%0 Journal Article
%A JIN Guo-dong
%A WANG Yu-jiao
%A WANG Yu-long
%T An Efficient Fuzzing Test Method for SIP Servers
%D 2015
%R 10.13190/j.jbupt.2015.04.003
%J Journal of Beijing University of Posts and Telecommunications
%P 10-14
%V 38
%N 4
%X <p>An efficient fuzzing test method for session initiation protocol (SIP) servers was proposed, compared to the conventional method, the generated number of malformed SIP messages was reduced, good attacking result was produced. It establishes mappings between dangerous library functions and interfaces of the SIP server through static source code analysis. It also obtains a set of malformed SIP messages targeting those dangerous functions. Finally, it optimizes the set of malformed SIP messages by analyzing its attack effects and generating better messages through inheritance and mutation operations, and obtains the set of messages having the most notable attack effects. Experiments are carried out to verify the effectiveness of the proposed method.</p>
%U https://journal.bupt.edu.cn/EN/10.13190/j.jbupt.2015.04.003