{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,30]],"date-time":"2026-01-30T04:50:14Z","timestamp":1769748614981,"version":"3.49.0"},"publisher-location":"New York, NY, USA","reference-count":54,"publisher":"ACM","license":[{"start":{"date-parts":[[2016,10,24]],"date-time":"2016-10-24T00:00:00Z","timestamp":1477267200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2016,10,24]]},"DOI":"10.1145\/2976749.2978411","type":"proceedings-article","created":{"date-parts":[[2016,10,25]],"date-time":"2016-10-25T12:46:35Z","timestamp":1477399595000},"page":"1492-1504","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":86,"title":["Systematic Fuzzing and Testing of TLS Libraries"],"prefix":"10.1145","author":[{"given":"Juraj","family":"Somorovsky","sequence":"first","affiliation":[{"name":"Ruhr University Bochum \/ Hackmanit GmbH, Bochum, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2016,10,24]]},"reference":[{"key":"e_1_3_2_1_1_1","unstructured":"Botan: Crypto and TLS for C+ 11. http:\/\/botan.randombit.net\/.  Botan: Crypto and TLS for C+ 11. http:\/\/botan.randombit.net\/."},{"key":"e_1_3_2_1_2_1","unstructured":"Gnutls security advisory. http:\/\/www.gnutls.org\/security.html.  Gnutls security advisory. http:\/\/www.gnutls.org\/security.html."},{"key":"e_1_3_2_1_3_1","unstructured":"Java Architecture for XML Binding. https:\/\/jaxb.java.net\/.  Java Architecture for XML Binding. https:\/\/jaxb.java.net\/."},{"key":"e_1_3_2_1_4_1","unstructured":"Java platform debugger architecture. http:\/\/docs.oracle.com\/javase\/1.5.0\/docs\/guide\/jpda\/.  Java platform debugger architecture. http:\/\/docs.oracle.com\/javase\/1.5.0\/docs\/guide\/jpda\/."},{"key":"e_1_3_2_1_5_1","unstructured":"Java Secure Socket Extension (JSSE). https:\/\/docs.oracle.com\/javase\/8\/docs\/technotes\/guides\/security\/jsse\/JSSERefGuide.html.  Java Secure Socket Extension (JSSE). https:\/\/docs.oracle.com\/javase\/8\/docs\/technotes\/guides\/security\/jsse\/JSSERefGuide.html."},{"key":"e_1_3_2_1_6_1","unstructured":"matrixSSL. Compact Embedded SSL\/TLS stack. http:\/\/www.matrixssl.org\/.  matrixSSL. Compact Embedded SSL\/TLS stack. http:\/\/www.matrixssl.org\/."},{"key":"e_1_3_2_1_7_1","unstructured":"mbed TLS. https:\/\/tls.mbed.org\/.  mbed TLS. https:\/\/tls.mbed.org\/."},{"key":"e_1_3_2_1_8_1","unstructured":"OpenSSL -- Cryptography and SSL\/TLS Toolkit. https:\/\/www.openssl.org.  OpenSSL -- Cryptography and SSL\/TLS Toolkit. https:\/\/www.openssl.org."},{"key":"e_1_3_2_1_9_1","unstructured":"OpenSSL security advisory. https:\/\/www.openssl.org\/news\/vulnerabilities.html.  OpenSSL security advisory. https:\/\/www.openssl.org\/news\/vulnerabilities.html."},{"key":"e_1_3_2_1_10_1","unstructured":"The GnuTLS Transport Layer Security Library. http:\/\/www.gnutls.org.  The GnuTLS Transport Layer Security Library. http:\/\/www.gnutls.org."},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-49890-3_24"},{"key":"e_1_3_2_1_12_1","volume-title":"Plaintext-Recovery Attacks Against Datagram TLS. In Network and Distributed System Security Symposium (NDSS 2012)","author":"AlFardan N.","year":"2012","unstructured":"AlFardan , N. , and Paterson , K . Plaintext-Recovery Attacks Against Datagram TLS. In Network and Distributed System Security Symposium (NDSS 2012) ( Feb. 2012 ). AlFardan, N., and Paterson, K. Plaintext-Recovery Attacks Against Datagram TLS. In Network and Distributed System Security Symposium (NDSS 2012) (Feb. 2012)."},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2013.42"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-52993-5_9"},{"key":"e_1_3_2_1_15_1","volume-title":"25th USENIX Security Symposium (USENIX Security 16)","author":"Aviram N.","year":"2016","unstructured":"Aviram , N. , Schinzel , S. , Somorovsky , J. , Heninger , N. , Dankel , M. , Steube , J. , Valenta , L. , Adrian , D. , Halderman , J. A. , Dukhovni , V. , Kasper , E. , Cohney , S. , Engels , S. , Paar , C. , and Shavitt , Y . DROWN: Breaking TLS Using SSLv2 . In 25th USENIX Security Symposium (USENIX Security 16) ( Aug. 2016 ). Aviram, N., Schinzel, S., Somorovsky, J., Heninger, N., Dankel, M., Steube, J., Valenta, L., Adrian, D., Halderman, J. A., Dukhovni, V., Kasper, E., Cohney, S., Engels, S., Paar, C., and Shavitt, Y. DROWN: Breaking TLS Using SSLv2. In 25th USENIX Security Symposium (USENIX Security 16) (Aug. 2016)."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-32009-5_36"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2015.39"},{"key":"e_1_3_2_1_18_1","volume-title":"FLEXTLS: A Tool for Testing TLS Implementations. In 9th USENIX Workshop on Offensive Technologies (WOOT 15)","author":"Beurdouche B.","year":"2015","unstructured":"Beurdouche , B. , Delignat-Lavaud , A. , Kobeissi , N. , Pironti , A. , and Bhargavan , K . FLEXTLS: A Tool for Testing TLS Implementations. In 9th USENIX Workshop on Offensive Technologies (WOOT 15) (Washington, D.C., Aug. 2015 ), USENIX Association. Beurdouche, B., Delignat-Lavaud, A., Kobeissi, N., Pironti, A., and Bhargavan, K. FLEXTLS: A Tool for Testing TLS Implementations. In 9th USENIX Workshop on Offensive Technologies (WOOT 15) (Washington, D.C., Aug. 2015), USENIX Association."},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2014.14"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.14722\/ndss.2016.23418"},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.5555\/646765.704124"},{"key":"e_1_3_2_1_22_1","volume-title":"May","author":"Blake-Wilson S.","year":"2006","unstructured":"Blake-Wilson , S. , Bolyard , N. , Gupta , V. , Hawk , C. , and Moeller , B . Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS). RFC 4492 (Informational) , May 2006 . Updated by RFCs 5246, 7027. Blake-Wilson, S., Bolyard, N., Gupta, V., Hawk, C., and Moeller, B. Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS). RFC 4492 (Informational), May 2006. Updated by RFCs 5246, 7027."},{"key":"e_1_3_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.5555\/646763.706320"},{"key":"e_1_3_2_1_24_1","volume-title":"Nov.","author":"B\u00f6ck H.","year":"2015","unstructured":"B\u00f6ck , H. A little POODLE left in GnuTLS (old versions) , Nov. 2015 . https:\/\/blog.hboeck.de\/archives\/877-A-little-POODLE-left-in-GnuTLS-old-versions.html. B\u00f6ck, H. A little POODLE left in GnuTLS (old versions), Nov. 2015. https:\/\/blog.hboeck.de\/archives\/877-A-little-POODLE-left-in-GnuTLS-old-versions.html."},{"key":"e_1_3_2_1_25_1","first-page":"193","volume-title":"Protocol State Fuzzing of TLS Implementations. In 24th USENIX Security Symposium (USENIX Security 15)","author":"de Ruiter J.","year":"2015","unstructured":"de Ruiter , J. , and Poll , E . Protocol State Fuzzing of TLS Implementations. In 24th USENIX Security Symposium (USENIX Security 15) (Washington, D.C., Aug. 2015 ), USENIX Association , pp. 193 -- 206 . de Ruiter, J., and Poll, E. Protocol State Fuzzing of TLS Implementations. In 24th USENIX Security Symposium (USENIX Security 15) (Washington, D.C., Aug. 2015), USENIX Association, pp. 193--206."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.17487\/RFC2246"},{"key":"e_1_3_2_1_27_1","volume-title":"Aug.","author":"Dierks T.","year":"2008","unstructured":"Dierks , T. , and Rescorla , E . The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246 (Proposed Standard) , Aug. 2008 . Updated by RFCs 5746, 5878, 6176, 7465, 7507, 7568, 7627, 7685. Dierks, T., and Rescorla, E. The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246 (Proposed Standard), Aug. 2008. Updated by RFCs 5746, 5878, 6176, 7465, 7507, 7568, 7627, 7685."},{"key":"e_1_3_2_1_28_1","volume-title":"Jan.","author":"Dierks T.","year":"2015","unstructured":"Dierks , T. , and Rescorla , E . The Transport Layer Security (TLS) Protocol Version 1.3. draft-ietf-tls-tls13-04 , Jan. 2015 . Dierks, T., and Rescorla, E. The Transport Layer Security (TLS) Protocol Version 1.3. draft-ietf-tls-tls13-04, Jan. 2015."},{"key":"e_1_3_2_1_29_1","first-page":"760","volume-title":"Proceedings of the 2012 International Conference on Software Engineering (Piscataway","author":"Dietz W.","year":"2012","unstructured":"Dietz , W. , Li , P. , Regehr , J. , and Adve , V . Understanding integer overflow in c\/c+ . In Proceedings of the 2012 International Conference on Software Engineering (Piscataway , NJ, USA , 2012 ), ICSE 2012, IEEE Press , pp. 760 -- 770 . Dietz, W., Li, P., Regehr, J., and Adve, V. Understanding integer overflow in c\/c+. In Proceedings of the 2012 International Conference on Software Engineering (Piscataway, NJ, USA, 2012), ICSE 2012, IEEE Press, pp. 760--770."},{"key":"e_1_3_2_1_30_1","volume-title":"Here come the \u00f8plus Ninjas. Unpublished manuscript","author":"Duong T.","year":"2011","unstructured":"Duong , T. , and Rizzo , J . Here come the \u00f8plus Ninjas. Unpublished manuscript , 2011 . Duong, T., and Rizzo, J. Here come the \u00f8plus Ninjas. Unpublished manuscript, 2011."},{"key":"e_1_3_2_1_31_1","volume-title":"Jan.","author":"Eastlake D.","year":"2011","unstructured":"Eastlake , D. Transport Layer Security (TLS) Extensions: Extension Definitions. RFC 6066 (Proposed Standard) , Jan. 2011 . Eastlake, D. Transport Layer Security (TLS) Extensions: Extension Definitions. RFC 6066 (Proposed Standard), Jan. 2011."},{"key":"e_1_3_2_1_32_1","volume-title":"Revision 3.01","author":"Gueron S.","year":"2012","unstructured":"Gueron , S. Intel Advanced Encryption Standard (AES) New Instructions Set , Revision 3.01 , 2012 . Gueron, S. Intel Advanced Encryption Standard (AES) New Instructions Set, Revision 3.01, 2012."},{"key":"e_1_3_2_1_33_1","first-page":"49","volume-title":"USENIX","author":"Haller I.","unstructured":"Haller , I. , Slowinska , A. , Neugschwandtner , M. , and Bos , H . Dowsing for overflows: A guided fuzzer to find buffer boundary violations. In Presented as part of the 22nd USENIX Security Symposium (USENIX Security 13) (Washington, D.C., 2013) , USENIX , pp. 49 -- 64 . Haller, I., Slowinska, A., Neugschwandtner, M., and Bos, H. Dowsing for overflows: A guided fuzzer to find buffer boundary violations. In Presented as part of the 22nd USENIX Security Symposium (USENIX Security 13) (Washington, D.C., 2013), USENIX, pp. 49--64."},{"key":"e_1_3_2_1_34_1","volume-title":"In Proceedings of the Network and Distributed System Security Symposium (NDSS)","author":"Haugh E.","year":"2003","unstructured":"Haugh , E. Testing c programs for buffer overflow vulnerabilities . In In Proceedings of the Network and Distributed System Security Symposium (NDSS) ( 2003 ). Haugh, E. Testing c programs for buffer overflow vulnerabilities. In In Proceedings of the Network and Distributed System Security Symposium (NDSS) (2003)."},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1145\/2714576.2714625"},{"key":"e_1_3_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-33167-1_43"},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-24174-6_21"},{"key":"e_1_3_2_1_38_1","unstructured":"Kario H. Testing TLS. Ruxcon Oct. 2015. https:\/\/github.com\/tomato42\/tlsfuzzer.  Kario H. Testing TLS. Ruxcon Oct. 2015. https:\/\/github.com\/tomato42\/tlsfuzzer."},{"key":"e_1_3_2_1_39_1","volume-title":"CCS Injection Vulnerability","author":"Kikuchi M.","year":"2014","unstructured":"Kikuchi , M. CCS Injection Vulnerability , 2014 . http:\/\/ccsinjection.lepidum.co.jp. Kikuchi, M. CCS Injection Vulnerability, 2014. http:\/\/ccsinjection.lepidum.co.jp."},{"key":"e_1_3_2_1_40_1","volume-title":"Attacking RSA-Based Sessions in SSL\/TLS. In Cryptographic Hardware and Embedded Systems - CHES 2003","volume":"2779","author":"Kl\u00edma V.","year":"2003","unstructured":"Kl\u00edma , V. , Pokorn\u00fd , O. , and Rosa , T . Attacking RSA-Based Sessions in SSL\/TLS. In Cryptographic Hardware and Embedded Systems - CHES 2003 , vol. 2779 of Lecture Notes in Computer Science. Springer Berlin \/ Heidelberg , Sept. 2003 . Kl\u00edma, V., Pokorn\u00fd, O., and Rosa, T. Attacking RSA-Based Sessions in SSL\/TLS. In Cryptographic Hardware and Embedded Systems - CHES 2003, vol. 2779 of Lecture Notes in Computer Science. Springer Berlin \/ Heidelberg, Sept. 2003."},{"key":"e_1_3_2_1_41_1","volume-title":"Nov.","author":"Langley A.","year":"2014","unstructured":"Langley , A. The POODLE bites again , Nov. 2014 . https:\/\/www.imperialviolet.org\/2014\/12\/08\/poodleagain.html. Langley, A. The POODLE bites again, Nov. 2014. https:\/\/www.imperialviolet.org\/2014\/12\/08\/poodleagain.html."},{"key":"e_1_3_2_1_42_1","volume-title":"Oct.","author":"Merkle J.","year":"2013","unstructured":"Merkle , J. , and Lochter , M . Elliptic Curve Cryptography (ECC) Brainpool Curves for Transport Layer Security (TLS). RFC 7027 (Informational) , Oct. 2013 . Merkle, J., and Lochter, M. Elliptic Curve Cryptography (ECC) Brainpool Curves for Transport Layer Security (TLS). RFC 7027 (Informational), Oct. 2013."},{"key":"e_1_3_2_1_44_1","volume-title":"Revisiting SSL\/TLS Implementations: New Bleichenbacher Side Channels and Attacks. In 23rd USENIX Security Symposium","author":"Meyer C.","year":"2014","unstructured":"Meyer , C. , Somorovsky , J. , Weiss , E. , Schwenk , J. , Schinzel , S. , and Tews , E . Revisiting SSL\/TLS Implementations: New Bleichenbacher Side Channels and Attacks. In 23rd USENIX Security Symposium , San Diego, USA ( August 2014 ). Meyer, C., Somorovsky, J., Weiss, E., Schwenk, J., Schinzel, S., and Tews, E. Revisiting SSL\/TLS Implementations: New Bleichenbacher Side Channels and Attacks. In 23rd USENIX Security Symposium, San Diego, USA (August 2014)."},{"key":"e_1_3_2_1_45_1","volume-title":"This POODLE bites: exploiting the SSL 3.0 fallback","author":"M\u00f6ller B.","year":"2014","unstructured":"M\u00f6ller , B. , Duong , T. , and Kotowicz , K . This POODLE bites: exploiting the SSL 3.0 fallback , 2014 . M\u00f6ller, B., Duong, T., and Kotowicz, K. This POODLE bites: exploiting the SSL 3.0 fallback, 2014."},{"key":"e_1_3_2_1_46_1","volume-title":"ShmooCon","author":"Moneger A.","year":"2016","unstructured":"Moneger , A. Penetration Testing Custom TLS Stacks . ShmooCon , Feb. 2016 . https:\/\/github.com\/tintinweb\/scapy-ssl_tls. Moneger, A. Penetration Testing Custom TLS Stacks. ShmooCon, Feb. 2016. https:\/\/github.com\/tintinweb\/scapy-ssl_tls."},{"key":"e_1_3_2_1_47_1","volume-title":"Inc.","author":"Ray M.","year":"2009","unstructured":"Ray , M. , and Dispensa , S . Renegotiating TLS. Tech. rep., PhoneFactor , Inc. , Nov. 2009 . Ray, M., and Dispensa, S. Renegotiating TLS. Tech. rep., PhoneFactor, Inc., Nov. 2009."},{"key":"e_1_3_2_1_48_1","volume-title":"Jan.","author":"Rescorla E.","year":"2012","unstructured":"Rescorla , E. , and Modadugu , N . Datagram Transport Layer Security Version 1.2. RFC 6347 (Proposed Standard) , Jan. 2012 . Updated by RFC 7507. Rescorla, E., and Modadugu, N. Datagram Transport Layer Security Version 1.2. RFC 6347 (Proposed Standard), Jan. 2012. Updated by RFC 7507."},{"key":"e_1_3_2_1_49_1","volume-title":"cve-2014-0160","author":"Riku","year":"2015","unstructured":"Riku , Antti, Matti , and Mehta. Heartbleed , cve-2014-0160 , 2015 . http:\/\/heartbleed.com\/. Riku, Antti, Matti, and Mehta. Heartbleed, cve-2014-0160, 2015. http:\/\/heartbleed.com\/."},{"key":"e_1_3_2_1_50_1","volume-title":"Feb.","author":"Seggelmann R.","year":"2012","unstructured":"Seggelmann , R. , Tuexen , M. , and Williams , M . Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) Heartbeat Extension. RFC 6520 (Proposed Standard) , Feb. 2012 . Seggelmann, R., Tuexen, M., and Williams, M. Transport Layer Security (TLS) and Datagram Transport Layer Security (DTLS) Heartbeat Extension. RFC 6520 (Proposed Standard), Feb. 2012."},{"key":"e_1_3_2_1_51_1","volume-title":"Feb.","author":"Sheffer Y.","year":"2015","unstructured":"Sheffer , Y. , Holz , R. , and Saint-Andre , P. Summarizing Known Attacks on Transport Layer Security (TLS) and Datagram TLS (DTLS). RFC 7457 (Informational) , Feb. 2015 . Sheffer, Y., Holz, R., and Saint-Andre, P. Summarizing Known Attacks on Transport Layer Security (TLS) and Datagram TLS (DTLS). RFC 7457 (Informational), Feb. 2015."},{"key":"e_1_3_2_1_52_1","unstructured":"Somorovsky J. Curious Padding oracle in OpenSSL (CVE-2016--2107). http:\/\/web-in-security.blogspot.de\/2016\/05\/curious-padding-oracle-in-openssl-cve.html.  Somorovsky J. Curious Padding oracle in OpenSSL (CVE-2016--2107). http:\/\/web-in-security.blogspot.de\/2016\/05\/curious-padding-oracle-in-openssl-cve.html."},{"key":"e_1_3_2_1_53_1","unstructured":"Sullivan N. The results of the cloudflare challenge. https:\/\/blog.cloudflare.com\/the-results-of-the-cloudflare-challenge.  Sullivan N. The results of the cloudflare challenge. https:\/\/blog.cloudflare.com\/the-results-of-the-cloudflare-challenge."},{"key":"e_1_3_2_1_54_1","unstructured":"Valsorda F. Yet Another Padding Oracle in OpenSSL CBC Ciphersuites. https:\/\/blog.cloudflare.com\/yet-another-padding-oracle-in-openssl-cbc-ciphersuites.  Valsorda F. Yet Another Padding Oracle in OpenSSL CBC Ciphersuites. https:\/\/blog.cloudflare.com\/yet-another-padding-oracle-in-openssl-cbc-ciphersuites."},{"key":"e_1_3_2_1_55_1","doi-asserted-by":"publisher","DOI":"10.5555\/647087.715705"}],"event":{"name":"CCS'16: 2016 ACM SIGSAC Conference on Computer and Communications Security","location":"Vienna Austria","acronym":"CCS'16","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control"]},"container-title":["Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2976749.2978411","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2976749.2978411","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T03:49:53Z","timestamp":1750218593000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2976749.2978411"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2016,10,24]]},"references-count":54,"alternative-id":["10.1145\/2976749.2978411","10.1145\/2976749"],"URL":"https:\/\/doi.org\/10.1145\/2976749.2978411","relation":{},"subject":[],"published":{"date-parts":[[2016,10,24]]},"assertion":[{"value":"2016-10-24","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}