Presentation is loading. Please wait.

Presentation is loading. Please wait.

Automated security testing with Flinder SEARCH-LAB Security Evaluation Analysis and Research Laboratory Ltd.

Published byAmanda Stearn Modified over 9 years ago

Similar presentations

Presentation on theme: "Automated security testing with Flinder SEARCH-LAB Security Evaluation Analysis and Research Laboratory Ltd."— Presentation transcript:

1 Automated security testing with Flinder SEARCH-LAB Security Evaluation Analysis and Research Laboratory Ltd.

2 Danger of programming bugs
“Every interesting program contains at least one variable, at least one cycle and at least one bug.” – Murphy’s law Global security danger of programming bugs Automated intrusions Virus spreading With the help of cracked computers it is possible to operate illegal web servers distribute spam carry out phishing commit credit card fraud Any application can contain a bug! Automated security testing with Flinder

3 Exploitable security holes
Security testing Programming bugs Security-relevant programming bugs FLINDER Typical security-relevant programming bugs Exploitable security holes Automated security testing with Flinder

4 Automated testing and verification
Formal verification Requires the specification of correct behavior Static source code analysis Complexity problems Many false positives Test-based evaluation Test vector generation Detection of typical bugs Detects true positives, but not necessarily all Can be used without the source code Automated security testing with Flinder

5 Black-box & white-box testing
Black-box testing Analysis of concrete protocols Complex description of the input Fuzzing: manipulation of existing input Less and scalable customization needs White-box testing Test vector generation based on source code evaluation Fault injection Automated security testing with Flinder

6 Looks for typical security-relevant programming bugs
Flinder features Looks for typical security-relevant programming bugs Test-based evaluation Black-box and white-box test modes From applications to complex protocols Required from the developer Input Generator – according to the correct behavior Input format description (XML-based) Protocol Statechart (UML state machine) Re-usable generic test algorithms for typical bugs Proactive, multiple-step testing considering former reactions of the ToE Cryptographic support Plug-ins for cipher and compression methods Automated security testing with Flinder

7 Fuzzing... By definition: fuzzing is algorithmic modification of binary input Fuzzing based on descriptors Random fuzzing Reactively iterating fuzzing Different fuzzers Conformance checking Stress test Testing typical mistakes Automated security testing with Flinder

8 ... and more Flinder can Parse and serialize protocol messages
Decode and encode cryptograms, compressed data Follow complex protocols like IPSec, TCP, SSL Test Logic works on field level Generic test algorithms can be applied for different ToEs, protocols, messages and fields without modification Automated security testing with Flinder

9 Flinder modules Input Generator TOE IG Actuator TOE Actuator
IG Capturer TOE Capturer IG Dispatcher TOE Dispatcher Parser Serializer Protocol Logic Test Logic Automated security testing with Flinder

10 Example typical mistakes
Buffer Overflow With successive approximation Signedness bug Integer Overflow Encoding bug Unicode bug OK ERROR REJECTION if ((unsigned int) i < 0) if (i*256 <= 1024) Automated security testing with Flinder

Download ppt "Automated security testing with Flinder SEARCH-LAB Security Evaluation Analysis and Research Laboratory Ltd."

Similar presentations

Information Retrieval in Practice

Information Retrieval in Practice
Software Testing Technique. Introduction Software Testing is the process of executing a program or system with the intent of finding errors. It involves.

Software Testing Technique. Introduction Software Testing is the process of executing a program or system with the intent of finding errors. It involves.
Leonardo de Moura Microsoft Research. Z3 is a new solver developed at Microsoft Research. Development/Research driven by internal customers. Free for.

Leonardo de Moura Microsoft Research. Z3 is a new solver developed at Microsoft Research. Development/Research driven by internal customers. Free for.
Testing and Quality Assurance

Testing and Quality Assurance
Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security.

Dr. Kalpakis CMSC 421, Operating Systems. Fall 2008 URL: Security.
Mahadevan Subramaniam and Bo Guo University of Nebraska at Omaha An Approach for Selecting Tests with Provable Guarantees.

Mahadevan Subramaniam and Bo Guo University of Nebraska at Omaha An Approach for Selecting Tests with Provable Guarantees.
Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,

Principles of Computer Security: CompTIA Security + ® and Beyond, Third Edition © 2012 Principles of Computer Security: CompTIA Security+ ® and Beyond,
The Intelligent Fuzzing in TTCN-3 Xu Luo, Wu Ji, Liu Chao Software Engineering Institute Beihang University

The Intelligent Fuzzing in TTCN-3 Xu Luo, Wu Ji, Liu Chao Software Engineering Institute Beihang University
Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.

Automated creation of verification models for C-programs Yury Yusupov Saint-Petersburg State Polytechnic University The Second Spring Young Researchers.
19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.

19.1 Silberschatz, Galvin and Gagne ©2003 Operating System Concepts with Java Chapter 19: Security The Security Problem Authentication Program Threats.
November 2005J. B. Wordsworth: J5DAMQVT1 Design and Method Quality, Verification, and Testing.

November 2005J. B. Wordsworth: J5DAMQVT1 Design and Method Quality, Verification, and Testing.
SOFTWARE SECURITY JORINA VAN MALSEN 1 FLAX: Systematic Discovery of Client-Side Validation Vulnerabilities in Rich Web Applications.

SOFTWARE SECURITY JORINA VAN MALSEN 1 FLAX: Systematic Discovery of Client-Side Validation Vulnerabilities in Rich Web Applications.
WEB SECURITY. WEB ATTACK TYPES Buffer OverflowsXML InjectionsSession Hijacking Attacks WEB Attack Types.

WEB SECURITY. WEB ATTACK TYPES Buffer OverflowsXML InjectionsSession Hijacking Attacks WEB Attack Types.
Chapter 1 Data Storage. 2 Chapter 1: Data Storage 1.1 Bits and Their Storage 1.2 Main Memory 1.3 Mass Storage 1.4 Representing Information as Bit Patterns.

Chapter 1 Data Storage. 2 Chapter 1: Data Storage 1.1 Bits and Their Storage 1.2 Main Memory 1.3 Mass Storage 1.4 Representing Information as Bit Patterns.
Silberschatz, Galvin and Gagne  2002 19.1 Operating System Concepts Module 19: Security The Security Problem Authentication Program Threats System Threats.

Silberschatz, Galvin and Gagne  Operating System Concepts Module 19: Security The Security Problem Authentication Program Threats System Threats.
Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.

Leveraging User Interactions for In-Depth Testing of Web Applications Sean McAllister, Engin Kirda, and Christopher Kruegel RAID ’08 1 Seoyeon Kang November.
1 Security and Software Engineering Steven M. Bellovin AT&T Labs – Research

1 Security and Software Engineering Steven M. Bellovin AT&T Labs – Research
What Exactly are the Techniques of Software Verification and Validation www.softwaretestinggenius.com A Storehouse of Vast Knowledge on Software Testing.

What Exactly are the Techniques of Software Verification and Validation A Storehouse of Vast Knowledge on Software Testing.
Lucent Technologies – Proprietary Use pursuant to company instruction Learning Sequential Models for Detecting Anomalous Protocol Usage (work in progress)

Lucent Technologies – Proprietary Use pursuant to company instruction Learning Sequential Models for Detecting Anomalous Protocol Usage (work in progress)
Dr. Pedro Mejia Alvarez Software Testing Slide 1 Software Testing: Building Test Cases.

Dr. Pedro Mejia Alvarez Software Testing Slide 1 Software Testing: Building Test Cases.

Similar presentations

Ads by Google