Towards Improving Fuzzer Efficiency for the MQTT Protocol

MQTT's security has been a major concern because of its weak protocol implementations. Over the last few years, several fuzzing frameworks have been proposed to mitigate this issue. However, these frameworks lack sufficient knowledge of MQTT's specifications, requiring a considerable amoun...

Full description

Saved in:
Bibliographic Details
Main Authors: Araujo Rodriguez, Luis Gustavo, Batista, Daniel Macedo
Format: Conference Proceeding
Language:English
Subjects:
Codes
Computers
Fuzzing
Grammar
Internet of Things
Knowledge engineering
MQTT
Protocols
Security
Software Vulnerability Testing
Online Access:Request full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:MQTT's security has been a major concern because of its weak protocol implementations. Over the last few years, several fuzzing frameworks have been proposed to mitigate this issue. However, these frameworks lack sufficient knowledge of MQTT's specifications, requiring a considerable amount of network packets to cover all of its features and functionality. In this paper, we explain how to improve the efficiency of fuzzing frameworks for MQTT by using a grammar based on its specifications. Although defining a grammar is time-consuming and complex, these drawbacks are overshadowed by its benefits, such as deep state exploration and efficiency. Our improvements are implemented in MQTTGRAM, a new grammar-based fuzzer for MQTT. Due to these improvements, MQTTGRAM offers higher code coverage with significantly fewer packets than existing MQTT fuzzers. For instance, MQTTGRAM exchanges up to 9x fewer packets than its counterparts without reducing the line coverage.
ISSN:2642-7389
DOI:10.1109/ISCC53001.2021.9631520