Vulnerabilities In Cryptographic Libraries Found Through Modern Fuzzing
HelpNet Security, January 13th, 2023
Recently patched vulnerabilities in MatrixSSL and wolfSSL, two open-source TLS/SSL implementations / libraries for embedded environments, have emphasized the great potential of using fuzzing to uncover security holes in implementations of cryptographic protocols.
Fuzzing cryptographic libraries to flag security flaws...
'Computer software is becoming more complex. So, it is almost impossible to perform a complete source code review with reasonable coverage. For this reason, modern fuzzing methods are used to discover vulnerabilities,' Deutsche Telekom's security evaluators explained.