On-line and off-line model based testing of Security Properties – Applications to Security Components and Software Radio – OSeP

The OSeP project is investigation two approaches :
- Off-line automated security test generation from behavioral models and test purposes; In this approach, test cases are generated in a test repository for future execution;
- On-the-fly automated security test generation using strategies to increase test coverage of security requirements. Test steps are automatically generated in the same time they are automatically executed on the system under test.

These two approaches complete one each other, and are both based on the same behavioral modeling of the system under test.

The innovation obtained from the OSeP project are threefold:
- the adaptation of off-line model-based testing techniques on the basis of security test purposes to drive automated test generation;
- the design of on-the-fly test generation strategies for security test generation.
- the application of these techniques to cryptographic components and software radio middle-ware, and the definition of an associated methodology.

The perspective of the project is to deliver a proof-of-concept of model-based security testing environment, that supports both off-line and on-the-fly strategies for security components.

This environment is developed within the project and validated on real-size security components and software radio middle-ware during project case studies.

Journée Française du Test Logiciel 2012 (JFTL 2012) – Paris, France – « Génération de tests à partir de modèles pour la vérification de propriétés de sécurité »

Model Based Testing User Conference 2012 (MBT UC 2012) – Tallin, Estonie – « Model-based Testing of Cryptographic Components - Lessons Learned from Experience

Either in defense or civil domains, the awareness about security issues of information or communication systems is increasing. The vulnerabilities or malicious attacks can have dramatic results. The security of information or communication systems should be achieved at several levels:
• Processes and organizations to establish the security based on risk analysis and to define security policy;
• Physical infrastructure, securing their access or their sealing;
• Software components provide security features on all layers of the information system.

The OSEP project addresses clearly the third point (in software). The OSEP project will provide innovative technology for testing the correct implementation of the properties expected for safety.

A recent study by the Software Engineering Institute (SEI) of Carnegie Mellon University (cf www.sei.cmu.edu/tsp/research/) has shown on a representative sample of information systems that 90% of security incidents were caused by attacks on software fault. A key challenge for a good management of the security policy resides in the ability to identify reliable security features, and to ensure their proper implementation. The security policy is implemented through security components, such as cryptographic components, smart cards, authentication components, firewalls or filtering devices. These security features are present in a multitude of systems for both civil and defense fields.

The strategic objective of OSEP project aims to strengthen security through innovative techniques. These techniques use test generation driven by models for testing features and safety components. The expected results will lead to both a management of off-line test generation from schemas for security properties and complementary techniques for in-line generation and test execution. These technologies are based on complex research issues, both in terms of test coverage associated with the security properties, in test generation algorithmic and in the management of the generation and execution for online testing. The level of technological maturity of the research project, classified on the scale of the TRL (Technology Readiness Level) is at level 2 and 3 for the part concerning the safety test online from templates, at level 3 and 4 for the test generation part driven by the security properties from schemas.

The OSEP project is a research project that combines an innovative SME, Smartesting technology, specialist in tests generation from model and an INRIA team, the project team CASSIS - Combining Approaches For the Security of Infinite State Systems - specializing in the field of verification and security. The search results will be tested in two contexts: security components and software radio, in partnership with the Department “Analyse et Développement de Logiciels de Sécurité” of DGA Maîtrise de l’information.