Fuzzing has become the major technique to find vulnerabilities in software and has seen a recent explosion in research activity. We will discuss the origins of fuzzing and the major events that lead to this proliferation: from the “DARPA Cyber Grand Challenge” and “American Fuzzy Lop” seed events to the explosion of fuzzers that target hundreds of open source projects. Then, we’ll gradually ease into highlighting key research areas in software engineering and security such as coverage metrics, intelligent mutation operators, scheduling, seed selection, or different forms of feedback. In addition, we welcome interactivity and questions from the audience throughout.
Expert Profiles:
- Marcel Böhme: https://mboehme.github.io
- Mathias Payer: https://nebelwelt.net
Fri 16 JulDisplayed time zone: Brussels, Copenhagen, Madrid, Paris change
11:20 - 12:00 | FuzzingDiscussions with Experts at Discussions with Experts (room 3) Chair(s): Marcel Böhme Monash University, Mathias Payer EPFL Fuzzing has become the major technique to find vulnerabilities in software and has seen a recent explosion in research activity. We will discuss the origins of fuzzing and the major events that lead to this proliferation: from the “DARPA Cyber Grand Challenge” and “American Fuzzy Lop” seed events to the explosion of fuzzers that target hundreds of open source projects. Then, we’ll gradually ease into highlighting key research areas in software engineering and security such as coverage metrics, intelligent mutation operators, scheduling, seed selection, or different forms of feedback. In addition, we welcome interactivity and questions from the audience throughout. | ||
11:20 40mPanel | Fuzzing Discussions with Experts | ||