Passive Testing of Timed Systems

Andrés, César; Merayo, Mercedes G.; Núñez, Manuel

doi:10.1007/978-3-540-88387-6_36

Cited by 18 publications

(23 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the other hand, passive testing [1], [4], [6] consists in observing the exchange of messages (input and output events) of an implementation under test during run-time. The term passive means that the tests do not disturb the natural operation of the protocol.…”

Section: A Passive Versus Active Testing Methodologiesmentioning

confidence: 99%

Practical Experience Gained from Passive Testing of Web Based Systems

Bagnato

Raiteri

Mallouli

et al. 2010

2010 Third International Conference on Software Testing, Verification, and Validation Workshops

View full text Add to dashboard Cite

In recent years Web-based systems have become extremely popular and, nowadays, they are used in critical environments such as financial, medical, and military systems. As the use of Web applications for security-critical services has increased, the number and sophistication of attacks against these applications have grown as well. For this reason it is essential to be able to prove that the target Web-based system implements its designed security requirements avoiding known vulnerabilities in HTTP-based solutions. To reach this aim, we can rely on several testing techniques and mainly on security passive testing approach that is becoming increasingly important to security-relevant aspects into web based software systems. This article describes the application of the TestInv-P passive testing tool as part of the testing phase of TXT etourism Web application. TestInv-P is a passive testing tool that monitors communication traces of an application during run-time and verifies whether it satisfies certain securityrelated invariants derived from SHIELDS models. 1

show abstract

Section: A Passive Versus Active Testing Methodologiesmentioning

confidence: 99%

Practical Experience Gained from Passive Testing of Web Based Systems

Bagnato

Raiteri

Mallouli

et al. 2010

2010 Third International Conference on Software Testing, Verification, and Validation Workshops

View full text Add to dashboard Cite

show abstract

“…Andrés et al [5] proposed a formal framework to perform passive testing of distributed systems, assuming that the formal specifications of both the web services and the interaction between them are given. The specifications are modeled by timed automata and the properties are expressed as invariants.…”

Section: Related Workmentioning

confidence: 99%

Monitoring Based on IOSTS for Testing Functional and Security Properties: Application to an Automotive Case Study

Mouttappa

Maag

Cavalli

2013

2013 IEEE 37th Annual Computer Software and Applications Conference

View full text Add to dashboard Cite

Monitoring for passive conformance testing is a way of checking if the system meets its requirements. Several formal approaches have been proposed these last years, but most of them only consider the control portion of the protocol neglecting the data portions, or are confronted with an overloaded amount of data values to consider. In this work, we propose a novel approach to define protocol properties in terms of Input-Output Symbolic Transition Systems (IOSTS) and show how they can be tested on real execution traces taking into account the data and control portions. These properties can be designed to test the conformance of a protocol as well as security aspects. A parametric trace slicing approach is defined to match trace and property. Besides, a prototype is here developed and experimented. Our approach is illustrated by its application to a set of real execution traces extracted from a real automotive Bluetooth framework with functional and security properties.

show abstract

“…In the former, the passive tester tries to detect a fault during the execution of the system [29,70], whereas, in the latter, the evaluation of the system is done by collecting the recorded traces [65,1,4,84].…”

Section: Passive Testingmentioning

confidence: 99%