Title :
A Threat Model Driven Approach for Security Testing
Author :
Wang, Linzhang ; Wong, Eric ; Xu, Dianxiang
Author_Institution :
Nanjing Univ., Nanjing
Abstract :
In this paper, we propose a novel threat model-driven security testing approach for detecting undesirable threat behavior at runtime. Threats to security policies are modelled with UML (unified modeling language) sequence diagrams. From a design-level threat model we extract a set of threat traces, each of which is an event sequence that should not occur during the system execution. The same threat model is also used to decide what kind of information should be collected at runtime and to guide the code instrumentation. The instrumented code is recompiled and executed using test cases randomly generated. The execution traces are collected and analyzed to verify whether the aforementioned undesirable threat traces are matched. If an execution trace is an instance of a threat trace, security violations are reported and actions should be taken to mitigate the threat in the system. Thus the linkage between models, code implementations, and security testing are extended to form a systematic methodology that can test certain security policies.
Keywords :
Unified Modeling Language; security of data; UML; security testing; system execution; threat model driven approach; unified modeling language; Computer science; Computer security; Instruments; National security; Neodymium; Programming; Runtime; Software testing; System testing; Unified modeling language; UML sequence diagram; security testing; threat model;
Conference_Titel :
Software Engineering for Secure Systems, 2007. SESS '07: ICSE Workshops 2007. Third International Workshop on
Conference_Location :
Minneapolis, MN
Print_ISBN :
0-7695-2952-6
DOI :
10.1109/SESS.2007.2
