Browse Prior Art Database

FoS - Fuzz on Stress Disclosure Number: IPCOM000220569D
Original Publication Date: 2012-Aug-07
Included in the Prior Art Database: 2012-Aug-07

Publishing Venue


Related People

Xinli Shang Gregor Harrison Joseph Donahue Mehmet Baris Saydag Herbert Stokes Seth Hummel Qiang Hu Hiroaki Takamatsu


Fuzz testing is an effective technique for uncovering software security issues that are not found by stress and feature tests. However, designing, developing and running fuzz tests requires significant time, effort and costly test environment. The invention, FoS, Fuzz on Stress, converts stress tests into fuzz tests automatically at run time with fuzz-strength. Fuzz-strength is a configuration parameter which defines the probability that data from a test application will be fuzzed prior to passing it along to the system under test. FoS enables the test to have both stress and fuzzing functionality at the same time. Combining randomness from fuzzing and concurrency, while stressing the system, will further load the product under test and exercise new code paths. This can uncover issues not found by independently running stress and fuzz test passes.