Explore a novel approach to IoT device security testing in this 14-minute IEEE conference talk. Delve into DIANE, a system designed to identify fuzzing triggers in companion apps for generating under-constrained inputs for IoT devices. Learn about traditional fuzzing methods, the role of companion apps, and how DIANE leverages send message and data transforming functions. Discover techniques for identifying fuzzing triggers, implementing fuzzing monitoring, and understand the evaluation process for this innovative security testing methodology.
Overview
Syllabus
Introduction
Traditional Fuzzing Methods
Companion Apps
DIANE
Send Message Functions
Data Transforming Functions
Identifying Fuzzing Triggers
Fuzzing Monitoring
Evaluation
Taught by
IEEE Symposium on Security and Privacy