Write a Blog >>
ASE 2021
Sun 14 - Sat 20 November 2021 Australia
Tue 16 Nov 2021 21:40 - 21:50 at Kangaroo - Fuzzing Applications Chair(s): Thuan Pham

Comprehensive testing is of critical importance to ensure the reliability of software systems, especially for mission-critical systems such as FinTech systems. We share in this paper our observations of Ant Group’s status quo in testing their financial services. Specifically, the important influences over system execution path from both external environment settings and input object properties during automated fuzzing test process. To support these observations, we propose FinFuzzer, an automated fuzzing test framework that detects and transfers the corresponding environmental settings into system inputs, prioritizes the input object properties, and mutates system inputs on both environment settings and important object properties. We apply FinFuzzer to 4 projects developed in Ant Group, and the results show that our approach can surpass the state-of-art techniques in terms of test coverage in a much shorter time.

Tue 16 Nov

Displayed time zone: Hobart change

21:00 - 22:00
Fuzzing ApplicationsResearch Papers / Industry Showcase / Tool Demonstrations at Kangaroo
Chair(s): Thuan Pham The University of Melbourne
CorbFuzz: Checking Browser Security Policies with Fuzzing
Research Papers
Chaofan Shou University of California, Santa Barbara, Ismet Burak Kadron University of California at Santa Barbara, Qi Su University of California Santa Barbara, Tevfik Bultan University of California, Santa Barbara
SMARTIAN : Enhancing Smart Contract Fuzzing with Static and Dynamic Data-Flow Analyses
Research Papers
Jaeseung Choi KAIST, Doyeon Kim LINE Plus Corporation, Soomin Kim KAIST, Gustavo Grieco Trail of Bits, Alex Groce Northern Arizona University, Sang Kil Cha KAIST, South Korea
FinFuzzer: One Step Further in Fuzzing Fintech Systems
Industry Showcase
Qingshun Wang East China Normal University, Lihua Xu New York University Shanghai, Jun Xiao Ant Group Co. Ltd., Qi Guo Ant Group Co. Ltd., Haotian Zhang Ant Group Co. Ltd., Liang Dou East China Normal University, Liang He East China Normal University, Tao Xie Peking University
Scalable Fuzzing of Program Binaries with E9AFL
Tool Demonstrations
Xiang Gao National University of Singapore, Gregory J. Duck National University of Singapore, Abhik Roychoudhury National University of Singapore