Evaluating implementations of SSH by means of model-based testing
نویسنده
چکیده
This thesis presents an evaluation of implementations of the Secure Shell (SSH) protocol by applying model-based testing techniques. In doing so, an evaluation can be given of the techniques themselves when applied to a fairly complex system such as SSH. More specifically, only the server side of the OpenSSH implementation of the SSH transport layer is actually tested and evaluated. However, this can be easily extended to test the client side and/or other implementations. The process of testing and evalution is detailed in order to provide a guide to a) testing the rest of SSH; b) applying model-based testing techniques to similar protocols as SSH.
منابع مشابه
An automatic test case generator for evaluating implementation of access control policies
One of the main requirements for providing software security is the enforcement of access control policies which aim to protect resources of the system against unauthorized accesses. Any error in the implementation of such policies may lead to undesirable outcomes. For testing the implementation of access control policies, it is preferred to use automated methods which are faster and more relia...
متن کاملSecurity testing of session initiation protocol implementations
The mechanisms which enable the vast majority of computer attacks are based on design and programming errors in networked applications. The growing use of voice over IP (VOIP) phone technology makes these phone applications potential targets. We present a tool to perform security testing of VOIP applications to identify security vulnerabilities which can be exploited by an attacker. Session Ini...
متن کاملImproving Protocol State Fuzzing of SSH
With the scale and use of the Internet nowadays, it is crucial that we can effectively test the correctness and security of systems that handle our personal data. In this thesis, we improve upon a previous work by Verleg. Verleg used protocol state fuzzing to test several implementations of the SSH protocol. By adapting a more formal methodology, we achieve higher confidence in our results. We ...
متن کاملAn EFQM Based Model to Assess an Enterprise Readiness for ERP Implementation
In today's competitive market, Enterprise Resource Planning (ERP) system is widely being used by industries. However, the results of the research efforts carried out in this field reveal that the rate of successful implementations for ERP projects is low and in most cases the planned goals are not achieved. Therefore it is necessary to assess maturity of an enterprise in terms of factors affect...
متن کاملLINEAR HYPOTHESIS TESTING USING DLR METRIC
Several practical problems of hypotheses testing can be under a general linear model analysis of variance which would be examined. In analysis of variance, when the response random variable Y , has linear relationship with several random variables X, another important model as analysis of covariance can be used. In this paper, assuming that Y is fuzzy and using DLR metric, a method for testing ...
متن کامل