A Fuzz Testing Approach for Embedded Avionic Software
: Xompero, Leonardo; Mohammad, Tahir; Isoaho, Jouni; Grossi, Jürgen
: Shakshuki, Elhadi
: International Conference on Ambient Systems, Networks and Technologies Networks
: 2024
: Procedia Computer Science
: The 15th International Conference on Ambient Systems, Networks and Technologies Networks (ANT) / The 7th International Conference on Emerging Data and Industry 4.0 (EDI40), April 23-25, 2024, Hasselt University, Belgium
: Procedia Computer Science
: 238
: 273
: 280
: 1877-0509
DOI: https://doi.org/10.1016/j.procs.2024.06.025(external)
: https://doi.org/10.1016/j.procs.2024.06.025(external)
: https://research.utu.fi/converis/portal/detail/Publication/457186885(external)
The objective of the research was to find if it was possible to apply fuzz testing, a technique that can be used to test software to discover vulnerabilities, on an embedded avionic software using an open-source fuzz tool. The open-source fuzz tool AFL++ was applied to an NH90 Airbus Helicopter embedded software component to find the vulnerabilities. The proposed setup was able to find a few crashes related to data parsing associated with Ada strong typing declaration requirement. Moreover, the experiments outline practical guidelines and considerations for implementing fuzz testing on embedded avionic software.
UTU Research Portal