Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Model-based fuzz testing

: Schieferdecker, I.


Institute of Electrical and Electronics Engineers -IEEE-; IEEE Computer Society:
IEEE Fifth International Conference on Software Testing, Verification and Validation, ICST 2012 : Montréal, Québec, Canada, 17 - 21 April 2012; proceedings ; including workshop papers
Piscataway/NJ: IEEE, 2012
ISBN: 978-1-4577-1906-6
ISBN: 978-0-7695-4670-4
International Conference on Software Testing, Verification and Validation (ICST) <5, 2012, Montréal>
International Workshop on Security Testing (SecTest) <3, 2012, Montréal>
Conference Paper
Fraunhofer FOKUS ()

The European ITEA2 project DIAMONDS (Development and Industrial Application of Multi-Domain Security Testing Technologies) develops under the direction of Fraunhofer FOKUS, Berlin efficient and automated security test methods for security-critical, networked systems in various industrial domains such as industrial automation, banking and telecommunications. DIAMONDS develops methods to design objective, transparent, repeatable, and automated security tests that focus on system specifications and related risks. The project goals include the development of a security test pattern catalogue and the development of model-based security testing techniques such as risk-based testing and model-based fuzz testing. The project results are made available through publications and contributions to the standardization at ETSI and other standardization bodies. The presentation focusses on model-based fuzz testing, reviews the state of the art, compare it to similar approaches such as mutation testing, and presents first results on behaviour fuzzing for security testing.