pdfreaders.org

Model-based Firewall Conformance Testing

by Achim D. Brucker, Lukas Brügger, and Burkhart Wolff

Cover for brucker.ea:model-based:2008.Firewalls are a cornerstone of todays security infrastructure for networks. Their configuration, implementing a firewall policy, is inherently complex, hard to understand, and difficult to validate.

We present a substantial case study performed with the model-based testing tool HOL-TestGen. Based on a formal model of firewalls and their policies in HOL, we first present a derived theory for simplifying policies. We discuss different test plans for test specifications. Finally, we show how to integrate these issues to a domain-specific firewall testing tool HOL-TestGen/FW.

Keywords: Security Testing, Model-based Testing, Firewall, Conformance Testing
Categories: ,
Documents: (full text as PDF file)

QR Code for brucker.ea:model-based:2008.Please cite this article as follows:
Achim D. Brucker, Lukas Brügger, and Burkhart Wolff. Model-based Firewall Conformance Testing. In Testcom/FATES 2008. Lecture Notes in Computer Science (5047), pages 103-118, Springer-Verlag, 2008.
Keywords: Security Testing, Model-based Testing, Firewall, Conformance Testing
(full text as PDF file) (BibTeX) (Endnote) (RIS) (Word) (doi:10.1007/978-3-540-68524-1_9) (Share article on LinkedIn. Share article on CiteULike. )

BibTeX
@InCollection{ brucker.ea:model-based:2008,
abstract = {Firewalls are a cornerstone of todays security infrastructure for networks. Their configuration, implementing a firewall policy, is inherently complex, hard to understand, and difficult to validate.\\\\We present a substantial case study performed with the model-based testing tool HOL-TestGen. Based on a formal model of firewalls and their policies in HOL, we first present a derived theory for simplifying policies. We discuss different test plans for test specifications. Finally, we show how to integrate these issues to a domain-specific firewall testing tool HOL-TestGen/FW.},
address = {Heidelberg},
author = {Achim D. Brucker and Lukas Br{\"u}gger and Burkhart Wolff},
booktitle = {Testcom/FATES 2008},
doi = {10.1007/978-3-540-68524-1_9},
editor = {Kenji Suzuki and Teruo Higashino},
keywords = {Security Testing, Model-based Testing, Firewall, Conformance Testing},
language = {USenglish},
location = {Tokyo, Japan},
number = {5047},
pages = {103--118},
pdf = {https://www.brucker.ch/bibliography/download/2008/brucker.ea-model-based-2008.pdf},
publisher = {Springer-Verlag},
series = {Lecture Notes in Computer Science},
title = {Model-based Firewall Conformance Testing},
url = {https://www.brucker.ch/bibliography/abstract/brucker.ea-model-based-2008},
year = {2008},
}