HTML and PDF Fuzzing Methodology in iOS
Title | HTML and PDF Fuzzing Methodology in iOS |
Publication Type | Conference Paper |
Year of Publication | 2016 |
Authors | Jo, Je-Gyeong, Ryou, Jae-cheol |
Conference Name | Proceedings of the 10th International Conference on Ubiquitous Information Management and Communication |
Publisher | ACM |
Conference Location | New York, NY, USA |
ISBN Number | 978-1-4503-4142-4 |
Keywords | Collaboration, composability, Encryption, fuzzing, HTML, Human Behavior, ios, iOS encryption, Jailbreak, Metrics, MobileSafari, PDF, pubcrawl, Resiliency, Scalability |
Abstract | iOS is well-known operating system which is strong in security. However, many attacking methods of iOS have recently been published which are called "Masque Attack", "Null Dereference" and "Italy Hacking Team's RCS". Therefore, security and safety is not suitable word to iOS. In addition, many security researchers have a problem to analyze iOS because the iOS is difficult to debug because of closed source. So, we propose a new security testing method for iOS. At first, we perform to fuzz iOS's web browser called MobileSafari. The MobileSafari is possible to express HTML, PDF and mp4, etc. We perform test abnormal HTML and PDF using our fuzzing method. We hope that our research can be helpful to iOS's security and safety. |
URL | http://doi.acm.org/10.1145/2857546.2857555 |
DOI | 10.1145/2857546.2857555 |
Citation Key | jo_html_2016 |