Connections of cyber-physical system (CPS) components are gradually increasing owing to the introduction of the Industrial Internet of Things (IIoT). IIoT vulnerability analysis has become a major issue because complex skillful cyber-attacks on CPS systems exploit their zero-day vulnerabilities. However, current white box techniques for vulnerability analysis are difficult to use in real heterogeneous environments, where devices supplied by various manufacturers and diverse firmware versions are used. Therefore, we herein propose a novel protocol fuzzing test technique that can be applied in a heterogeneous environment. As seed configuration can significantly influence the test result in a black box test, we update the seed pool using test cases that travel different program paths compared to the seed. The input, output, and Delta times are used to determine if a new program area has been searched in the black box environment. We experimentally verified the effectiveness of the proposed.

中文翻译：

---

基于智能种子选择的 IIoT 协议有效黑盒模糊测试

由于工业物联网 (IIoT) 的引入，信息物理系统 (CPS) 组件的连接正在逐渐增加。工业物联网漏洞分析已成为一个主要问题，因为对 CPS 系统的复杂技术网络攻击利用了其零日漏洞。然而，目前用于漏洞分析的白盒技术难以在真实的异构环境中使用，在这种环境中，使用由不同制造商提供的设备和不同的固件版本。因此，我们在此提出了一种可应用于异构环境的新型协议模糊测试技术。由于种子配置可以显着影响黑盒测试中的测试结果，我们使用与种子相比经过不同程序路径的测试用例更新种子池。输入、输出、和 Delta 时间用于确定是否在黑盒环境中搜索了新的节目区域。我们通过实验验证了所提出的有效性。