Conformance testing of Extensible Authentication Protocol implementations

The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network...

Full description

Bibliographic Details
Published in:Труды Института системного программирования РАН
Main Authors: A. V. Nikeshin, V. Z. Shnitman
Format: Article
Language:English
Published: Russian Academy of Sciences, Ivannikov Institute for System Programming 2019-02-01
Subjects:
тестирование
верификация
формальные методы
формальные спецификации
тестирование с использованием моделей
безопасность
аутентификация
контроль доступа
eap
методы eap
unitesk
мутационное тестирование
Online Access:https://ispranproceedings.elpub.ru/jour/article/view/1122
Description
Summary:The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network protocols based on their formal models. Additional applying of mutation testing allows evaluating the robustness of the implementations to receive incorrect packets. We applied the test suite to several implementations of EAP and present brief results. This approach has proved to be effective in finding several critical vulnerabilities and other specification deviations in the EAP implementations.
ISSN:2079-8156
2220-6426

Similar Items