A fault injection model-oriented testing strategy for component security |
| |
| Authors: | Jin-fu Chen Yan-sheng Lu Wei Zhang Xiao-dong Xie |
| |
| Affiliation: | (1) College of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, 430074, China;(2) Department of Computer Science, Iowa State University, Ames, 50011, USA |
| |
| Abstract: | A fault injection model-oriented testing strategy was proposed for detecting component vulnerabilities. A fault injection model was defined, and the faults were injected into the tested component based on the fault injection model to trigger security exceptions. The testing process could be recorded by the monitoring mechanism of the strategy, and the monitoring information was written into the security log. The component vulnerabilities could be detected by the detecting algorithm through analyzing the security log. Lastly, some experiments were done in an integration testing platform to verify the applicability of the strategy. The experimental results show that the strategy is effective and operable. The detecting rate is more than 90% for vulnerability components. Foundation item: Project(513150601) supported by the National Pre-Research Project Foundation of China |
| |
| Keywords: | component testing component security fault injection model testing strategy detecting algorithm |
| 本文献已被 维普 万方数据 SpringerLink 等数据库收录! |
|
