Inferring State Machine from the Protocol Implementation via Large Langeuage Model
arxiv(2024)
摘要
State machines play a pivotal role in augmenting the efficacy of protocol
analyzing to unveil more vulnerabilities. However, the task of inferring state
machines from network protocol implementations presents significant challenges.
Traditional methods based on dynamic analysis often overlook crucial state
transitions due to limited coverage, while static analysis faces difficulties
with complex code structures and behaviors. To address these limitations, we
propose an innovative state machine inference approach powered by Large
Language Models (LLMs). Utilizing text-embedding technology, this method allows
LLMs to dissect and analyze the intricacies of protocol implementation code.
Through targeted prompt engineering, we systematically identify and infer the
underlying state machines. Our evaluation across six protocol implementations
demonstrates the method's high efficacy, achieving an accuracy rate exceeding
90
implementations of the same protocol. Importantly, integrating this approach
with protocol fuzzing has notably enhanced AFLNet's code coverage by 10
RFCNLP, showcasing the considerable potential of LLMs in advancing network
protocol security analysis. Our proposed method not only marks a significant
step forward in accurate state machine inference but also opens new avenues for
improving the security and reliability of protocol implementations.
更多查看译文
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要