Robustness testing for software components

Lei, Bin; Li, Xuandong; Liu, Zhiming; Morisset, Charles; Stolz, Volker

doi:10.1016/j.scico.2010.02.005

Cited by 22 publications

(11 citation statements)

References 22 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…In this phase, a Normal Action Library will be used to check whether the input transition sequence is a normal one. The Normal Action Library is generated from the Standard Protocol Library, by using the techniques of Fuzzing [25] and Robustness Testing [26]. If the comparing results show that the input sequence is abnormal, we take such message as a suspected one and ask for a manual verification from the experts to avoid the false positive.…”

Section: Event Analyzer the Ids Eventmentioning

confidence: 99%

An Automata Based Intrusion Detection Method for Internet of Things

Yan

Cao

et al. 2017

Mobile Information Systems

View full text Add to dashboard Cite

Internet of Things (IoT) transforms network communication to Machine-to-Machine (M2M) basis and provides open access and new services to citizens and companies. It extends the border of Internet and will be developed as one part of the future 5G networks. However, as the resources of IoT’s front devices are constrained, many security mechanisms are hard to be implemented to protect the IoT networks. Intrusion detection system (IDS) is an efficient technique that can be used to detect the attackers when cryptography is broken, and it can be used to enforce the security of IoT networks. In this article, we analyzed the intrusion detection requirements of IoT networks and then proposed a uniform intrusion detection method for the vast heterogeneous IoT networks based on an automata model. The proposed method can detect and report the possible IoT attacks with three types: jam-attack, false-attack, and reply-attack automatically. We also design an experiment to verify the proposed IDS method and examine the attack of RADIUS application.

show abstract

Section: Event Analyzer the Ids Eventmentioning

confidence: 99%

An Automata Based Intrusion Detection Method for Internet of Things

Yan

Cao

et al. 2017

Mobile Information Systems

View full text Add to dashboard Cite

show abstract

“…Dependencies of call orders as well as transition guards are not tested by JCrasher. Regarding the second category, the most recent approach is presented by Lei et al [13,12] in terms of the Robut Eclipse plugin. They present a methodology to check the behavior of state-based Java software components, which includes testing of defined and undefined transitions as well as postconditions of method calls using hostile parameters.…”

Section: Related Workmentioning

confidence: 99%

Accelerated robustness testing of state-based components using reverse execution

Heckeler

Schlich²,

Kropf

2013

Proceedings of the 28th Annual ACM Symposium on Applied Computing

View full text Add to dashboard Cite

This paper presents a methodology to test the robustness of reactive state-based software components by executing defined and undefined transitions of a UML Statechart specification, and therefore simulating a usage scenario under normal and abnormal conditions. The Z3 constraint solver is used to generate corresponding test cases. Since robustness testing is time-intensive due to a large number of undefined transitions to be tested, a main advantage of our presented approach is that it accelerates robustness testing by returning to reached states of a component, using reverse execution, and then refining them as a starting point for further tests. Furthermore, the presented approach provides runtime verification capabilities to test transition guards defined in the specification and therefore increases the test significance. This is done without instrumenting the source code. Due to the high acceleration achieved, our approach is well-suited for daily regression testing during component development.

show abstract

“…Also robustness testing is not taken into account. When discussing the state of the art regarding robustness testing of the structure of software components, the most resent approach is presented by Lei et al [30,31] in terms of the Robut Eclipse plugin. They present a methodology to check the behavior of statebased Java software components, which includes testing of defined and undefined transitions as well as post-conditions of method calls using hostile parameters.…”

Section: Related Workmentioning

confidence: 99%

Accelerated model-based robustness testing of state machine implementations

Heckeler

Eichelberger

Kropf

et al. 2013

SIGAPP Appl. Comput. Rev.

View full text Add to dashboard Cite

In this paper, we present an approach for accelerating model-based robustness testing of state-based software components. We use the Z3 SAT solver to derive executable test cases fully automatically from a state model based on a UML Statechart. The test cases are paths along the Statechart comprising states and transitions. The main advantage of our approach is an accelerated execution of the test cases by refining already reached states as starting points for further test cases using reverse execution. Furthermore, the presented approach is able to check whether a correct target state has been reached or not when executing the path-based test cases using runtime verification and therefore increases the test significance. The runtime verification is done without instrumenting the source code of the component under test 1Compared to common testing processes, robustness testing addresses all three mentioned types of errors (errors occurred by expected but not tested values, data related errors and errors occurred by misusing the interface of the component). To achieve this, robustness testing needs an increased number of test cases. Therefore, automatic test case generation is often used to create the test cases. But most test case generation approaches only focus on proper parameter data generation. Resulting test cases are then used to check whether an operation of a component returns the expected results regarding the input data when calling it. This kind of black-box testing approach is sufficient for state-less components. Such a component, also called transformation system, can for example implement a discrete cosine transformation. Every call to a parameterized operation receives input data, processes it, and returns the corresponding result. Further calls of operations work without remembering the previous calls. In contrast to stateless systems, state-based systems always have to be aware of

show abstract

Robustness testing for software components

Cited by 22 publications

References 22 publications

An Automata Based Intrusion Detection Method for Internet of Things

An Automata Based Intrusion Detection Method for Internet of Things

Accelerated robustness testing of state-based components using reverse execution

Accelerated model-based robustness testing of state machine implementations

Contact Info

Product

Resources

About