Learning-Based Fuzzing of IoT Message Brokers

Bernhard Aichernig; Edi Muškardin; Andrea Pferscher

Learning-Based Fuzzing of IoT Message Brokers

Bernhard Aichernig, Edi Muškardin, Andrea Pferscher

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

The number of devices in the Internet of Things (IoT) immensely grew in recent years. A frequent challenge in the assurance of the dependability of IoT systems is that components of the system appear as a black box. This paper presents a semi-automatic testing methodology for black-box systems that combines automata learning and fuzz testing. Our testing technique uses stateful fuzzing based on a model that is automatically inferred by automata learning. Applying this technique, we can simultaneously test multiple implementations for unexpected behavior and possible security vulnerabilities.We show the effectiveness of our learning-based fuzzing technique in a case study on the MQTT protocol. MQTT is a widely used publish/subscribe protocol in the IoT. Our case study reveals several inconsistencies between five different MQTT brokers. The found inconsistencies expose possible security vulnerabilities and violations of the MQTT specification.

Original language	English
Title of host publication	IEEE International Conference on Software Testing, Verification and Validation (ICST) 2021
Publication status	Accepted/In press - 11 Dec 2020
Event	2021 IEEE International Conference on Software Testing: ICST 2021 - Virtuell Duration: 12 Apr 2021 → 16 Apr 2021

Conference

Conference	2021 IEEE International Conference on Software Testing
Abbreviated title	ICST 2021
City	Virtuell
Period	12/04/21 → 16/04/21

Keywords

Internet of Things
Learning automata
Protocols
Fuzz testing
MQTT
Model inference
Model-based testing
automata learning

Fingerprint Dive into the research topics of 'Learning-Based Fuzzing of IoT Message Brokers'. Together they form a unique fingerprint.

Cite this

@inproceedings{54a50526e17548c69d0d6ca0641bf200,

title = "Learning-Based Fuzzing of IoT Message Brokers",

abstract = "The number of devices in the Internet of Things (IoT) immensely grew in recent years. A frequent challenge in the assurance of the dependability of IoT systems is that components of the system appear as a black box. This paper presents a semi-automatic testing methodology for black-box systems that combines automata learning and fuzz testing. Our testing technique uses stateful fuzzing based on a model that is automatically inferred by automata learning. Applying this technique, we can simultaneously test multiple implementations for unexpected behavior and possible security vulnerabilities.We show the effectiveness of our learning-based fuzzing technique in a case study on the MQTT protocol. MQTT is a widely used publish/subscribe protocol in the IoT. Our case study reveals several inconsistencies between five different MQTT brokers. The found inconsistencies expose possible security vulnerabilities and violations of the MQTT specification.",

keywords = "Internet of Things, Learning automata, Protocols, Fuzz testing, MQTT, Model inference, Model-based testing, automata learning",

author = "Bernhard Aichernig and Edi Muškardin and Andrea Pferscher",

year = "2020",

month = "12",

day = "11",

language = "English",

booktitle = "IEEE International Conference on Software Testing, Verification and Validation (ICST) 2021",

}

TY - GEN

T1 - Learning-Based Fuzzing of IoT Message Brokers

AU - Aichernig, Bernhard

AU - Muškardin, Edi

AU - Pferscher, Andrea

PY - 2020/12/11

Y1 - 2020/12/11

N2 - The number of devices in the Internet of Things (IoT) immensely grew in recent years. A frequent challenge in the assurance of the dependability of IoT systems is that components of the system appear as a black box. This paper presents a semi-automatic testing methodology for black-box systems that combines automata learning and fuzz testing. Our testing technique uses stateful fuzzing based on a model that is automatically inferred by automata learning. Applying this technique, we can simultaneously test multiple implementations for unexpected behavior and possible security vulnerabilities.We show the effectiveness of our learning-based fuzzing technique in a case study on the MQTT protocol. MQTT is a widely used publish/subscribe protocol in the IoT. Our case study reveals several inconsistencies between five different MQTT brokers. The found inconsistencies expose possible security vulnerabilities and violations of the MQTT specification.

AB - The number of devices in the Internet of Things (IoT) immensely grew in recent years. A frequent challenge in the assurance of the dependability of IoT systems is that components of the system appear as a black box. This paper presents a semi-automatic testing methodology for black-box systems that combines automata learning and fuzz testing. Our testing technique uses stateful fuzzing based on a model that is automatically inferred by automata learning. Applying this technique, we can simultaneously test multiple implementations for unexpected behavior and possible security vulnerabilities.We show the effectiveness of our learning-based fuzzing technique in a case study on the MQTT protocol. MQTT is a widely used publish/subscribe protocol in the IoT. Our case study reveals several inconsistencies between five different MQTT brokers. The found inconsistencies expose possible security vulnerabilities and violations of the MQTT specification.

KW - Internet of Things

KW - Learning automata

KW - Protocols

KW - Fuzz testing

KW - MQTT

KW - Model inference

KW - Model-based testing

KW - automata learning

M3 - Conference contribution

BT - IEEE International Conference on Software Testing, Verification and Validation (ICST) 2021

ER -