Presentation is loading. Please wait.

Presentation is loading. Please wait.

The OWASP Foundation OWASP AppSec DC October 2005 This is a work of the U.S. Government and is not subject to copyright protection.

Published byShavonne Shepherd Modified over 9 years ago

Similar presentations

Presentation on theme: "The OWASP Foundation OWASP AppSec DC October 2005 This is a work of the U.S. Government and is not subject to copyright protection."— Presentation transcript:

1 The OWASP Foundation OWASP AppSec DC October 2005 http://www.owasp.org/ This is a work of the U.S. Government and is not subject to copyright protection in the United States. Software Fault Interactions Rick Kuhn National Institute of Standards & Technology Kuhn@nist.gov 301-975-3337

2 OWASP AppSec DC 2005 2 Overview  Goal - Determine if combinatorial testing ideas could be applied effectively, to reduce testing cost, because:  If all faults triggered by a combination of n or fewer parameters, then testing all n-tuples of parameters can be considered pseudo- exhaustive testing, for some classes of software.  Some findings are surprising, raise questions

3 OWASP AppSec DC 2005 3 Combinatorial Testing  One approach to dealing with combinatorial explosion  Consider: device with 20 inputs, 10 settings each  10 20 combinations  Which ones to test?

4 OWASP AppSec DC 2005 4 Combinatorial Testing Benefits  Suppose no failure requires more than a pair of settings to trigger  Then test all pairs – 180 test cases sufficient to detect any failure  How many settings required in real-world software?  If we know, can conduct “effectively exhaustive” testing

5 OWASP AppSec DC 2005 5 Combinatorial Testing Costs  For k parameters with v values each number of test cases required for n-way interaction is proportional to (v/2) log n k for small n  Test combinations generated using algorithms for covering arrays

6 OWASP AppSec DC 2005 6 Effectiveness/coverage  Reasonable testing goal: test all n-way combinations, where n is largest n-way interaction observed to cause failure in similar systems  Questions  what is value of n?  does value differ for different types of software?  Is there a point of diminishing returns?

7 OWASP AppSec DC 2005 7 Empirical evidence - limited  Dalal, et al., 1999 – effectiveness of pairwise testing, no higher degree interactions  Smith, Feather, Muscetolla, 2000 – NASA Deep Space 1 software – pairwise testing detected 88% and 50% of flaws for 2 subsystems, no higher degree interactions  Wallace, Kuhn, 2001 – medical device s/w – 98% of flaws were pairwise interactions, no failure required > 4 conditions to trigger  Kuhn, Reilly, 2002 – browser and server software, no failure required > 6 conditions to trigger  Kuhn, Wallace, Gallo, 2004 – NASA distributed scientific database software, no failure required > 4 conditions to trigger

8 OWASP AppSec DC 2005 8 Procedures  Reviewed bug databases of two open source projects – Mozilla browser and Apache server, FDA recall reports, NASA development notes and bug reports  Categorized reported bugs according to number of conditions required to trigger failure

9 OWASP AppSec DC 2005 9 Results FTFI No. Medical Devices Browser ServerNASA GSFC 166284167 297767093 399958998 41009796100 5 9996 6 100

10 OWASP AppSec DC 2005 10 Other evidence FTFI No. RAX conver- gence RAX correct- ness RAX interface RAX engine POSIX modules Medical Devices Browser ServerNASA GSFC 1617248398266284167 297825447*97767093 3*****99958998 4*****1009796100 5***** 9996 6***** 100

11 OWASP AppSec DC 2005 11 Additional findings  Browser and server  pairwise testing would detect ~70%  6-way testing would detect 100%  Medical devices and NASA distributed database system  pairwise testing would detect >90%  4-way testing would detect 100%  These errors were less complex than browser and server errors!! Why?  More detailed reports?  Better testing (more eyes)?  Application characteristics?

12 OWASP AppSec DC 2005 12 Power law for failure triggering fault interactions?

13 OWASP AppSec DC 2005 13 Discussion  Point of diminishing returns fairly low:  degree 2 interactions – 70% of bugs  degree 3 interactions – 90% of bugs  Appropriate value of n may be 3 to 6  Probably some “don’t care” conditions, so few or none may actually require > 4

14 OWASP AppSec DC 2005 14 Outlook  Results imply that pseudo-exhaustive testing can be practical with automated test generation  We need to know more about fault interactions in different application domains  NIST is currently developing test tools based on these ideas – participation invited!  Let me know if you are interested  Rick Kuhn kuhn@nist.gov or 301-975-3337

Download ppt "The OWASP Foundation OWASP AppSec DC October 2005 This is a work of the U.S. Government and is not subject to copyright protection."

Similar presentations

Lecture 2 May 21, 2013 Software Testing Research Dr. Sergiy Vilkomir 2013 REU Program at ECU Software Testing - Foundations, Tools, and Applications.

Lecture 2 May 21, 2013 Software Testing Research Dr. Sergiy Vilkomir 2013 REU Program at ECU Software Testing - Foundations, Tools, and Applications.
Pairwise Testing. A case study (from Lee Copeland’ book) A web-based application has been written to work with eight different browsers – IE 5.0, 5.5,

Pairwise Testing. A case study (from Lee Copeland’ book) A web-based application has been written to work with eight different browsers – IE 5.0, 5.5,
An Evaluation of MC/DC Coverage for Pair-wise Test Cases By David Anderson Software Testing Research Group (STRG)

An Evaluation of MC/DC Coverage for Pair-wise Test Cases By David Anderson Software Testing Research Group (STRG)
An Empirical Study of the Reliability in UNIX Utilities Barton Miller Lars Fredriksen Brysn So Presented by Liping Cai.

An Empirical Study of the Reliability in UNIX Utilities Barton Miller Lars Fredriksen Brysn So Presented by Liping Cai.
Copyright © 2005 - The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the GNU Free Documentation.
Pseudo-Exhaustive Testing for Software Rick Kuhn Vadim Okun National Institute of Standards and Technology Gaithersburg,

Pseudo-Exhaustive Testing for Software Rick Kuhn Vadim Okun National Institute of Standards and Technology Gaithersburg,
IPOG: A General Strategy for T-Way Software Testing

IPOG: A General Strategy for T-Way Software Testing
Abhinn Kothari, 2009CS10172 Parth Jaiswal 2009CS10205 Group: 3 Supervisor : Huzur Saran.

Abhinn Kothari, 2009CS10172 Parth Jaiswal 2009CS10205 Group: 3 Supervisor : Huzur Saran.
Combinatorial Testing Using Covering Arrays - Going Beyond Pairwise Testing Raghu Kacker, NIST Yu Lei, UTA 5/15/06.

Combinatorial Testing Using Covering Arrays - Going Beyond Pairwise Testing Raghu Kacker, NIST Yu Lei, UTA 5/15/06.
WATERLOO ELECTRICAL AND COMPUTER ENGINEERING 60s: Power Engineering 1 WATERLOO ELECTRICAL AND COMPUTER ENGINEERING 60s Power Engineering Department of.

WATERLOO ELECTRICAL AND COMPUTER ENGINEERING 60s: Power Engineering 1 WATERLOO ELECTRICAL AND COMPUTER ENGINEERING 60s Power Engineering Department of.
Today’s Agenda  HW #1 Due  Quick Review  Finish Input Space Partitioning  Combinatorial Testing Software Testing and Maintenance 1.

Today’s Agenda  HW #1 Due  Quick Review  Finish Input Space Partitioning  Combinatorial Testing Software Testing and Maintenance 1.
Estimation from Samples Find a likely range of values for a population parameter (e.g. average, %) Find a likely range of values for a population parameter.

Estimation from Samples Find a likely range of values for a population parameter (e.g. average, %) Find a likely range of values for a population parameter.
Northwestern University Winter 2007 Machine Learning EECS 395-22 Machine Learning Lecture 13: Computational Learning Theory.

Northwestern University Winter 2007 Machine Learning EECS Machine Learning Lecture 13: Computational Learning Theory.
Rick Kuhn Computer Security Division

Rick Kuhn Computer Security Division
9 1 Chapter 9 Database Design Database Systems: Design, Implementation, and Management, Seventh Edition, Rob and Coronel.

9 1 Chapter 9 Database Design Database Systems: Design, Implementation, and Management, Seventh Edition, Rob and Coronel.
This is a work of the U.S. Government and is not subject to copyright protection in the United States. The OWASP Foundation OWASP AppSec DC October 2005.

This is a work of the U.S. Government and is not subject to copyright protection in the United States. The OWASP Foundation OWASP AppSec DC October 2005.
This is a work of the U.S. Government and is not subject to copyright protection in the United States. The OWASP Foundation OWASP AppSec DC October 2005.

This is a work of the U.S. Government and is not subject to copyright protection in the United States. The OWASP Foundation OWASP AppSec DC October 2005.
Expediting Programmer AWAREness of Anomalous Code Sarah E. Smith Laurie Williams Jun Xu November 11, 2005.

Expediting Programmer AWAREness of Anomalous Code Sarah E. Smith Laurie Williams Jun Xu November 11, 2005.
PJSISSTA '001 Black-Box Test Reduction Using Input-Output Analysis ISSTA ‘00 Patrick J. Schroeder, Bogdan Korel Department of Computer Science Illinois.

PJSISSTA '001 Black-Box Test Reduction Using Input-Output Analysis ISSTA ‘00 Patrick J. Schroeder, Bogdan Korel Department of Computer Science Illinois.
Describe the application and limits of procedural, object orientated and event driven programming. 

Describe the application and limits of procedural, object orientated and event driven programming. 

Similar presentations

Ads by Google