SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations
The security assurance of SSL/TLS critically depends on the correct validation of X.509 certificates. Therefore, it is important to check whether a certificate is correctly validated by the SSL/TLS implementations. Although differential testing has been proven to be effective in finding semantic bug...
Saved in:
| Main Authors: | , , , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2020
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/7114 https://ink.library.smu.edu.sg/context/sis_research/article/8117/viewcontent/3324884.3416552.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-8117 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-81172022-04-14T11:42:29Z SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations QUAN, Lili GUO, Qianyu CHEN, Hongxu XIE, Xiaofei LI, Xiaohong LIU, Yang HU, Jing The security assurance of SSL/TLS critically depends on the correct validation of X.509 certificates. Therefore, it is important to check whether a certificate is correctly validated by the SSL/TLS implementations. Although differential testing has been proven to be effective in finding semantic bugs, it still suffers from the following limitations: (1) The syntax of test cases cannot be correctly guaranteed. (2) Current test cases are not diverse enough to cover more implementation behaviours. This paper tackles these problems by introducing SADT, a novel syntax-aware differential testing framework for evaluating the certificate validation process in SSL/TLS implementations. We first propose a tree-based mutation strategy to ensure that the generated certificates are syntactically correct, and then diversify the certificates by sharing interesting test cases among all target SSL/TLS implementations. Such generated certificates are more likely to trigger discrepancies among SSL/TLS implementations, which may indicate some potential bugs.To evaluate the effectiveness of our approach, we applied SADT on testing 6 widely used SSL/TLS implementations, compared with the state-of-the-art fuzzing technique (i.e., AFL) and two differential testing techniques (i.e., NEZHA and RFCcert). The results show that SADT outperforms other techniques in generating discrepancies. In total, 64 unique discrepancies were discovered by SADT, and 13 of them have been confirmed as bugs or fixed by the developers. 2020-12-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/7114 info:doi/10.1145/3324884.3416552 https://ink.library.smu.edu.sg/context/sis_research/article/8117/viewcontent/3324884.3416552.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Differential testing Certificate validation SSL/TLS Implementation OS and Networks Software Engineering |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Differential testing Certificate validation SSL/TLS Implementation OS and Networks Software Engineering |
| spellingShingle |
Differential testing Certificate validation SSL/TLS Implementation OS and Networks Software Engineering QUAN, Lili GUO, Qianyu CHEN, Hongxu XIE, Xiaofei LI, Xiaohong LIU, Yang HU, Jing SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations |
| description |
The security assurance of SSL/TLS critically depends on the correct validation of X.509 certificates. Therefore, it is important to check whether a certificate is correctly validated by the SSL/TLS implementations. Although differential testing has been proven to be effective in finding semantic bugs, it still suffers from the following limitations: (1) The syntax of test cases cannot be correctly guaranteed. (2) Current test cases are not diverse enough to cover more implementation behaviours. This paper tackles these problems by introducing SADT, a novel syntax-aware differential testing framework for evaluating the certificate validation process in SSL/TLS implementations. We first propose a tree-based mutation strategy to ensure that the generated certificates are syntactically correct, and then diversify the certificates by sharing interesting test cases among all target SSL/TLS implementations. Such generated certificates are more likely to trigger discrepancies among SSL/TLS implementations, which may indicate some potential bugs.To evaluate the effectiveness of our approach, we applied SADT on testing 6 widely used SSL/TLS implementations, compared with the state-of-the-art fuzzing technique (i.e., AFL) and two differential testing techniques (i.e., NEZHA and RFCcert). The results show that SADT outperforms other techniques in generating discrepancies. In total, 64 unique discrepancies were discovered by SADT, and 13 of them have been confirmed as bugs or fixed by the developers. |
| format |
text |
| author |
QUAN, Lili GUO, Qianyu CHEN, Hongxu XIE, Xiaofei LI, Xiaohong LIU, Yang HU, Jing |
| author_facet |
QUAN, Lili GUO, Qianyu CHEN, Hongxu XIE, Xiaofei LI, Xiaohong LIU, Yang HU, Jing |
| author_sort |
QUAN, Lili |
| title |
SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations |
| title_short |
SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations |
| title_full |
SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations |
| title_fullStr |
SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations |
| title_full_unstemmed |
SADT: Syntax-aware differential testing of certificate validation in SSL/TLS Implementations |
| title_sort |
sadt: syntax-aware differential testing of certificate validation in ssl/tls implementations |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2020 |
| url |
https://ink.library.smu.edu.sg/sis_research/7114 https://ink.library.smu.edu.sg/context/sis_research/article/8117/viewcontent/3324884.3416552.pdf |
| _version_ |
1770576215056318464 |