Conformance testing of Extensible Authentication Protocol implementations
The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network...
| Main Authors: | , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Ivannikov Institute for System Programming of the Russian Academy of Sciences
2019-02-01
|
| Series: | Труды Института системного программирования РАН |
| Subjects: | |
| Online Access: | https://ispranproceedings.elpub.ru/jour/article/view/1122 |
| _version_ | 1818114707961151488 |
|---|---|
| author | A. V. Nikeshin V. Z. Shnitman |
| author_facet | A. V. Nikeshin V. Z. Shnitman |
| author_sort | A. V. Nikeshin |
| collection | DOAJ |
| description | The paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network protocols based on their formal models. Additional applying of mutation testing allows evaluating the robustness of the implementations to receive incorrect packets. We applied the test suite to several implementations of EAP and present brief results. This approach has proved to be effective in finding several critical vulnerabilities and other specification deviations in the EAP implementations. |
| first_indexed | 2024-12-11T03:55:01Z |
| format | Article |
| id | doaj.art-dde420256aef449588c8dfb1aba2d36e |
| institution | Directory Open Access Journal |
| issn | 2079-8156 2220-6426 |
| language | English |
| last_indexed | 2024-12-11T03:55:01Z |
| publishDate | 2019-02-01 |
| publisher | Ivannikov Institute for System Programming of the Russian Academy of Sciences |
| record_format | Article |
| series | Труды Института системного программирования РАН |
| spelling | doaj.art-dde420256aef449588c8dfb1aba2d36e2022-12-22T01:21:48ZengIvannikov Institute for System Programming of the Russian Academy of SciencesТруды Института системного программирования РАН2079-81562220-64262019-02-013068910410.15514/ISPRAS-2018-30(6)-51121Conformance testing of Extensible Authentication Protocol implementationsA. V. Nikeshin0V. Z. Shnitman1Институт системного программирования им. В.П. Иванникова РАНИнститут системного программирования им. В.П. Иванникова РАН; Московский физико-технический институтThe paper presents a model-based approach to conformance testing of Extensible Authentication Protocol (EAP) implementations. Conformance testing is the basic tool to ensure interoperability between implementations of a protocol. Using UniTESK technology allows automating the verification of network protocols based on their formal models. Additional applying of mutation testing allows evaluating the robustness of the implementations to receive incorrect packets. We applied the test suite to several implementations of EAP and present brief results. This approach has proved to be effective in finding several critical vulnerabilities and other specification deviations in the EAP implementations.https://ispranproceedings.elpub.ru/jour/article/view/1122тестированиеверификацияформальные методыформальные спецификациитестирование с использованием моделейбезопасностьаутентификацияконтроль доступаeapметоды eapuniteskмутационное тестирование |
| spellingShingle | A. V. Nikeshin V. Z. Shnitman Conformance testing of Extensible Authentication Protocol implementations Труды Института системного программирования РАН тестирование верификация формальные методы формальные спецификации тестирование с использованием моделей безопасность аутентификация контроль доступа eap методы eap unitesk мутационное тестирование |
| title | Conformance testing of Extensible Authentication Protocol implementations |
| title_full | Conformance testing of Extensible Authentication Protocol implementations |
| title_fullStr | Conformance testing of Extensible Authentication Protocol implementations |
| title_full_unstemmed | Conformance testing of Extensible Authentication Protocol implementations |
| title_short | Conformance testing of Extensible Authentication Protocol implementations |
| title_sort | conformance testing of extensible authentication protocol implementations |
| topic | тестирование верификация формальные методы формальные спецификации тестирование с использованием моделей безопасность аутентификация контроль доступа eap методы eap unitesk мутационное тестирование |
| url | https://ispranproceedings.elpub.ru/jour/article/view/1122 |
| work_keys_str_mv | AT avnikeshin conformancetestingofextensibleauthenticationprotocolimplementations AT vzshnitman conformancetestingofextensibleauthenticationprotocolimplementations |