167-4048 | en |
| dc.identifier.other | https://katalogoa.mondragon.edu/janium-bin/janium_login_opac.pl?find&ficha_no=169706 | en |
| dc.identifier.uri | https://hdl.handle.net/20.500.11984/5858 | |
| dc.description.abstract | Fuzzing is nowadays one of the most widely used bug hunting techniques. By automatically generating malformed inputs, fuzzing aims to trigger unwanted behavior on its target. While fuzzing research has matured considerably in the last years, the evaluation and comparison of different fuzzing proposals remain challenging, as no standard set of metrics, data, or experimental conditions exist to allow such observation. This paper aims to fill that gap by proposing a standard set of features to allow such comparison. For that end, it first reviews the existing evaluation methods in the literature and discusses all existing metrics by evaluating seven fuzzers under identical experimental conditions. After examining the obtained results, it recommends a set of practices –particularly on the metrics to be used–, to allow proper comparison between different fuzzing proposals. | en |
| dc.description.sponsorship | Gobierno Vasco-Eusko Jaurlaritza | es |
| dc.description.sponsorship | Comisión Europea | es |
| dc.language.iso | eng | en |
| dc.publisher | Elsevier | en |
| dc.rights | © 2022 The Authors | en |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | * |
| dc.subject | fuzzing | en |
| dc.subject | Evaluation methodology | en |
| dc.subject | security | en |
| dc.subject | software testing | en |
| dc.subject | Metrics | en |
| dc.title | Improving fuzzing assessment methods through the analysis of metrics and experimental conditions | en |
| dcterms.accessRights | http://purl.org/coar/access_right/c_abf2 | en |
| dcterms.source | Computers & Security | en |
| local.contributor.group | Análisis de datos y ciberseguridad | es |
| local.description.peerreviewed | true | en |
| local.identifier.doi | https://doi.org/10.1016/j.cose.2022.102946 | en |
| local.relation.projectID | info:eu-repo/grantAgreement/GV/Elkartek 2021/KK-2021-00091/CAPV/REal tiME control and embeddeD securitY/REMEDY | en |
| local.relation.projectID | info:eu-repo/grantAgreement/GV/Ikertalde Convocatoria 2022-2025/IT1676-22/CAPV/Grupo de sistemas inteligentes para sistemas industriales/ | en |
| local.relation.projectID | info:eu-repo/grantAgreement/GV/Programa Bikaintek 2019/20-AF-W2-2019-00006/CAPV// | en |
| local.relation.projectID | info:eu-repo/grantAgreement/EC/H2020/No 101021911/EU/A Cognitive Detection System for Cybersecure Operational/IDUNN | en |
| local.contributor.otherinstitution | https://ror.org/03hp1m080 | es |
| local.source.details | Vol. 124. Article 102946. January, 2023 | en |
| oaire.format.mimetype | application/pdf | |
| oaire.file | $DSPACE\assetstore | |
| oaire.resourceType | http://purl.org/coar/resource_type/c_6501 | en |
| oaire.version | http://purl.org/coar/version/c_970fb48d4fbd8a85 | en |
Item honetako fitxategiak
Item hau honako bilduma honetan/hauetan agertzen da
Bestelakorik adierazi ezean, itemaren baimena horrela deskribatzen da: Attribution-NonCommercial-NoDerivatives 4.0 International
