FoS - Fuzz on Stress
Original Publication Date: 2012-Aug-07
Included in the Prior Art Database: 2012-Aug-07
Fuzz testing is an effective technique for uncovering software security issues that are not found by stress and feature tests. However, designing, developing and running fuzz tests requires significant time, effort and costly test environment. The invention, FoS, Fuzz on Stress, converts stress tests into fuzz tests automatically at run time with fuzz-strength. Fuzz-strength is a configuration parameter which defines the probability that data from a test application will be fuzzed prior to passing it along to the system under test. FoS enables the test to have both stress and fuzzing functionality at the same time. Combining randomness from fuzzing and concurrency, while stressing the system, will further load the product under test and exercise new code paths. This can uncover issues not found by independently running stress and fuzz test passes.