EdgeFuzz: A Middleware-Based Security Testing Tool for Vulnerability Discovery in Distributed Computing Applications

Mishaal Ahmed; Muhammad  Ajmal Naz

doi:10.5220/0013521600003979

EdgeFuzz: A Middleware-Based Security Testing Tool for Vulnerability Discovery in Distributed Computing Applications

Mishaal Ahmed, Muhammad Ajmal Naz

2025

Abstract

Distributed computing faces many security challenges due to the nature of the distribution of connecting nodes. Fuzz testing has become a popular automated tool for finding software system bugs and vulnerabilities in distributed environments. Distributed systems are characterized by various components spread across different network nodes. Such systems exhibit intrinsic complexities due to scalability, coordinated concurrency, and heterogeneity. Implementing fuzzing in such environments introduces additional challenges, such as managing communication and synchronization between distributed nodes to ensure that fuzzing tasks are executed promptly and coherently. In this paper, we proposed a novel EdgeFuzz Fuzzer to discover vulnerabilities in the server nodes of the distributed network through middleware-based fuzzing. EdgeFuzz is a black-box Fuzzer that modifies incoming client requests and sends them to the server while monitoring if a crash has occurred. We employed EdgeFuzz to test distributed networking tools and found server-side code vulnerabilities in selected applications.

Download

Paper Citation

in Harvard Style

Ahmed M. and Naz M. (2025). EdgeFuzz: A Middleware-Based Security Testing Tool for Vulnerability Discovery in Distributed Computing Applications. In Proceedings of the 22nd International Conference on Security and Cryptography - Volume 1: SECRYPT; ISBN 978-989-758-760-3, SciTePress, pages 619-625. DOI: 10.5220/0013521600003979

in Bibtex Style

@conference{secrypt25,
author={Mishaal Ahmed and Muhammad Naz},
title={EdgeFuzz: A Middleware-Based Security Testing Tool for Vulnerability Discovery in Distributed Computing Applications},
booktitle={Proceedings of the 22nd International Conference on Security and Cryptography - Volume 1: SECRYPT},
year={2025},
pages={619-625},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013521600003979},
isbn={978-989-758-760-3},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 22nd International Conference on Security and Cryptography - Volume 1: SECRYPT
TI - EdgeFuzz: A Middleware-Based Security Testing Tool for Vulnerability Discovery in Distributed Computing Applications
SN - 978-989-758-760-3
AU - Ahmed M.
AU - Naz M.
PY - 2025
SP - 619
EP - 625
DO - 10.5220/0013521600003979
PB - SciTePress