Injection of faults at component interfaces and inside the component code: are they equivalent?

Moraes, Regina; Barbosa, Ricardo; Duraes, Joao; Mendes, Naaliel; Martins, Eliane; Madeira, Henrique

doi:10.1109/edcc.2006.16

Cited by 36 publications

(23 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We reuse the SWIFI framework of [15,18] and extend it to perform comparisons, as initiated in [24]. In the following section we extend the work presented in [18] and develop generalized and formally accurate definitions the informally specified metrics so that they can be used for (a) any robustness evaluation that aligns with the generic method described in Section 2.1 and (b) quantitative comparisons, i.e.…”

Section: Comparative Fault Model Evaluationsmentioning

confidence: 99%

“…incorrect computation results, are considered most critical for a given application. Furthermore, as the applied SWIFI framework did not support injections into CUE Servers, the comparison of models with differing fault locations as the one provided in [24] was impossible.…”

Section: Comparative Fault Model Evaluationsmentioning

confidence: 99%

“…Although a multitude of fault models for software robustness evaluations are discussed in the literature, we are aware of only two attempts to compare models. Moraes et al [24] compared the effects of fault injections at different locations, i.e. at the IUE and inside of components providing services to the CUE.…”

Section: Comparative Fault Model Evaluationsmentioning

confidence: 99%

“…Software-implemented fault injection (SWIFI) is a widely used approach for evaluating the robustness of software components. Recent research [24,18] indicates that the selection of the applied fault model has considerable influence on the results of SWIFI-based evaluations, thereby raising the question how to select appropriate fault models (i.e. that provide justified robustness evidence).…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

The impact of fault models on software robustness evaluations

Winter

Sârbu

Suri

et al. 2011

Proceedings of the 33rd International Conference on Software Engineering

View full text Add to dashboard Cite

Following the design and in-lab testing of software, the evaluation of its resilience to actual operational perturbations in the field is a key validation need. Software-implemented fault injection (SWIFI) is a widely used approach for evaluating the robustness of software components. Recent research [24,18] indicates that the selection of the applied fault model has considerable influence on the results of SWIFI-based evaluations, thereby raising the question how to select appropriate fault models (i.e. that provide justified robustness evidence).This paper proposes several metrics for comparatively evaluating fault models's abilities to reveal robustness vulnerabilities. It demonstrates their application in the context of OS device drivers by investigating the influence (and relative utility) of four commonly used fault models, i.e. bit flips (in function parameters and in binaries), data type dependent parameter corruptions, and parameter fuzzing. We assess the efficiency of these models at detecting robustness vulnerabilities during the SWIFI evaluation of a real embedded operating system kernel and discuss application guidelines for our metrics alongside.

show abstract

Section: Comparative Fault Model Evaluationsmentioning

confidence: 99%

Section: Comparative Fault Model Evaluationsmentioning

confidence: 99%

Section: Comparative Fault Model Evaluationsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

The impact of fault models on software robustness evaluations

Winter

Sârbu

Suri

et al. 2011

Proceedings of the 33rd International Conference on Software Engineering

View full text Add to dashboard Cite

show abstract

“…Finally, in [Moraes et al, 2006] the authors note that errors appearing at interfaces of components, though being useful for robustness evaluation, do not necessarily represent faults in the code. Since we are indeed focusing on robustness, interface errors are relevant.…”

Section: Other Contemporary Software Error Modelsmentioning

confidence: 99%

Robustness Evaluation of Operating Systems

Johansson

2008

Information Assurance

View full text Add to dashboard Cite

SummaryThe premise behind this thesis is the observation that Operating Systems (OS), being the foundation behind operations of computing systems, are complex entities and also subject to failures. Consequently, when they do fail, the impact is the loss of system service and the applications running thereon. While a multitude of sources for OS failures exist, device drivers are often identified as a prominent cause behind failures.In order to characterize the impact of driver failures, at both the OS and application levels, this thesis develops a framework for error propagation-based robustness profiling for an OS. The framework is first developed conceptually and then experimentally validated on a real OS, namely Windows CE .Net. The choice of Windows CE is driven by its representativeness for a multitude of OS's, as well as the ability to customize the OS components for particular needs.For experimental validation, fault injection is a prominent technique that can be used to simulate faults (or errors) in the system by inserting synthetic ones and study their effect. Three key questions with such a technique are where, what and when to inject faults. This thesis shows how injecting errors at the interface between drivers and the OS can be very effective in evaluating the effects driver faults can have.To quantify the OS's robustness, this thesis defines a series of error propagation measures, specifically tailored for device drivers. These measures allow for quantifying and comparing both individual services and device drivers on their susceptibility and diffusing abilities.This thesis compares three contemporary error models on their suitability for robustness evaluation. The classical bit-flip model is found to identify a higher number of severe failures in the system. It also identifies failures for more services than both other models, data type and fuzzing. However, its main drawback is that it requires substantially more injections than the other two. Fuzzing, even though not giving rise to as many failures is able to find new additional services with severe failures.A careful study of the injections performed with the bit-flip model shows that only a few bits are generally useful for identifying new services with robustness weaknesses. Consequently, a new composite model is proposed, combining the most effective bits of the bit-flip model with the fuzzing model's ability to identify new services, giving rise to new model without loss of important information and at the same time incurring a moderate number of injections.To answer the question of when to inject an error this thesis proposes a novel model of a driver's usage profile, focusing on high-level operations being carried out. It guides the injection of errors to instances when the driver is carrying out specific operations. Results from extensive fault injection experiments show that more service vulnerabilities can be discovered. Furthermore, a priori profiling of the drivers can show how effective the proposed approach will be. vi

show abstract

Assessment of Security Defense of Native Programs Against Software Faults

Yim

2022

Springer Series in Reliability Engineering

View full text Add to dashboard Cite

Injection of faults at component interfaces and inside the component code: are they equivalent?

Cited by 36 publications

References 21 publications

The impact of fault models on software robustness evaluations

The impact of fault models on software robustness evaluations

Robustness Evaluation of Operating Systems

Assessment of Security Defense of Native Programs Against Software Faults

Contact Info

Product

Resources

About