Conformance testing of Extensible Authentication Protocol implementations

The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network...

Full description

Saved in:
Bibliographic Details
Published in:Trudy Instituta sistemnogo programmirovaniâ Vol. 30; no. 6; pp. 89 - 104
Main Authors: Nikeshin, A.V., Shnitman, V.Z.
Format: Journal Article
Language:English
Published: Russian Academy of Sciences, Ivannikov Institute for System Programming 01.02.2019
Subjects:
eap
unitesk
аутентификация
безопасность
верификация
контроль доступа
методы eap
мутационное тестирование
тестирование
тестирование с использованием моделей
формальные методы
формальные спецификации
ISSN:2079-8156, 2220-6426
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network protocols based on their formal models. Additional applying of mutation testing allows evaluating the robustness of the implementations to receive incorrect packets. We applied the test suite to several implementations of EAP and present brief results. This approach has proved to be effective in finding several critical vulnerabilities and other specification deviations in the EAP implementations.
ISSN:2079-8156
2220-6426
DOI:10.15514/ISPRAS-2018-30(6)-5