Published November 15, 2024
| Version v1
Software documentation
Open
WhisperFuzz Vulnerability Artifact
Creators
-
1.
Indian Institute of Technology Madras
-
2.
Texas A&M University
- 3. Technische Universitat Darmstadt
Description
WhisperFuzz Vulnerability Artifact - README
WhisperFuzz is a RISC-V processor fuzzing framework that detects and localizes timing vulnerabilities caused by data-dependent instructions. For more details, please see our Usenix Security 2024 paper .
This artifact helps revalidate the vulnerabilities detected by WhisperFuzz in CVA6 when executing compressed RISC-V instructions, i.e., C.ADD, C.ADDW, C.SUB, C.SUBW, C.AND, C.OR, C.XOR, C.MV, and MV.
Files
whisperfuzz_bug_demo.zip
Files
(2.6 MB)
| Name | Size | Download all |
|---|---|---|
|
md5:27c598f10c34a1f57dfe7de8a5160399
|
2.6 MB | Preview Download |
Additional details
References
- P. Borkar, C. Chen, M. Rostami, N. Singh, R. Kande, A.-R. Sadeghi, C. Rebeiro, and J. Rajendran, "Whisperfuzz: White-box Fuzzing for Detecting and Locating Timing Vulnerabilities in Processors," USENIX Security Symposium, 2024.