The operating system kernel, as the core component of modern software systems, plays a pivotal role in ensuring the overall security and reliability of the system. Fuzzing, an efficient vulnerability detection method, has been widely applied in the field of kernel security. The extensive use of kernel fuzzing has significantly enhanced the kernel’s resilience against attacks. This paper presents a comprehensive and systematic review of recent research in the field of kernel fuzzing. It begins by exploring the unique characteristics and potential hazards of kernel vulnerabilities, emphasizing the critical role of fuzzing in detecting these vulnerabilities. The paper then provides a detailed examination of the fundamental concepts, technical architecture, and operational workflows of kernel fuzzing systems. It surveys existing kernel fuzzing methods, highlights the evolution and technological advancements in the field, and proposes a novel taxonomy of current approaches. Finally, the review summarizes the practical achievements of kernel fuzzing and explores promising future research directions. This survey offers a structured reference framework for researchers in the field and serves as a valuable resource for advancing kernel security testing technologies.

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

A Survey of Kernel Fuzzing

  • Wenyu Zhen,
  • Minhuan Huang,
  • Xiang Li,
  • Yuanping Nie,
  • Lang Chu,
  • Yuxian Wan

摘要

The operating system kernel, as the core component of modern software systems, plays a pivotal role in ensuring the overall security and reliability of the system. Fuzzing, an efficient vulnerability detection method, has been widely applied in the field of kernel security. The extensive use of kernel fuzzing has significantly enhanced the kernel’s resilience against attacks. This paper presents a comprehensive and systematic review of recent research in the field of kernel fuzzing. It begins by exploring the unique characteristics and potential hazards of kernel vulnerabilities, emphasizing the critical role of fuzzing in detecting these vulnerabilities. The paper then provides a detailed examination of the fundamental concepts, technical architecture, and operational workflows of kernel fuzzing systems. It surveys existing kernel fuzzing methods, highlights the evolution and technological advancements in the field, and proposes a novel taxonomy of current approaches. Finally, the review summarizes the practical achievements of kernel fuzzing and explores promising future research directions. This survey offers a structured reference framework for researchers in the field and serves as a valuable resource for advancing kernel security testing technologies.