Conformance testing of Extensible Authentication Protocol implementations
| Autor: | A.V. Nikeshin, V.Z. Shnitman |
|---|---|
| Rok vydání: | 2018 |
| Předmět: |
контроль доступа
Computer science business.industry формальные методы безопасность аутентификация eap unitesk мутационное тестирование lcsh:QA75.5-76.95 верификация тестирование с использованием моделей методы eap Embedded system General Earth and Planetary Sciences тестирование lcsh:Electronic computers. Computer science формальные спецификации Extensible Authentication Protocol business Conformance testing Implementation General Environmental Science |
| Zdroj: | Труды Института системного программирования РАН, Vol 30, Iss 6, Pp 89-104 (2019) |
| ISSN: | 2220-6426 2079-8156 |
| DOI: | 10.15514/ispras-2018-30(6)-5 |
| Popis: | The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network protocols based on their formal models. Additional applying of mutation testing allows evaluating the robustness of the implementations to receive incorrect packets. We applied the test suite to several implementations of EAP and present brief results. This approach has proved to be effective in finding several critical vulnerabilities and other specification deviations in the EAP implementations. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|