The kernel is the core of any operating system, and its security is of vital importance. A vulnerability, in any of its parts, compromises the whole system security model. Unprivileged users that find such vulnerabilities can easily crash the attacked system, or obtain administration privi- leges. In this paper we propose LynxFuzzer, a framework to test kernel extensions, i.e., the dynamically loadable com- ponents of Mac OS X kernel. To overcome the challenges posed by interacting with kernel-level software, LynxFuzzer includes a bare-metal hardware-assisted hypervisor, that al- lows to seamlessly inspect the state of a running kernel and its components. We implemented and evaluated LynxFuzzer on Mac OS X Mountain Lion and we obtained unexpected results: we indivuated 6 bugs in 17 kernel extensions we tested, thus proving the usefulness and eectiveness of our framework.
Improving Mac OS X security through gray box fuzzing technique / S.B. Mazzone, M. Pagnozzi, A. Fattori, A. Reina, A. Lanzi, D. Bruschi - In: EuroSys 2014New York : Association for Computing Machinery, 2014. - ISBN 9781450327152. - pp. 1-6 (( Intervento presentato al 7. convegno European Workshop on System Security (EuroSys) tenutosi a Amsterdam nel 2014 [10.1145/2592791.2592793].
Improving Mac OS X security through gray box fuzzing technique
A. Fattori;A. Reina;A. LanziPenultimo
;D. BruschiUltimo
2014
Abstract
The kernel is the core of any operating system, and its security is of vital importance. A vulnerability, in any of its parts, compromises the whole system security model. Unprivileged users that find such vulnerabilities can easily crash the attacked system, or obtain administration privi- leges. In this paper we propose LynxFuzzer, a framework to test kernel extensions, i.e., the dynamically loadable com- ponents of Mac OS X kernel. To overcome the challenges posed by interacting with kernel-level software, LynxFuzzer includes a bare-metal hardware-assisted hypervisor, that al- lows to seamlessly inspect the state of a running kernel and its components. We implemented and evaluated LynxFuzzer on Mac OS X Mountain Lion and we obtained unexpected results: we indivuated 6 bugs in 17 kernel extensions we tested, thus proving the usefulness and eectiveness of our framework.File | Dimensione | Formato | |
---|---|---|---|
fuzzer.pdf
accesso riservato
Tipologia:
Publisher's version/PDF
Dimensione
277.08 kB
Formato
Adobe PDF
|
277.08 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
Pubblicazioni consigliate
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.