KVEST: Automated Generation of Test Suites from Formal Specifications

Burdonov, Igor; Kossatchev, A. S.; Petrenko, Alexander K.; Galter, Dmitri

doi:10.1007/3-540-48119-2_34

Cited by 28 publications

(11 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For related surveys the reader may refer to [18,1,20,13]. In particular, in the last years an increasing research has been developed on the application of these methods to object oriented software [2].…”

Section: Introductionmentioning

confidence: 99%

Experimental evaluation of FSM-based testing methods

Dorofeeva

El-Fakih

Maag

et al. 2005

Third IEEE International Conference on Software Engineering and Formal Methods (SEFM'05)

View full text Add to dashboard Cite

show abstract

Section: Introductionmentioning

confidence: 99%

Experimental evaluation of FSM-based testing methods

Dorofeeva

El-Fakih

Maag

et al. 2005

Third IEEE International Conference on Software Engineering and Formal Methods (SEFM'05)

View full text Add to dashboard Cite

show abstract

“…Techniques proposed by other researchers might certainly generate smaller test suites [4,1,14] than the testing tree method but will not increase coverage because the smaller test suite is a subset of the that obtained through the testing tree method. The lack of coverage increase as a consequence of executing the implementation against the negative tests is surprising.…”

Section: Discussionmentioning

confidence: 99%

On the Adequacy of Statecharts as a Source of Tests for Cryptographic Protocols

Jayaram

Mathur

2008

2008 32nd Annual IEEE International Computer Software and Applications Conference

View full text Add to dashboard Cite

The effectiveness of statecharts as a tool to express the desired behavior of security protocols and a source of tests for their implementations was investigated. Specifically, TLS protocol was modeled as a statechart and tests generated from its flattened version. The GnuTLS implementation of the protocol was then tested against the generated tests. The MC/DC coverage of different components of the implementation varied from 51% to 81%. A "what if" analysis revealed that while some defects in the uncovered code will not lead to any security vulnerability due to in-built fault tolerance, others might lead to improper authentication, integrity failure, session hijacking, denial of service, and loss of confidentiality. The analysis suggests that statecharts alone might not be an adequate tool as a source of tests for implementations of security protocols and that tests so generated must be augmented through other formal means such as random testing, stress testing, and code coverage analysis.

show abstract

“…The first such results are related with KVEST [7], a method for test generation based on formal specifications of functional behavior in form of software contracts, used to construct several test suites for real-time OS developed and maintained by Nortel Networks.…”

Section: Testing and Dynamic Analysismentioning

confidence: 99%

Verification of Operating System Components

Kuliamin¹,

Petrenko²,

Хорошилов³

2017

Self Cite

View full text Add to dashboard Cite

The paper concerns recent advances in reaching the goal of industrial operating system (OS) verification. By industrial OS we mean a system actively used in some industrial domain, elaborated and maintained for a significant time, not a proof-of-concept OS developed with mostly research intentions. We consider decomposition of this goal into tasks related with various functional components of OS and various properties under verification, and application of different verification methods to those tasks. This is a trial to explicate and summarize the experience of several projects on various OS components and different OS features verification conducted in ISP RAS.

show abstract

KVEST: Automated Generation of Test Suites from Formal Specifications

Cited by 28 publications

References 6 publications

Experimental evaluation of FSM-based testing methods

Experimental evaluation of FSM-based testing methods

On the Adequacy of Statecharts as a Source of Tests for Cryptographic Protocols

Verification of Operating System Components

Contact Info

Product

Resources

About