On June 4th, the 31st China International Information and Communication Exhibition hosted by the Ministry of Industry and Information Technology opened in Beijing. Kaiyuan Network Security presented the 5G telecommunications fuzzing test solution at the exhibition, and gave a keynote speech in the forum, jointly Security issues in the field of communication and communication.
China International Information and Communication Exhibition is one of the most influential events in the pan-ICT industry, and is known as the "innovation base and wind vane of the ICT market" in China and even in the world. The theme of this year's conference is "Open up the main artery of information and create a new era of digital intelligence". Major operators and well-known ICT companies at home and abroad will participate in the exhibition to showcase emerging technologies and application innovations in the field of information and communication.
At the Digital Technology Forum, Gao Ming, head of SFuzz products for open source network security, gave a keynote speech on "5G Telecommunications Fuzzing Testing", providing operators and communication companies with a set of advanced 5G protocol fuzzing testing solutions to help companies improve the efficiency of protocol testing and accuracy, uncovering more vulnerabilities and security issues.
Open source network security fuzz testing platform (SFuzz)
The open source network security fuzz testing platform (SFuzz) is the first batch of self-developed black box security testing products based on fuzz testing technology in China, and has a number of related invention patents. Focusing on fuzz testing for file formats and network protocols, it has the advantages of modularity, cross-platform, automated testing, and efficient controllability. It is widely used in aviation, aerospace, medical, Internet of Things, computers, industrial control systems and other fields.
The open source network security fuzz testing platform analyzes the protocol, writes the model file, and then combines the mutation algorithm strategy to generate a test case containing abnormal data, input it into the object under test, and observe its running status. This helps the security testing team discover potential security vulnerabilities in targets including binary programs, network and IoT protocols, and embedded devices.