| Autor: |
Zhi-qiang WANG, Qi-xu LIU, Yu-qing ZHANG |
| Jazyk: |
čínština |
| Rok vydání: |
2014 |
| Předmět: |
|
| Zdroj: |
Tongxin xuebao, Vol 35, Pp 117-123 (2014) |
| Druh dokumentu: |
article |
| ISSN: |
1000-436X |
| DOI: |
10.3969/j.issn.1000-436x.2014.z2.016 |
| Popis: |
To improve the security of NFC technology,a research is done for discovering NDEF vulnerabilities of NFC applications on Android platform,and a method of bug hunting is proposed on based Fuzzing technology.The method adopts manual craft,the generation and the mutation strategies to construct test cases,and uses two assistant means of analyzing and constructing test cases,including reverse message anylysis and packet sniffing.Then,NFC applications’ vulnerabilities with constructed test cases and output results are discovered.According to the method,a system called ANDEFVulFinder is developed for discovering the security vulnerabilities of NFC applications.The tool logcat and process monitoring are used to monitor targets’ exceptions during the discovering process,and the test is automated |
| Databáze: |
Directory of Open Access Journals |
| Externí odkaz: |
|
