DocumentCode
745917
Title
A New Security Testing Method and Its Application to the Secure Xenix Kernel
Author
Gligor, Virgil D. ; Chandersekaran, C.S. ; Jiang, Wen-Der ; Johri, Abhai ; Luckenbaugh, Gary L. ; Reich, L. Edward
Author_Institution
Department of Electrical Engineering, University of Maryland
Issue
2
fYear
1987
Firstpage
169
Lastpage
183
Abstract
A new security testing method is proposed that combines the advantages of both traditional "black box" (monolithic functional) testing and "white box" (functional-synthesis-based) testing. The new method allows significant coverage both for security model-based tests and for individual kernel-call tests. It eliminates redundant kernel test cases 1) by using a variant of control synthesis graphs, 2) by analyzing dependencies between descriptive kernel-call specifications, and 3) by exploiting access check separability. A higher degree of test assurance is achieved than that of other security testing methods because the new method helps eliminate cyclic dependencies among test programs for different kernel calls. The application of this method to the testing of the Secure Xenix™ kernel is illustrated.
Keywords
Access check graphs; control synthesis graphs; cyclic dependencies; data flow coverage; functional testing; kernels; security model; security testing; Computer security; Control system synthesis; Data security; Flow graphs; Kernel; Scattering; Software testing; System testing; Thumb; Trademarks; Access check graphs; control synthesis graphs; cyclic dependencies; data flow coverage; functional testing; kernels; security model; security testing;
fLanguage
English
Journal_Title
Software Engineering, IEEE Transactions on
Publisher
ieee
ISSN
0098-5589
Type
jour
DOI
10.1109/TSE.1987.232890
Filename
1702198
Link To Document