Conformance testing of Extensible Authentication Protocol implementations

The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network...

Celý popis

Uloženo v:
Podrobná bibliografie
Vydáno v:Trudy Instituta sistemnogo programmirovaniâ Ročník 30; číslo 6; s. 89 - 104
Hlavní autoři: Nikeshin, A.V., Shnitman, V.Z.
Médium: Journal Article
Jazyk:angličtina
Vydáno: Russian Academy of Sciences, Ivannikov Institute for System Programming 01.02.2019
Témata:
eap
unitesk
аутентификация
безопасность
верификация
контроль доступа
методы eap
мутационное тестирование
тестирование
тестирование с использованием моделей
формальные методы
формальные спецификации
ISSN:2079-8156, 2220-6426
On-line přístup:Získat plný text
Tagy: Přidat tag
Žádné tagy, Buďte první, kdo vytvoří štítek k tomuto záznamu!
Popis
Shrnutí:The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network protocols based on their formal models. Additional applying of mutation testing allows evaluating the robustness of the implementations to receive incorrect packets. We applied the test suite to several implementations of EAP and present brief results. This approach has proved to be effective in finding several critical vulnerabilities and other specification deviations in the EAP implementations.
ISSN:2079-8156
2220-6426
DOI:10.15514/ISPRAS-2018-30(6)-5