计算机工程与应用2024,Vol.60Issue(20):284-292,9.DOI:10.3778/j.issn.1002-8331.2307-0199
基于强化学习多算法组合模型的智能化模糊测试技术
Intelligent Fuzzing Technology Based on Combination Model of Multiple Reinforcement Learning Algorithms
摘要
Abstract
With the development of Internet of things technology,intelligent terminals of the Internet of things have gained popularity.At present,there are many security vulnerabilities in the firmware of the Internet of things terminal,and it is very inconvenient to use manual methods to detect the vulnerabilities of the Internet of things terminal equipment.The intelligent fuzzing technology based on genetic algorithms is mainly used,and the firmware to be tested is automati-cally tested using random variation data.Aiming at the low efficiency of the existing fuzzing technology based on genetic algorithms,this paper proposes an intelligent fuzzing model based on multiple reinforcement learning algorithms.In this model,reinforcement learning algorithms are used to optimize the mutation operator selection strategy of fuzzing and the code coverage of fuzzing is improved by intelligently selecting different mutation operators for different test cases.This paper compares the performance of DDQN,DDPG,TRPO,and PPO algorithms in the model through comparative experi-ments on LAVA datasets and traditional fuzzing methods.The results show that in the fuzzing environment,there are sig-nificant differences in the performance of different algorithms for different target programs and the fuzzing method based on reinforcement learning is obviously superior to the traditional fuzzing method,proving the proposed model's availability and effectiveness.关键词
物联网终端/强化学习/模糊测试/漏洞发现Key words
Internet of things terminal/reinforcement learning/fuzzing/vulnerability discovery分类
信息技术与安全科学引用本文复制引用
许爱东,徐培明,尚进,孙钦东..基于强化学习多算法组合模型的智能化模糊测试技术[J].计算机工程与应用,2024,60(20):284-292,9.基金项目
广东省电力系统网络安全企业重点实验室开放基金(2021-78). (2021-78)
