genericity of a model based intrusion testing method
play

Genericity of a model- based intrusion testing method Aymerick - PowerPoint PPT Presentation

Dec 17, 2022 •155 likes •404 views

Genericity of a model- based intrusion testing method Aymerick Savary 1,2 , Mathieu Lassale 1,2 Jean-Louis Lanet 1 , Marc Frappier 2 SDTA, december 2014, Auvergne, France 1 Universit de Limoges 2 Universit de Sherbrooke Genericity of a

  1. Genericity of a model- based intrusion testing method Aymerick Savary 1,2 , Mathieu Lassale 1,2 Jean-Louis Lanet 1 , Marc Frappier 2 SDTA, december 2014, Auvergne, France 1 Université de Limoges 2 Université de Sherbrooke Genericity of a model-based intrusion testing method SDTA 2014 1 /14

  2. Outline I. VTG method I.1) Mutation of Event-B I.2) Event-B and UML II. Case Studies II.1) Byte Code Verifier II.2) EMV Payment Protocol III. Conclusions and Future Works Genericity of a model-based intrusion testing method SDTA 2014 2 /14

  3. Outline I. VTG method I.1) Mutation of Event-B I.2) Event-B and UML II. Case Studies II.1) Byte Code Verifier II.2) EMV Payment Protocol III. Conclusions and Future Works Genericity of a model-based intrusion testing method SDTA 2014 3 /14

  4. Model-Based Testing Model FM Formal FM Abstract FM Based model Tests Testing Selection Criterias We could only extract the modeled behaviors. Genericity of a model-based intrusion testing method SDTA 2014 4 /14

  5. Model-Based Testing We don’t want to model Model FM Formal FM Abstract FM Based model Tests Testing a specific attack. Selection Criterias We could only extract the modeled behaviors. Genericity of a model-based intrusion testing method SDTA 2014 4 /14

  6. Specification Mutation Genericity of a model-based intrusion testing method SDTA 2014 5 /14

  7. Specification Mutation Genericity of a model-based intrusion testing method SDTA 2014 5 /14

  8. Specification Mutation Genericity of a model-based intrusion testing method SDTA 2014 5 /14

  9. Specification Mutation Genericity of a model-based intrusion testing method SDTA 2014 5 /14

  10. VTG Big Picture Model FM FM Formal Formal Specification FM FM Mutants Abstract FM FM Based model model Mutation Models Tests Testing Mutation Selection Rules Criterias Genericity of a model-based intrusion testing method SDTA 2014 6 /14

  11. VTG Big Picture Model FM FM Formal Formal Specification FM FM Mutants Abstract FM FM Based model model Mutation Models Tests Testing Mutation Selection Rules Criterias Abstract FM FM Model Faulty FM FM Model Abstract FM FM Test Mutation Models Tests Generation VTG [Savary, A., Frappier, M., & Lanet, J. (2013). Detecting Vulnerabilities in Java-Card Bytecode Verifiers Using Model-Based Testing. Integrated Formal Methods] Genericity of a model-based intrusion testing method SDTA 2014 6 /14

  12. Event-B Models Static Dynamic Genericity of a model-based intrusion testing method SDTA 2014 7 /14

  13. Event-B Models Static Dynamic Genericity of a model-based intrusion testing method SDTA 2014 7 /14

  14. Event-B and UML Genericity of a model-based intrusion testing method SDTA 2014 8 /14

  15. Event-B and UML Genericity of a model-based intrusion testing method SDTA 2014 8 /14

  16. Outline I. VTG method I.1) Mutation of Event-B I.2) Event-B and UML II. Case Studies II.1) Byte Code Verifier II.2) EMV Payment Protocol III. Conclusions and Future Works Genericity of a model-based intrusion testing method SDTA 2014 9 /14

  17. Byte Code Verifier Genericity of a model-based intrusion testing method SDTA 2014 10 /14

  18. Byte Code Verifier Genericity of a model-based intrusion testing method SDTA 2014 10 /14

  19. Byte Code Verifier Genericity of a model-based intrusion testing method SDTA 2014 10 /14

  20. Byte Code Verifier Genericity of a model-based intrusion testing method SDTA 2014 10 /14

  21. Mutation of Contexts Genericity of a model-based intrusion testing method SDTA 2014 11 /14

  22. EMV Payment Protocol ! Genericity of a model-based intrusion testing method SDTA 2014 12 /14

  23. Experimental Results (TV BCV) Profondeur Temps de Nb tests Vitesse Vitesse de recherche g´ en´ eration ( s ) ( nb / 1 s ) ( nb / 1 min ) 2 53,6 2 0,037 2 3 148,7 30 0,202 12,1 4 1380,2 432 0,313 17,7 5 11286,7 10133 0,898 53,9 * 5283,0 7308 1,393 83,0 ⇔ Profondeur 2 3 4 5 * Temps 0,8s 9,9s 1min30 1h 48min Genericity of a model-based intrusion testing method SDTA 2014 13 /14

  24. Conclusions and Future Works I. Conclusions I.1) VTG work with context mutation I.2) VTG working with UML II. Future Works II.1) Improve MBT in ProB II.2) Concrete tests for EMV Genericity of a model-based intrusion testing method SDTA 2014 14 /14

Recommend

Contents What is genericity? Alternatives: Genericity and its Implementation

Contents What is genericity? Alternatives: Genericity and its Implementation

Contents What is genericity? Alternatives: Genericity and its Implementation multiple instantiation casting Checking correctness of generic types at Meyer Chapter 10, 16.4 definition: constrained genericity Subtyping

292 views • 6 slides
The Promise of Model-Based Testing The Promise of Model-Based Testing Presented by: Mahesh

The Promise of Model-Based Testing The Promise of Model-Based Testing Presented by: Mahesh

T17 Concurrent Session Thursday 05/08/2008 3:00 PM The Promise of Model-Based Testing The Promise of Model-Based Testing Presented by: Mahesh Velliyur Maveric Testing Solutions Presented at: STAR EAST Software Testing Analysis & Review

582 views • 30 slides
Model-based Intrusion Detec3on System (IDS) for Smart Meters

Model-based Intrusion Detec3on System (IDS) for Smart Meters

Model-based Intrusion Detec3on System (IDS) for Smart Meters Karthik Pa*abiraman and Farid Tabrizi Dependable Systems Lab University of Bri3sh Columbia

626 views • 40 slides
Model-based Testing Model-based Testing Gordon Fraser Saarland University Gordon Fraser

Model-based Testing Model-based Testing Gordon Fraser Saarland University Gordon Fraser

Model-based Testing Model-based Testing Gordon Fraser Saarland University Gordon Fraser Saarland University Slides by Lars Frantzen Conformance Testing specifies Model System System conforms to Test Generation Test Execution Test

1.71k views • 143 slides
How Time Variability of Testing the Model Current Map with 8 . . . Testing the Model . . .

How Time Variability of Testing the Model Current Map with 8 . . . Testing the Model . . .

How Temperatures . . . A Model (cont-d) Model: Final Formulas How Time Variability of Testing the Model Current Map with 8 . . . Testing the Model . . . Temperature Depends on a Testing the Model: . . . Testing the Model: . . . Spatial

493 views • 9 slides
Model-based Testing Part 1 Prof. Dr.-Ing. Ina Schaefer SFM:ESM - Bertinoro - 18 June 2014

Model-based Testing Part 1 Prof. Dr.-Ing. Ina Schaefer SFM:ESM - Bertinoro - 18 June 2014

Platzhalter fr Bild, Bild auf Titelfolie hinter das Logo einsetzen Model-based Testing Part 1 Prof. Dr.-Ing. Ina Schaefer SFM:ESM - Bertinoro - 18 June 2014 Contents Part 1: Foundations of Testing and Model-based Testing Fundamental

1.46k views • 98 slides
Black Box Testing (A&O Ch. 4) (2 nd Ed. Ch. 6) Course Software Testing & Verification

Black Box Testing (A&O Ch. 4) (2 nd Ed. Ch. 6) Course Software Testing & Verification

Black Box Testing (A&O Ch. 4) (2 nd Ed. Ch. 6) Course Software Testing & Verification 2019/20 Wishnu Prasetya & Gabriele Keller Plan Partitioning based testing (A&O Ch 4/2 nd Ed Ch. 6). Model based testing Note: black

772 views • 39 slides
Intrusion Detection Distributed Host-Based Network-Based ITS335: IT Security Honeypots

Intrusion Detection Distributed Host-Based Network-Based ITS335: IT Security Honeypots

ITS335 Intrusion Detection Intruders Intrusion Detection Host-Based Intrusion Detection Distributed Host-Based Network-Based ITS335: IT Security Honeypots Summary Sirindhorn International Institute of Technology Thammasat University

585 views • 30 slides
Bootstrap method and its application to the hypothesis testing in GPS mixed integer linear model

Bootstrap method and its application to the hypothesis testing in GPS mixed integer linear model

EGU General Assembly 2009 Geodtisches Institut Universitt Stuttgart Bootstrap method and its application to the hypothesis testing in GPS mixed integer linear model Jianqing Cai 1 , Erik W. Grafarend 1 and Congwei Hu 2 1 Institute of

545 views • 27 slides
Chapter 10 Retrospective on Unit Testing Software Testing: A Craftsman s Approach, 4 th

Chapter 10 Retrospective on Unit Testing Software Testing: A Craftsman s Approach, 4 th

Chapter 10 Retrospective on Unit Testing Software Testing: A Craftsman s Approach, 4 th Edition Chapter 10 Retrospective The Test Method Pendulum Code-based Spec-based Testing Testing Boundary Path Equivalence Value Decision Dataflow

537 views • 32 slides
Signature Based Intrusion Detection Systems Philip Chan CS 598 MCC Spring 2013 Intrusion

Signature Based Intrusion Detection Systems Philip Chan CS 598 MCC Spring 2013 Intrusion

Signature Based Intrusion Detection Systems Philip Chan CS 598 MCC Spring 2013 Intrusion Detection Systems Detect malicious Raise alarms activities/attacks Alert administrators Hacking/ unauthorized access Trigger defense

217 views • 21 slides
Model Generation Method 2ai The Model Generation (MG) method is an easy method for humans to

Model Generation Method 2ai The Model Generation (MG) method is an easy method for humans to

Model Generation Method 2ai The Model Generation (MG) method is an easy method for humans to apply, but it has not been so widely implemented as DP. Similar to DP, MG returns True if given clauses are satisfiable . AUTOMATED REASONING MG

79 views • 7 slides
Model-Based Conformance Testing of Software Product Lines 23rd CREST Open Workshop Malte Lochau,

Model-Based Conformance Testing of Software Product Lines 23rd CREST Open Workshop Malte Lochau,

Model-Based Conformance Testing of Software Product Lines 23rd CREST Open Workshop Malte Lochau, Real-Time Systems Lab, TU Darmstadt Nov. 20th, 2012 Model-Based Testing [UL07] test model (tm) conforms? i k , . . . , i 2 , i 1 iut o 1 , o 2 ,

852 views • 53 slides
Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela

Model-Based Security M. Ochoa Verification and Testing for F. Bouquet Smart-Cards J. Bottela E.Fourneret J.Jurjens P. Yousefi ARES 2011 OUTLINE Introduction Background UMLsec Model-based Testing Security in smart-card

356 views • 17 slides
1 Outline Problem Setting Instance-Based vs. Model-Based Model-Based Algorithms

1 Outline Problem Setting Instance-Based vs. Model-Based Model-Based Algorithms

1 Outline Problem Setting Instance-Based vs. Model-Based Model-Based Algorithms Estimation of Distribution Algorithms (EDAs) Cross-Entropy (CE) Method Model Reference Adaptive Search (MRAS) Convergence of MRAS

367 views • 34 slides
Tableau-based decision method for testing satisfiability of the linear temporal logic LTL

Tableau-based decision method for testing satisfiability of the linear temporal logic LTL

Tableau-based decision method for testing satisfiability of the linear temporal logic LTL Valentin Goranko DTU Informatics November 2010 V Goranko Tableau for LTL: introduction The tableau method for LTL searches systematically for a linear

629 views • 48 slides
Testing Model Tranformations Bottom Up and Top Down Amr Al Mallah Testing Model Transformation

Testing Model Tranformations Bottom Up and Top Down Amr Al Mallah Testing Model Transformation

Testing Model Tranformations Bottom Up and Top Down Amr Al Mallah Testing Model Transformation 1. Model Transformations frameworks : 1.1 MoTif in context of Traffic 2 Petri Net. 2. Testing this Model transformation : 2.1. T-Unit approach

567 views • 34 slides
NUMBER and asymmetric conceptual connections in genericity E. Matthew Husband Kim Fuellenbach

NUMBER and asymmetric conceptual connections in genericity E. Matthew Husband Kim Fuellenbach

NUMBER and asymmetric conceptual connections in genericity E. Matthew Husband Kim Fuellenbach The Generic Notebook 2 Current Approaches to Genericity Morphosyntax and generalization 1. Chicken is considered a (Bare Singular) delicacy in

834 views • 55 slides
Building a provenance-based intrusion detection system Thomas Pasquier, University of Bristol

Building a provenance-based intrusion detection system Thomas Pasquier, University of Bristol

Building a provenance-based intrusion detection system Thomas Pasquier, University of Bristol Toshiba, 26/11/2020 1 Talk loosely based on following publications Han et al. UNICORN: Revisiting Host-Based Intrusion Detection in the Age of

783 views • 55 slides
Model-Based Testing There is Nothing More Practical than a Good Theory model Jan Tretmans SUT

Model-Based Testing There is Nothing More Practical than a Good Theory model Jan Tretmans SUT

Model-Based Testing There is Nothing More Practical than a Good Theory model Jan Tretmans SUT ESI Embedded Systems Innovation by TNO Radboud University Nijmegen Hgskolan i Halmstad pass fail jan.tretmans@tno.nl Jan Tretmans Radboud

963 views • 64 slides
Second Generation Model-based Testing Provably Strong Testing Methods for the Certification of

Second Generation Model-based Testing Provably Strong Testing Methods for the Certification of

CyPhyAssure Spring School Second Generation Model-based Testing Provably Strong Testing Methods for the Certification of Autonomous Systems Part II of III Provably Strong Testing Methods for Autonomous Systems Jan Peleska University of Bremen

634 views • 51 slides
Towards Model-Based Testing of Domain-Specific Modelling Languages J. Merilinna, Olli-Pekka

Towards Model-Based Testing of Domain-Specific Modelling Languages J. Merilinna, Olli-Pekka

Towards Model-Based Testing of Domain-Specific Modelling Languages J. Merilinna, Olli-Pekka Puolitaival, J. Prssinen VTT TECHNICAL RESEARCH CENTRE OF FINLAND Index Testing Domain-Specific Modelling Languages (DSML) Model-Based

468 views • 20 slides
Constrained approximate search in misuse-based intrusion detection Ambika Shrestha Chitrakar

Constrained approximate search in misuse-based intrusion detection Ambika Shrestha Chitrakar

Constrained approximate search in misuse-based intrusion detection Ambika Shrestha Chitrakar Supervisor: Prof. Slobodan Petrovic FINSE 10th of may 2017 Contents Introduction Snort: a misuse-based intrusion detection Problem

247 views • 14 slides
MEASUREMENT OF SURFACE ENERGY OF RECYCLED CARBON FIBRES USING A CAPILLARY INTRUSION METHOD

MEASUREMENT OF SURFACE ENERGY OF RECYCLED CARBON FIBRES USING A CAPILLARY INTRUSION METHOD

18 TH INTERNATIONAL CONFERENCE ON COMPOSITE MATERIALS MEASUREMENT OF SURFACE ENERGY OF RECYCLED CARBON FIBRES USING A CAPILLARY INTRUSION METHOD Guozhan Jiang, Stephen J Pickering Division of Materials, Mechanics and Structures, University of

81 views • 6 slides

More recommend