DocumentCode
564742
Title
A New Security Testing Method and its Application to the Secure Xenix Kernel
Author
Gligor, Virgil D. ; Chandersekaran, C.S. ; Cheng, William ; Jiang, W.D. ; Johri, A. ; Luckenbaugh, G.L. ; Reich, L.E.
Author_Institution
IBM Corporation
fYear
1986
fDate
7-9 April 1986
Firstpage
40
Lastpage
40
Abstract
A new security testing method is proposed that combines the advantages of both traditional "black box" (monolithic functional) testing and "white box" (functional-synthesis- based) testing. The new method allows significant coverage both for security model-based tests and for individual kernel-call tests. It eliminates redundant kernel test cases (1) by using a variant of control synthesis graphs, (2) by analyzing dependencies between descriptive kernel-call specifications, and (3) by exploiting access check separability. A higher degree of test assurance is achieved than that of other security testing methods because the new method helps eliminate cyclic dependencies among test programs for different kernel calls. The application of this method to the testing of the Secure Xenix* kernel is illustrated. The design and the implementation of Secure Xenix are presented in a companion paper.
Keywords
Analytical models; Computational modeling; Context; Data models; Kernel; Security; Testing;
fLanguage
English
Publisher
ieee
Conference_Titel
Security and Privacy, 1986 IEEE Symposium on
Conference_Location
Oakland, CA, USA
ISSN
1540-7993
Print_ISBN
0-8186-0716-5
Type
conf
DOI
10.1109/SP.1986.10021
Filename
6234866
Link To Document