Title :
Protocol-Based Testing of Firewalls
Author :
Tuglular, Tugkan ; Belli, Fevzi
Author_Institution :
Dept. of Comput. Eng., Izmir Inst. of Technol., Izmir, Turkey
Abstract :
A firewall is the most important tool of network security defense. Its proper functioning is critical to the network it protects. Therefore a firewall should be tested rigorously with respect to its implemented network protocols and security policy specification. We propose a combined approach for test case generation to uncover errors both in firewall software and in its configuration. In the proposed approach, abstract test cases are generated by mutating event sequence graph model of chosen network protocol and filled with values from policy specification by using equivalence partitioning and boundary value analysis. A case study is presented to validate the presented approach.
Keywords :
boundary-value problems; computer network security; program testing; protocols; boundary value analysis; firewall software; network protocols; network security defense; protocol based firewalls testing; security policy specification; Automatic testing; Computer networks; Computer security; Concrete; Genetic mutations; Information security; Performance evaluation; Protection; Protocols; Robustness; conformance testing; firewalls; mutation testing; protocol robustness testing; testing;
Conference_Titel :
Formal Methods (SEEFM), 2009 Fourth South-East European Workshop on
Conference_Location :
Thessalonihi
Print_ISBN :
978-1-4244-5617-8
Electronic_ISBN :
978-1-4244-5618-5
DOI :
10.1109/SEEFM.2009.14
