Due to the hostile environment, open communication and implementation vulnerability, ZigBee is vulnerable to various attacks. But there are few effective vulnerability detection methods. In this paper, we design the ZigBee Border Conditions Based Tester (ZBCBT) to detect vulnerabilities on MAC layer. It generates elaborated frames (test cases) transmitting to the target nodes. Based on ZBCBT, we present a ZigBee Border Conditions Algorithm (ZBCA) and a hostile test framework (HTF) for better test performance. Comparing with Random Testing (RT) or fuzz methods, ZBCA tests border values of every field in the frame to improve the efficiency. HTF is a unique framework that ZBCBT simulates an attacker is utilised for further tests. The experimental results, including one frame triggers the network crash, have proved ZBCBT's effectiveness. Thus, by using ZBCA and HTF, this novel vulnerability detection method is a significant add-on approach for ZigBee security.

• 出版日期2013
• 单位北京大学