Test Case Generation for Firewall Testing
نویسنده
چکیده
Tugkan Tuglular Dept. of Computer Engineering, Izmir Institute of Technology, Izmir, Turkey [email protected] Firewall tests have to be performed to verify that the firewall works as specified. In this work, a test case generation approach is developed, which defines test cases based on the firewall rule sequence and uses real traffic database to prepare test packets. Test packets can be used or injected to check if the firewall implementation is erroneous, i.e. the rules do not correspond to the actions of the firewall. Although injection based firewall testing is accepted as an inefficient way of testing firewall implementations in the literature [1], there has been no alternative method developed yet. Most of the academic work focuses on testing of firewall rules where firewall implementation is assumed error-free. Even if firewall implementation is errorfree, a firewall can be hacked and programmed to behave differently from the intended security policy. In that case, real time injection based testing is one of the ways to reveal the security breach.
منابع مشابه
Test-Sequence Generation with Hol-TestGen with an Application to Firewall Testing
HOL-TestGen is a specification and test case generation environment extending the interactive theorem prover Isabelle/HOL. Its method is two-staged: first, the original formula is partitioned into test cases by transformation into a normal form called test theorem. Second, the test cases are analyzed for ground instances (the test data) satisfying the constraints of the test cases. Particular e...
متن کاملFormal firewall conformance testing: an application of test and proof techniques
fo r yo ur pe rs on al us e. N ot fo r re di st rib ut io n. Th e de fin iti ve ve rs io n w as pu bl is he d in So ftw ar e Te st in g, Ve ri fic at io n & Re lia bi lit y (S TV R) ,p p. 1– 40 ,2 01 4. SOFTWARE TESTING, VERIFICATION AND RELIABILITY Softw. Test. Verif. Reliab. 2014; 00:1–40 Published online in Wiley InterScience (www.interscience.wiley.com). DOI: 10.1002/stvr Formal Firewall Co...
متن کاملModel-Based Firewall Conformance Testing
Firewalls are a cornerstone of todays security infrastructure for networks. Their configuration, implementing a firewall policy, is inherently complex, hard to understand, and difficult to validate. We present a substantial case study performed with the model-based testing tool HOL-TestGen. Based on a formal model of firewalls and their policies in higher-order logic (HOL), we first present a d...
متن کاملAn Environment for Specification-Based Firewall Conformance Testing
The HOL-TestGen environment is conceived as a system for modeling and semi-automated test generation with an emphasis on expressive power and generality. However, its underlying technical framework Isabelle/HOL supports the customization as well as the development of highly automated add-ons working in specific application domains. In this paper, we present HOL-TestGen/fw, an add-on for the tes...
متن کاملhol-TestGen/fw - An Environment for Specification-Based Firewall Conformance Testing
The HOL-TestGen environment is conceived as a system for modeling and semi-automated test generation with an emphasis on expressive power and generality. However, its underlying technical framework Isabelle/HOL supports the customization as well as the development of highly automated add-ons working in specific application domains. In this paper, we present HOL-TestGen/fw, an add-on for the tes...
متن کامل