A Greater Boston RIG project
Virtual devices are the most common site for security bugs in hypervisors. In our evaluation, we found new bugs in devices such as serial and virtio-net, ranging from memory corruptions to denial-of-service vulnerabilities. By combining well known coverage guidance techniques with domain-specific feedback, we found promising fuzzer performance, even for complex targets such as hypervisors.
Testing and Ops
Red Hat’s Office of the CTO has a new motto: “Operate first!” It acknowledges the fact that great innovations don’t amount to much if they can’t be implemented and operated. Building a complex system is a tough job, but even tougher is discovering ways to systematize and automate the testing of these systems and then creating the frameworks and tools for operating them, often by embedding AI into predicting and avoiding failures or finding optimization pathways. Our researchers are actively contributing to the field of automated cloud operations and AIOps.
|OpenInfra Labs||OpenInfra Labs is an OpenStack Foundation project connecting open source projects to production to advance …||AI-ML, Cloud-DS, Hardware and the OS, Security, Privacy, Cryptography, Testing and Ops||Boston University, Northeastern University, UMass Amherst||boston-university northeastern-university umass-amherst|
|Elastic Secure Infrastructure||This project encompasses work in several areas to design, build and evaluate secure bare-metal elastic infrastructure for data centers.||Cloud-DS, Security, Privacy, Cryptography, Testing and Ops||Greater Boston||Boston University||greater-boston||boston-university|
|Open Cloud Testbed||The Open Cloud Testbed project will build and support a testbed for research and experimentation into new cloud platforms – the underlying software which provides cloud services to applications. Testbeds such as OCT are critical for enabling research into new cloud technologies – research that requires experiments which potentially change …||AI-ML, Cloud-DS, Hardware and the OS, Security, Privacy, Cryptography, Testing and Ops||Greater Boston||Boston University, Northeastern University, UMass Amherst||greater-boston||boston-university northeastern-university umass-amherst|
|Symbiotic||Symbiotic is an open-source framework for program analysis integrating instrumentation, static program slicing and various program analysis tools.||Testing and Ops||Brno||Masaryk University||brno||masaryk-university|
|Quality Assurance System for Internet of Things Technology||The main goal is to design, implement and verify a framework for quality assurance of products based on the Internet of Things concept. The aim of the framework is to help individual IoT projects to establish an efficient testing and verification strategy of the infrastructure. The proposed framework is based …||Testing and Ops||Brno||Czech Technical University||brno||czech-technical-university|
|AUFOVER||The goal of the Automation of Formal Verification (AUFOVER) project is to develop automated formal verification tools and integrate them for industrial use. The tools to be developed or improved within the projects are Verification Server, Verification Server Client Application, csmock plug-ins, DIVINE, Symbiotic and Testos. The purpose of the …||Testing and Ops||Brno||Brno University of Technology, Masaryk University||brno||brno-university-of-technology masaryk-university|
|Fuzzing Device Emulation in QEMU||Hypervisors—the software that allows a computer to simulate multiple virtual computers—form the backbone of cloud computing. Because they are both ubiquitous and essential, they are security-critical applications that make attractive targets for potential attackers.||Hardware and the OS, Security, Privacy, Cryptography, Testing and Ops||Greater Boston||Boston University||greater-boston||boston-university|
|Avocado Project||The goal of the Avocado project, as a generic test automation framework, is to provide a solid foundation for software projects to build their testing needs on. With Avocado, common testing problems are solved at the framework level, and developers can spend more of their time writing tests that, by …||Testing and Ops||Brno||Czech Technical University, Karlstad University||brno||czech-technical-university karlstad-university|