Formal firewall conformance testing: an application of test and proof techniques

Brucker, Achim D.; Brügger, Lukas; Wolff, Burkhart

doi:10.1002/stvr.1544

Cited by 12 publications

(9 citation statements)

References 33 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Thus, we focus in this section on security testing techniques that allow to find these kind of vulnerabilities. For instance, we exclude techniques for ensuring the security of the underlying infrastructure such as the network configuration, as, e.g., discussed in [15,20] as well as model-based testing techniques (as discussed in Section 5.1) that are in particular useful for finding logical security flaws. While a holistic security testing strategy makes use of all available security testing strategies, we recommend to concentrate efforts first on techniques for the most common vulnerabilities.…”

Section: Application Of Security Testing Techniquesmentioning

confidence: 99%

Security Testing

Felderer

Büchler

Johns

et al. 2016

Advances in Computers

Self Cite

126

View full text Add to dashboard Cite

ReuseThis article is distributed under the terms of the Creative Commons Attribution-NonCommercial-NoDerivs (CC BY-NC-ND) licence. This licence only allows you to download this work and share it with others as long as you credit the authors, but you can't change the article in any way or use it commercially. More information and the full terms of the licence here: https://creativecommons.org/licenses/ Takedown If you consider content in White Rose Research Online to be in breach of UK law, please notify us by emailing eprints@whiterose.ac.uk including the URL of the record and the reason for the withdrawal request. Identifying vulnerabilities and ensuring security functionality by security testing is a widely applied measure to evaluate and improve the security of software. Due to the openness of modern software-based systems, applying appropriate security testing techniques is of growing importance and essential to perform effective and efficient security testing. Therefore, an overview of actual security testing techniques is of high value both for researchers to evaluate and refine the techniques and for practitioners to apply and disseminate them. This chapter fulfills this need and provides an overview of recent security testing techniques. For this purpose, it first summarize the required background of testing and security engineering. Then, basics and recent developments of security testing techniques applied during the secure software development lifecycle, i.e., model-based security testing, code-based testing and static analysis, penetration testing and dynamic analysis, as well as security regression testing are discussed. Finally, the security testing techniques are illustrated by adopting them for an example three-tiered web-based business application.

show abstract

Section: Application Of Security Testing Techniquesmentioning

confidence: 99%

Security Testing

Felderer

Büchler

Johns

et al. 2016

Advances in Computers

Self Cite

126

View full text Add to dashboard Cite

show abstract

“…TypesCodes ::= (0,0) | (3,0) | (3,1) | (3,2) | (3,3) | (3,4) | (3,5) | (3,6) | (3,7) | (3,8) | (3,9) | (3,10) | (3,11) | (3,12) | (3,13) | (3,14) | (3,15) | (4,0) | (5,0) | (5,1) | (5,2) | (5,3) | (6,0) | (8,0) | (9,0) | (9,16) | (10,0) | (11,0) | (11,1) | (12,0) | (12,1) | (12,2)…”

Section: Network Layer Filteringmentioning

confidence: 99%

Reasoning about firewall policies through refinement and composition

Neville

Foley

2018

JCS

View full text Add to dashboard Cite

“…Several papers exist in the literature that focus on the performance analysis of firewalls [6][7][8][9]. Unfortunately, this kind of studies provide mean values of throughput and latency obtained for popular (standard) protocols such as TCP/IP, HTTP, FTP and so on, while they do not take into account those solutions adopted in industrial networks.…”

Section: Industrial Firewallmentioning

confidence: 99%

Performance impact of commercial industrial firewalls on networked control systems

Cheminod

Durante

Valenzano

et al. 2016

2016 IEEE 21st International Conference on Emerging Technologies and Factory Automation (ETFA)

View full text Add to dashboard Cite

The connection of control and process networks to company infrastructures and the Internet, besides offering undeniable advantages, also imposes the adoption of adequate security countermeasures. Specialized firewalls, able to recognize and inspect traffic concerning peculiar communication protocols such as Modbus, which are commonly adopted in industrial applications, are beginning to spread on the market. However, several industrial control systems (ICSs) must satisfy critical performance and timing requirements and the impact of introducing such a kind of devices in an existing network should be evaluated carefully.In this paper we present a simple approach based on ordinary equipment and open source software, which can help system designers and managers to get approximate but useful information about effects produced by including an industrial firewall in their system. The proposed technique, though quite simple, has the advantage of circumventing the need of ad-hoc measurement instrumentation and can be used also by non-experts, virtually with little or no effort, to get rough guess indications about the extent the firewall insertion in the network can be tolerated.

show abstract

Formal firewall conformance testing: an application of test and proof techniques

Cited by 12 publications

References 33 publications

Security Testing

Security Testing

Reasoning about firewall policies through refinement and composition

Performance impact of commercial industrial firewalls on networked control systems

Contact Info

Product

Resources

About