Presentation is loading. Please wait.

Presentation is loading. Please wait.

Software Fault Injection for Survivability Jeffrey M. Voas & Anup K. Ghosh Presented by Alison Teoh.

Published byLenard McKenzie Modified over 9 years ago

Similar presentations

Presentation on theme: "Software Fault Injection for Survivability Jeffrey M. Voas & Anup K. Ghosh Presented by Alison Teoh."— Presentation transcript:

1 Software Fault Injection for Survivability Jeffrey M. Voas & Anup K. Ghosh Presented by Alison Teoh

2 Goals of Software Testing Correctness Reliability Usability Robustness Performance

3 Goals of Software Testing Correctness Reliability Usability Robustness Performance

4 Goals of Software Testing Correctness Reliability Usability Robustness Performance Survivability

5 Outline Basic definitions and Testing Technique Overview Algorithm for Fault Injection Analysis Fault Injection Security Tool (FIST) Interface Propagation Analysis (IPA) Conclusions

6 Some Basic Definitions Information Survivability: “The ability of a system to continue to operate in the presence of faults, anomalous system behaviour, or malicious attack.” Fault Injection: “The process of perturbing program behaviour by corrupting a program state during program execution.”

7 Three Primary Threats to Survivability: Software Flaws Malicious Attacks Anomalous Behaviour of Third Party Software

8 Three Primary Threats to Survivability: Software Flaws – We don’t know where the actual errors are – Simulate random flaws Malicious Attacks – Subject software to well-known attacks Anomalous Behaviour of Third Party Software – Libraries and COTS components may be flawed – Simulate component failure

9 Algorithm P = Program under analysis S = State of the system x = Input value l = Location in P PRED = Security violation predicate (assertion) for P and S

10 Algorithm 1 – Execute P on selected input x 2 – Instrument code to determine each l in P that is exercised by x. 3 – Determine the outcome of an unperturbed run of P 4 – Alter some variable at location l (inject a fault) 5 – If security predicate (assertion) was violated, record location l 6 – Repeat steps 1-5 until coverage goals met 7 – Use recorded locations in code as basis of further analysis (code inspection, verification, etc)

11 FIST (Fault Injection Security Tool) Implementation of fault injection analysis algorithm C/C++ Allows developer to: – Randomly perturb program states – Append or truncate strings – Attempt Buffer Overflows – Perform other fault injection functions

12 FIST

13 Miscellaneous Reasons FIST is effective: – Always attempts to overflow buffers Most tools only target specific, vulnerable functions StackGuard, Fuzz – Allows users to specify “security violations” for individual applications under analysis Choose from predefined assertions Create your own assertions based on any C expression – Capable of external assertion monitoring

14 FIST FIST Analysis was performed over a variety of network service daemons Several potentially exploitable locations were identified Security violation identified in WU-FTPD was later independently discovered and reported by CERT-CC

15 IPA (Interface Propagation Analysis) Simulates component/subsystem failures Start from worst case assumptions, observe system-wide effects Unit performance is unimportant unless it affects the integrity of the entire system

16 IPA IPA uses two fault injection algorithms: Propagation From Propagation Across

17 IPA Propagation From Corrupts data exiting a component to observe the types of system failures that ensue. Provides information regarding semantic interactions between components as a measure of tolerance

18 IPA Propagation Across Corrupts data entering a component Simulates input failure to gauge component’s robustness Mimic human operator errors, hardware failures, or failures from other subsystems

19 Conclusions Fault Injection Analysis can be used in an unconventional way to test survivability in several different scenarios: – Software flaws in program source code – Malicious attacks – Anomalous behaviour from third party software By identifying problem components and functions automatically, drastically reduce areas that require manual analysis

20 Questions?

Download ppt "Software Fault Injection for Survivability Jeffrey M. Voas & Anup K. Ghosh Presented by Alison Teoh."

Similar presentations

Test process essentials Riitta Viitamäki, 14.4.2004

Test process essentials Riitta Viitamäki,
Abhinn Kothari, 2009CS10172 Parth Jaiswal 2009CS10205 Group: 3 Supervisor : Huzur Saran.

Abhinn Kothari, 2009CS10172 Parth Jaiswal 2009CS10205 Group: 3 Supervisor : Huzur Saran.
Software testing.

Software testing.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 23 Slide 1 Software testing.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 23 Slide 1 Software testing.
Software Testing. Overview Definition of Software Testing Problems with Testing Benefits of Testing Effective Methods for Testing.

Software Testing. Overview Definition of Software Testing Problems with Testing Benefits of Testing Effective Methods for Testing.
Page 1 Building Reliable Component-based Systems Chapter 10 - Predicting System Trustworthiness Chapter 10 Predicting System Trustworthiness.

Page 1 Building Reliable Component-based Systems Chapter 10 - Predicting System Trustworthiness Chapter 10 Predicting System Trustworthiness.
Why Security Testing Is Hard by Herbert H. Thompson presented by Carlos Hernandez.

Why Security Testing Is Hard by Herbert H. Thompson presented by Carlos Hernandez.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 23 Slide 1 Software testing.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 23 Slide 1 Software testing.
1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.

1 Building with Assurance CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute May 10, 2004.
OHT 3.1 Galin, SQA from theory to implementation © Pearson Education Limited 2004 The need for comprehensive software quality requirements Classification.

OHT 3.1 Galin, SQA from theory to implementation © Pearson Education Limited 2004 The need for comprehensive software quality requirements Classification.
Software Fault Injection Kalynnda Berens Science Applications International Corporation NASA Glenn Research Center.

Software Fault Injection Kalynnda Berens Science Applications International Corporation NASA Glenn Research Center.
09/18/06 1 Software Security Vulnerability Testing in Hostile Environment Herbert H. Thompson James A. Whittaker Florence E. Mottay.

09/18/06 1 Software Security Vulnerability Testing in Hostile Environment Herbert H. Thompson James A. Whittaker Florence E. Mottay.
SIMULATING ERRORS IN WEB SERVICES International Journal of Simulation: Systems, Sciences and Technology 2004 Nik Looker, Malcolm Munro and Jie Xu.

SIMULATING ERRORS IN WEB SERVICES International Journal of Simulation: Systems, Sciences and Technology 2004 Nik Looker, Malcolm Munro and Jie Xu.
Introduction to Software Testing

Introduction to Software Testing
Issues on Software Testing for Safety-Critical Real-Time Automation Systems Shahdat Hossain Troy Mockenhaupt.

Issues on Software Testing for Safety-Critical Real-Time Automation Systems Shahdat Hossain Troy Mockenhaupt.
INTRUSION DETECTION SYSTEMS Tristan Walters Rayce West.

INTRUSION DETECTION SYSTEMS Tristan Walters Rayce West.
TEST CASE DESIGN Prepared by: Fatih Kızkun. OUTLINE Introduction –Importance of Test –Essential Test Case Development A Variety of Test Methods –Risk.

TEST CASE DESIGN Prepared by: Fatih Kızkun. OUTLINE Introduction –Importance of Test –Essential Test Case Development A Variety of Test Methods –Risk.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 23 Slide 1 Software testing.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 23 Slide 1 Software testing.
Software Testing Verification and validation planning Software inspections Software Inspection vs. Testing Automated static analysis Cleanroom software.

Software Testing Verification and validation planning Software inspections Software Inspection vs. Testing Automated static analysis Cleanroom software.
Dr. Pedro Mejia Alvarez Software Testing Slide 1 Software Testing: Building Test Cases.

Dr. Pedro Mejia Alvarez Software Testing Slide 1 Software Testing: Building Test Cases.

Similar presentations

Ads by Google