Model-Based Security Vulnerability Testing

Salas, P.A.P.; Krishnan, Padmanabhan; Ross, Kelvin

doi:10.1109/aswec.2007.31

Cited by 18 publications

(5 citation statements)

References 16 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Regarding functional security testing, Martin [56] provides an automated test generation method to test the correctness of access control policies. Nonfunctional security testing is addressed by Salas et al [57]. Since many IT systems communicate via the Internet, there are numerous MBST approaches for web applications [58], [59].…”

Section: A Related Workmentioning

confidence: 99%

Survey of Model-Based Security Testing Approaches in the Automotive Domain

2023

View full text Add to dashboard Cite

Modern connected or autonomous vehicles (AVs) are highly complex cyber-physical systems. As a result of the high number of different technologies and connectivity features involved, testing these systems to identify security vulnerabilities is a big challenge. Security testing techniques, such as penetration testing, are often manual methods that are applied comparatively late in the vehicle development process. Thus, vulnerabilities are only detected late or after development, leading to higher costs and more patching effort. To reduce the amount of testing resources in general and enable early and automated testing, modelbased testing methods have been established in several domains, such as information technology and the automotive domain. The transfer of model-based testing approaches to automotive security testing could help to detect vulnerabilities earlier than other, manual methods by automatically generating, executing, or simulating security tests. In this study, we review the literature on model-based test approaches in the automotive domain. First, we consider security-independent approaches to obtain an overview of applied models, formalisms, test selection criteria, and test generation techniques. In addition, we investigate, whether and how model-based approaches are applied for automotive security testing. Overall, we identified 63 publications related to model-based testing and 29 publications with regard to model-based security testing. The aim of this study is to provide an overview and direct comparison between these approaches. In this manner, the state of model-based security testing in the automotive domain, current challenges, and potential research areas are determined. INDEX TERMSAutomotive security, model-based testing, model-based security testing.

show abstract

Section: A Related Workmentioning

confidence: 99%

Survey of Model-Based Security Testing Approaches in the Automotive Domain

2023

View full text Add to dashboard Cite

show abstract

“…Furthermore, the tour over the state machine can be artificially modified using mutation, as Hierons and Merayo do. 17 Executing operations in an order different than the expected one may discover unknown errors in the SUT, hidden behind an incomplete specification: Salas et al, 18 for example, already faced this problem in a work about cybersecurity. In the context of user interface testing, 19 Belli also generates "faulty interactions," which are sequences of events which are not considered in the state machine.…”

Section: Ormentioning

confidence: 99%

Automated generation of oracled test cases with regular expressions and combinatorial techniques

Polo

Pedreira

Places

et al. 2020

J Software Evolu Process

View full text Add to dashboard Cite

One of the main challenges of software testing research is the automated addition of oracles to the generated test cases: Whereas the automated generation of operation sequences (which is one of the essential components of test cases) is in practice a solved problem, the automated addition of the oracle (another indispensable element) is still an important problem and an open research question. This article proposes an approach to get executable test suites composed by complete test cases (i.e., they include the oracle). The core of the method is based on annotated regular expressions. The test generation process, which is supported by a tool, follows three steps: (1) creation of annotated regular expressions, where each regular expression describes a set of sequences of operations to be executed against the system under test; (2) expansion of the regular expressions to get sequences of operations, which still do not have parameter values; and (3) generation of the executable test cases with oracle. In this third step, each test case is generated with the suitable oracle, depending on the conditions specified in the regular expression.

show abstract

“…;Xieetal.,2011;Zheng&Zhang,2013;Almorsyetal., 2012).ProtectionofLDAP-enabledwebapplicationsinvolvessignificanteffortfortheadministrators anddevelopers.Ourworkisalsomotivatedbyeffortsthatapplyfaultinjection (Fonseca,Vieira,& Madeira,2007;Vignaetal.,2004;Tal,Knight,&Dean,2004;Kieżun,Guo,Jayaraman,&Ernst, 2008;Ghosh&Kelly,n.d. ;Fouque,Leresteux,&Valette,2012;Voas,2000;Salas,Krishnan,&Ross, 2007;Grela,Sapiecha,&Strug,2015;Aichernig,&Salas,2005).Wediscussrelatedworkintwo categories:LDAPInjectionmitigationapproachesandfaultinjection-basedapproaches.…”

Section: Related Workmentioning

confidence: 99%

LDAP Vulnerability Detection in Web Applications

Shahriar

Haddad

Bulusu

2017

International Journal of Secure Software Engineering

View full text Add to dashboard Cite

Lightweight Directory Access Protocol (LDAP) is commonly used in web applications to provide lookup information and enforcing authentication. Web applications may suffer from LDAP injection vulnerabilities that can lead to security breaches such as login bypass and privilege escalation. This paper1 proposes OCL fault injection-based detection of LDAP injection attacks. The authors extract design-level information and constraints expressed in OCL and then randomly alter them to generate test cases that have the capability to uncover LDAP injection vulnerabilities. The authors proposed approaches to implement test case generation, and they used one open source PHP application and one custom application to evaluate the proposed approach. The analysis shows that this approach can detect LDAP injection vulnerabilities.

show abstract

Model-Based Security Vulnerability Testing

Cited by 18 publications

References 16 publications

Survey of Model-Based Security Testing Approaches in the Automotive Domain

Survey of Model-Based Security Testing Approaches in the Automotive Domain

Automated generation of oracled test cases with regular expressions and combinatorial techniques

LDAP Vulnerability Detection in Web Applications

Contact Info

Product

Resources

About