TLS clients testing
The paper presents a model-based approach to conformance testing of TLS implementations. It discusses the formal model of TLS protocol, the structure of the test suite. JavaTesK tool, based on UniTESK technology, was used to develop the test suite. A set of fuzz operators was developed for general d...
Saved in:
| Published in: | Trudy Instituta sistemnogo programmirovaniâ Vol. 27; no. 2; pp. 145 - 160 |
|---|---|
| Main Authors: | , , |
| Format: | Journal Article |
| Language: | English |
| Published: |
Russian Academy of Sciences, Ivannikov Institute for System Programming
01.10.2018
|
| Subjects: | |
| ISSN: | 2079-8156, 2220-6426 |
| Online Access: | Get full text |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Abstract | The paper presents a model-based approach to conformance testing of TLS implementations. It discusses the formal model of TLS protocol, the structure of the test suite. JavaTesK tool, based on UniTESK technology, was used to develop the test suite. A set of fuzz operators was developed for general data types and included in the test suite. We applied the test suite to a several popular implementations of TLS client, and present brief results. This approach has proved his efficiency, various errors and vulnerabilities had been found in all chosen TLS implementations. |
|---|---|
| AbstractList | The paper presents a model-based approach to conformance testing of TLS implementations. It discusses the formal model of TLS protocol, the structure of the test suite. JavaTesK tool, based on UniTESK technology, was used to develop the test suite. A set of fuzz operators was developed for general data types and included in the test suite. We applied the test suite to a several popular implementations of TLS client, and present brief results. This approach has proved his efficiency, various errors and vulnerabilities had been found in all chosen TLS implementations. |
| Author | Shnitman, V.Z. Nikeshin, A.V. Pakulin, N.V. |
| Author_xml | – sequence: 1 givenname: A.V. surname: Nikeshin fullname: Nikeshin, A.V. – sequence: 2 givenname: N.V. surname: Pakulin fullname: Pakulin, N.V. – sequence: 3 givenname: V.Z. surname: Shnitman fullname: Shnitman, V.Z. |
| BookMark | eNo9kD1PwzAURS1UJErpxMrQEQbD87OdxGNV8RGpEoiW2fJzXqpUJUFxFv49oUVM9-oOR1fnUkzarmUhbhTcK2uVeSg3b-_LjURQVmJ-i3fSnYkpIoLMDGaTsUPuZKFsdiHmKe0BAC3kGtRUXG_Xm0U8NNwOaTFwGpp2dyXO63BIPP_Lmfh4etyuXuT69blcLdcyjignOTNUawiOiCwajbkxrKpQx4qJIgZDQJHHC1xApEqRLTjqglxkrcDomShP3KoLe__VN5-h__ZdaPxx6PqdD_3QxAN7k1eck1EqUGaMimQdRh3H1WpVMY8sc2LFvkup5_qfp8AfPfmTJ__ryWPu0XunfwDKd1ym |
| ContentType | Journal Article |
| DBID | AAYXX CITATION DOA |
| DOI | 10.15514/ISPRAS-2015-27(2)-9 |
| DatabaseName | CrossRef Open Access: DOAJ - Directory of Open Access Journals |
| DatabaseTitle | CrossRef |
| DatabaseTitleList | |
| Database_xml | – sequence: 1 dbid: DOA name: DOAJ Directory of Open Access Journals url: https://www.doaj.org/ sourceTypes: Open Website |
| DeliveryMethod | fulltext_linktorsrc |
| Discipline | Computer Science |
| EISSN | 2220-6426 |
| EndPage | 160 |
| ExternalDocumentID | oai_doaj_org_article_47de7b411ab6441cb592c3c7de531dee 10_15514_ISPRAS_2015_27_2__9 |
| GroupedDBID | 642 AAYXX ALMA_UNASSIGNED_HOLDINGS CITATION GROUPED_DOAJ OK1 |
| ID | FETCH-LOGICAL-c1569-e64bf30a9bbb52432744e1dafcdebbc2a4b0bce426e80cbd1b58ec38b9ce31043 |
| IEDL.DBID | DOA |
| ISSN | 2079-8156 |
| IngestDate | Mon Nov 03 22:08:23 EST 2025 Sat Nov 29 05:34:00 EST 2025 |
| IsDoiOpenAccess | true |
| IsOpenAccess | true |
| IsPeerReviewed | true |
| IsScholarly | true |
| Issue | 2 |
| Language | English |
| LinkModel | DirectLink |
| MergedId | FETCHMERGED-LOGICAL-c1569-e64bf30a9bbb52432744e1dafcdebbc2a4b0bce426e80cbd1b58ec38b9ce31043 |
| OpenAccessLink | https://doaj.org/article/47de7b411ab6441cb592c3c7de531dee |
| PageCount | 16 |
| ParticipantIDs | doaj_primary_oai_doaj_org_article_47de7b411ab6441cb592c3c7de531dee crossref_primary_10_15514_ISPRAS_2015_27_2__9 |
| PublicationCentury | 2000 |
| PublicationDate | 2018-10-01 |
| PublicationDateYYYYMMDD | 2018-10-01 |
| PublicationDate_xml | – month: 10 year: 2018 text: 2018-10-01 day: 01 |
| PublicationDecade | 2010 |
| PublicationTitle | Trudy Instituta sistemnogo programmirovaniâ |
| PublicationYear | 2018 |
| Publisher | Russian Academy of Sciences, Ivannikov Institute for System Programming |
| Publisher_xml | – name: Russian Academy of Sciences, Ivannikov Institute for System Programming |
| SSID | ssj0002507301 |
| Score | 2.041564 |
| Snippet | The paper presents a model-based approach to conformance testing of TLS implementations. It discusses the formal model of TLS protocol, the structure of the... |
| SourceID | doaj crossref |
| SourceType | Open Website Index Database |
| StartPage | 145 |
| SubjectTerms | ssl tls unitesk верификация мутационное тестирование тестирование тестирование с использованием моделей формальные методы формальные спецификации |
| Title | TLS clients testing |
| URI | https://doaj.org/article/47de7b411ab6441cb592c3c7de531dee |
| Volume | 27 |
| hasFullText | 1 |
| inHoldings | 1 |
| isFullTextHit | |
| isPrint | |
| journalDatabaseRights | – providerCode: PRVAON databaseName: DOAJ Directory of Open Access Journals customDbUrl: eissn: 2220-6426 dateEnd: 20201231 omitProxy: false ssIdentifier: ssj0002507301 issn: 2079-8156 databaseCode: DOA dateStart: 20100101 isFulltext: true titleUrlDefault: https://www.doaj.org/ providerName: Directory of Open Access Journals |
| link | http://cvtisr.summon.serialssolutions.com/2.0.0/link/0/eLvHCXMwrV1LS8NAEF6kePDioyrWFzl40MPSZLNNsscqFgUpxVbobdnZnYogsbTV3-9Mkko9efGYTQiTbybzSHa-EeIqgMscf9fIHWqpMxUkZJ6cIaTgNCSgtK-GTeTDYTGdmtHGqC_eE1bTA9fAdXUeMAedJA44dHvoGeVTT6tkPQGRvW-cm41iin0wBXY2XZ4sRyclU6I0fXOcIXQfx6Pn_pgsJOGGrGt1I82vuLRB31_FmcG-2G0SxKhfC3YgtrBsi7318IWoeRcPRXvyNI78O7czLqMVc2WUr0fiZXA_uXuQzYQD6UkiIzHTMEtjZwCgp3TKdH2YBDfzAQG8IrRi8EhRFIvYQ0igV6BPCzAeKS_T6bFolR8lnogIYzWLIVA6g4b3jDo6qv-z5gWVoaoj5Pr57LwmsrBcADAetsbDMh5W5VZZazrilkH4uZZpqKsFUo5tlGP_Us7pf9zkTOyQYDUJbXIuWqvFJ16Ibf-1elsuLiu9fwNtM66n |
| linkProvider | Directory of Open Access Journals |
| openUrl | ctx_ver=Z39.88-2004&ctx_enc=info%3Aofi%2Fenc%3AUTF-8&rfr_id=info%3Asid%2Fsummon.serialssolutions.com&rft_val_fmt=info%3Aofi%2Ffmt%3Akev%3Amtx%3Ajournal&rft.genre=article&rft.atitle=TLS+clients+testing&rft.jtitle=Trudy+Instituta+sistemnogo+programmirovani%C3%A2&rft.au=A.+V.+Nikeshin&rft.au=N.+V.+Pakulin&rft.au=V.+Z.+Shnitman&rft.date=2018-10-01&rft.pub=Russian+Academy+of+Sciences%2C+Ivannikov+Institute+for+System+Programming&rft.issn=2079-8156&rft.eissn=2220-6426&rft.volume=27&rft.issue=2&rft.spage=145&rft.epage=160&rft_id=info:doi/10.15514%2FISPRAS-2015-27%282%29-9&rft.externalDBID=DOA&rft.externalDocID=oai_doaj_org_article_47de7b411ab6441cb592c3c7de531dee |
| thumbnail_l | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/lc.gif&issn=2079-8156&client=summon |
| thumbnail_m | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/mc.gif&issn=2079-8156&client=summon |
| thumbnail_s | http://covers-cdn.summon.serialssolutions.com/index.aspx?isbn=/sc.gif&issn=2079-8156&client=summon |