Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Towards Generic Database Management System Fuzzing

USENIX via YouTube

Overview

Explore a 12-minute conference presentation from USENIX Security '24 that introduces BUZZBEE, a groundbreaking fuzzing framework designed to test both SQL and NoSQL database management systems. Learn how researchers from Georgia Institute of Technology and Palo Alto Networks addressed key limitations in existing database testing approaches by developing generic solutions that handle dynamic constraints and generate tight data dependencies. Discover how BUZZBEE successfully identified 40 vulnerabilities across eight different database management systems, leading to 25 fixes and 4 new CVE assignments. Understand the framework's impressive performance metrics, showing up to 177% better code coverage than current generic fuzzers and finding 30 times more bugs in non-relational databases while maintaining competitive results with specialized SQL fuzzers.

Syllabus

USENIX Security '24 - Towards Generic Database Management System Fuzzing

Taught by

USENIX

Reviews

Start your review of Towards Generic Database Management System Fuzzing

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.