IPSec协议测试优化技术研究
|
摘要
为保证IPSec协议产品能够提供其声称的安全服务功能,需要对其进行协议测试。目前,在IPSec协议一致性测试方面存在测试集覆盖度不完备、测试序列冗余、测试用例执行效率低等问题。本文从测试集优化和测试过程优化两方面对IPSec协议测试优化技术进行了研究,针对上述问题分别提出了有效的解决方案。
首先,针对测试集覆盖度不完备、测试序列冗余的问题,采用有限状态机FSM模型为IPSec协议进行形式化建模;在得到的数学模型的基础上,采用BUIO方法生成测试序列;在测试用例设计时,采用等价类划分法和边界值分析法进行参数选择。
通过依赖数学模型进行测试序列的完备生成和借鉴黑盒测试用例设计方法进行参数选择,从两个层次保证了IPSec协议测试集较为完备的覆盖度;采用BUIO方法生成测试序列,缩短了测试序列长度,提高了测试执行时的效率。
其次,针对测试用例执行过程中存在的问题,提出基于层次结构的IPSec协议测试过程优化方案,按层次执行测试用例,并利用执行结果对后续测试进行指导。该方案解决了测试过程中由于忽略测试用例之间的联系而导致的执行效率低,无法达到理想的实际测试覆盖度的问题,在测试过程中提高了测试效率,扩大了实际测试范围。
再次,针对不能根据协议本身进行明显层次结构划分的协议,对基于层次结构的IPSec协议测试过程优化方案进行扩展,提出了采用测试用例间的依赖性进行层次划分的方法。该方法可适用于大多数的协议测试,减少不一致性传播问题对协议测试带来的影响。最后,采用B/S模式的测试架构和模块化编程思想建立测试系统,搭建了测试平台,通过测试实践,验证了测试优化效果。
To ensure the products of IPSec protocol can provide the security services they claimed, the IUTs need test. At present, IPSec protocol conformance testing has some problems such as the coverage of test suite is not complete; test sequence has redundancy and so on. To solve these problems, in this thesis, optimization on IPSec protocol test techonology has been studied.
Firstly, on the basis of study on formal description technique, FSM is adopted as the formal model to describe IPSec protocol. BUIO method is adopted to generate test sequences. Generating test sequence based on FSM model can ensure the completeness by making the complete transformation of the model; then equivalence class partition method and boundary value analysis method are adopted to choose test parameters which can ensure the completeness of value choosing as much as possible. Meanwhile, the test sequences generated by BUIO method reduced the redundancy part of test sequences generated by UIO methods. Secondly, test process optimization is studied which is aimed at problems such as the low efficiency of test case execution, and the real coverage is not achieved which are caused by ignoring the relation between test cases. On the basis of research on the characteristics of IPSec, a hierarchy-based process optimization method has been proposed in this thesis to solve the two problems.
At the same time, a promotion method of the IPSec hierarchy-based process optimization method has been proposed which can apply to common protocol test procedure optimization.
Finally, Test platform is constructed and test practice is carried out, which proved the validation of the test suite optimization and test procedure optimization.
首先,针对测试集覆盖度不完备、测试序列冗余的问题,采用有限状态机FSM模型为IPSec协议进行形式化建模;在得到的数学模型的基础上,采用BUIO方法生成测试序列;在测试用例设计时,采用等价类划分法和边界值分析法进行参数选择。
通过依赖数学模型进行测试序列的完备生成和借鉴黑盒测试用例设计方法进行参数选择,从两个层次保证了IPSec协议测试集较为完备的覆盖度;采用BUIO方法生成测试序列,缩短了测试序列长度,提高了测试执行时的效率。
其次,针对测试用例执行过程中存在的问题,提出基于层次结构的IPSec协议测试过程优化方案,按层次执行测试用例,并利用执行结果对后续测试进行指导。该方案解决了测试过程中由于忽略测试用例之间的联系而导致的执行效率低,无法达到理想的实际测试覆盖度的问题,在测试过程中提高了测试效率,扩大了实际测试范围。
再次,针对不能根据协议本身进行明显层次结构划分的协议,对基于层次结构的IPSec协议测试过程优化方案进行扩展,提出了采用测试用例间的依赖性进行层次划分的方法。该方法可适用于大多数的协议测试,减少不一致性传播问题对协议测试带来的影响。最后,采用B/S模式的测试架构和模块化编程思想建立测试系统,搭建了测试平台,通过测试实践,验证了测试优化效果。
To ensure the products of IPSec protocol can provide the security services they claimed, the IUTs need test. At present, IPSec protocol conformance testing has some problems such as the coverage of test suite is not complete; test sequence has redundancy and so on. To solve these problems, in this thesis, optimization on IPSec protocol test techonology has been studied.
Firstly, on the basis of study on formal description technique, FSM is adopted as the formal model to describe IPSec protocol. BUIO method is adopted to generate test sequences. Generating test sequence based on FSM model can ensure the completeness by making the complete transformation of the model; then equivalence class partition method and boundary value analysis method are adopted to choose test parameters which can ensure the completeness of value choosing as much as possible. Meanwhile, the test sequences generated by BUIO method reduced the redundancy part of test sequences generated by UIO methods. Secondly, test process optimization is studied which is aimed at problems such as the low efficiency of test case execution, and the real coverage is not achieved which are caused by ignoring the relation between test cases. On the basis of research on the characteristics of IPSec, a hierarchy-based process optimization method has been proposed in this thesis to solve the two problems.
At the same time, a promotion method of the IPSec hierarchy-based process optimization method has been proposed which can apply to common protocol test procedure optimization.
Finally, Test platform is constructed and test practice is carried out, which proved the validation of the test suite optimization and test procedure optimization.
引文
[1] RFC2401.Security Architecture for the Internet Protocol[S].1998.
[2] ISO/IEC 9646-1.Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part1: General concepts[S]. 1994.
[3] ISO/IEC 9646-2 .Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part2: Abstract Test Suite specification[S]. 1994.
[4] ISO/IEC 9646-4 .Information technology-Open Systems Interconnection-Conformance testing methodology and freamwork-Part4: Test realization[S]. 1994.
[5] ISO/IEC 9646-5.Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part 5: Requirements on test laboratories and clients for the conformance assessment process[S]. 1994.
[6] ISO/IEC 9646-6.Information technology-Open Systems Interconnection-Conformance testing methodology and framework -- Part 6: Protocol profile test specification[S]. 1994.
[7] ISO/IEC 9646-7.Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part7: Implementation Conformance Statements[S]. 1995.
[8] ISO/IEC 9646-3 .Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part3: The Tree and Tabular Conbined Notation[S]. 1998.
[9] ISO/IEC JTC1/SC21/WG7. Information Retrieval, Transfer and Management for OSI: FMCT Guidelines on Test Generation Methods from Formal Descriptions[S].1995.
[10] RFC 2460. Internet Protocol Version6 (IPv6) Specification[S].1998.
[11]赵乃东,贾瑞新.基于IPv6的协议测试方法的研究[D].北京:北京工业大学,2005.
[12] H.Miyata.2nd TAHI IPv6 Interoperability Test Event Report [A].In: Proceedings of 48th IETF Conference[C].Pittsburgh, USA, 2000.
[13]喻星,尹霞,王之梁.IPv6中RIPng协议的一致性测试研究与实践[J].计算机工程,2006,32(20):117-119.
[14]梁海滨.IAXA:为下一代网络部署做好准备[J].电信科学,2006,22(7):90-92.
[15]尹霞,吴建平.一种路由协议测试框架研究[J].清华大学学报(自然科学版),2001,41(1):81-84.
[16]田军.IPv6协议一致性测试研究及测试系统实现[D].北京:中国科学院计算技术研究所,2001.
[17]郑红霞.IPv6协议一致性测试例设计方法[D].北京:中国科学院计算技术研究所,2003.
[18]吕超.IPSec协议一致性测试系统的设计研究[D].合肥:中国科学技术大学,2005.
[19] RFC2402.IP Authentication Header[S]. 1998.
[20] RFC2406.IP Encapsulating Security Payload[S].1998.
[21] RFC2409.The Internet Key Exchange[S].1998.
[22]王文娟.安全协议测试集生成技术研究[D].郑州:解放军信息工程大学,2009.
[23]陈有祺.形式语言与自动机[M].天津:南开大学出版社, 2001:71-75.
[24] C.Yanghee, K.Dongkyun.Protocol Test Sequence Generation Using UIO and BUIO [A].In: IEEE International Conference on Communications[C].ICC'95 Seattle, Washington, USA, 1995.
[25] S.Fujiwara.Test Selection Based on Finite State Models [J]. IEEE Transactions on Software Engineering, 1991, 17(6).
[26] RFC2408.Internet Security Association and Key Management Protocol[S].1998.
[27] RFC2412.The Oakley Key Determination Protocol[S].1998.
[28] H.Kraw.A Versatile Secure Key Exchange Mechanism for Internet [A].In: Proceedings of the 1996 Symposium on Network and Distributed Systems Security[C].Chicago, USA, 1996.
[29]杨婷.SSL协议的测试方法研究[D].郑州:解放军信息工程大学,2009.
[30]袁崇义.Petri网原理[M].北京:电子工业出版社, 1998:21-24.
[31] C .A .Hoare.周巢尘译.通信顺序进程[M].北京:北京大学出版社, 1988.
[32] M.Barjak, C.Shiu-Kai.Formal Specification and Verification of OSI Session Layer Protocol Using CCS [J].Circuits and Systems, 1993, 18(11).
[33] P.Sidhu, L.Ting-Kau.Formal Methods for Protocol Testing: A Detailed Study [J].IEEE Transactions on Software Engineering, 1989, 15(4).
[34] S.S.Yu, M.T.Liu.A New Protocol Test Sequence Generation Method Based on UIOS [A].In: Proceeding of IEEE INFOCOM Conference[C].Florence, Italia, 1992.
[35]徐军委,赵保华,屈玉贵.一种新的UIO测试序列生成算法[J].中国科学技术大学学报,2004,34(6):710-715.
[36]赵保华,钱兰,郭雄辉.基于UIO测试序列的错误诊断算法[J].电子与信息学报,2006,28(11):152-156.
[37] H.Tao, C.Anthony.A Lightweight Executable Test Sequence Generation Method for Communication Protocols Modeled by EFSM [A].In: Proceedings of 12th International Conference on Intelligent and Adaptive Systems and Software Engineering[C].San Francisco, USA, 2006.
[38] H.Motteler, A.Chung and D.Sidhu.Fault Coverage of UIO-based Methods for Protocol Testing [A].In: Proceedings of the 6th International Workshop on Protocol Test systems[C].Pau, France, 1994.
[39]马秀飞.协议一致性测试与测试序列生成算法研究[D] .南京邮电学院硕士论文, 2005.
[40]成厚甫,张玉清.基于fuzzing的蓝牙OBEX漏洞挖掘技术[J].计算机工程,2008,34(19):151-153.
[41] K.Hideha, T.Jun.An Equivalent Division Method for Reducing Test Cases in State Transition Testing of MANET Protocols [A].In: IEICE Transactions onCommunications[C],2009,92(3):794-806.
[42]杨晶,赵保华,屈玉贵.基于层次结构的OSPF一致性测试[J].通信学报,2002,23(8):87-92.
[43]吕欣岩,赵保华,屈玉贵.一种可变测试集的协议一致性测试方法[J] .电子学报,2003,12A:180-182.
[2] ISO/IEC 9646-1.Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part1: General concepts[S]. 1994.
[3] ISO/IEC 9646-2 .Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part2: Abstract Test Suite specification[S]. 1994.
[4] ISO/IEC 9646-4 .Information technology-Open Systems Interconnection-Conformance testing methodology and freamwork-Part4: Test realization[S]. 1994.
[5] ISO/IEC 9646-5.Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part 5: Requirements on test laboratories and clients for the conformance assessment process[S]. 1994.
[6] ISO/IEC 9646-6.Information technology-Open Systems Interconnection-Conformance testing methodology and framework -- Part 6: Protocol profile test specification[S]. 1994.
[7] ISO/IEC 9646-7.Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part7: Implementation Conformance Statements[S]. 1995.
[8] ISO/IEC 9646-3 .Information technology-Open Systems Interconnection-Conformance testing methodology and framework-Part3: The Tree and Tabular Conbined Notation[S]. 1998.
[9] ISO/IEC JTC1/SC21/WG7. Information Retrieval, Transfer and Management for OSI: FMCT Guidelines on Test Generation Methods from Formal Descriptions[S].1995.
[10] RFC 2460. Internet Protocol Version6 (IPv6) Specification[S].1998.
[11]赵乃东,贾瑞新.基于IPv6的协议测试方法的研究[D].北京:北京工业大学,2005.
[12] H.Miyata.2nd TAHI IPv6 Interoperability Test Event Report [A].In: Proceedings of 48th IETF Conference[C].Pittsburgh, USA, 2000.
[13]喻星,尹霞,王之梁.IPv6中RIPng协议的一致性测试研究与实践[J].计算机工程,2006,32(20):117-119.
[14]梁海滨.IAXA:为下一代网络部署做好准备[J].电信科学,2006,22(7):90-92.
[15]尹霞,吴建平.一种路由协议测试框架研究[J].清华大学学报(自然科学版),2001,41(1):81-84.
[16]田军.IPv6协议一致性测试研究及测试系统实现[D].北京:中国科学院计算技术研究所,2001.
[17]郑红霞.IPv6协议一致性测试例设计方法[D].北京:中国科学院计算技术研究所,2003.
[18]吕超.IPSec协议一致性测试系统的设计研究[D].合肥:中国科学技术大学,2005.
[19] RFC2402.IP Authentication Header[S]. 1998.
[20] RFC2406.IP Encapsulating Security Payload[S].1998.
[21] RFC2409.The Internet Key Exchange[S].1998.
[22]王文娟.安全协议测试集生成技术研究[D].郑州:解放军信息工程大学,2009.
[23]陈有祺.形式语言与自动机[M].天津:南开大学出版社, 2001:71-75.
[24] C.Yanghee, K.Dongkyun.Protocol Test Sequence Generation Using UIO and BUIO [A].In: IEEE International Conference on Communications[C].ICC'95 Seattle, Washington, USA, 1995.
[25] S.Fujiwara.Test Selection Based on Finite State Models [J]. IEEE Transactions on Software Engineering, 1991, 17(6).
[26] RFC2408.Internet Security Association and Key Management Protocol[S].1998.
[27] RFC2412.The Oakley Key Determination Protocol[S].1998.
[28] H.Kraw.A Versatile Secure Key Exchange Mechanism for Internet [A].In: Proceedings of the 1996 Symposium on Network and Distributed Systems Security[C].Chicago, USA, 1996.
[29]杨婷.SSL协议的测试方法研究[D].郑州:解放军信息工程大学,2009.
[30]袁崇义.Petri网原理[M].北京:电子工业出版社, 1998:21-24.
[31] C .A .Hoare.周巢尘译.通信顺序进程[M].北京:北京大学出版社, 1988.
[32] M.Barjak, C.Shiu-Kai.Formal Specification and Verification of OSI Session Layer Protocol Using CCS [J].Circuits and Systems, 1993, 18(11).
[33] P.Sidhu, L.Ting-Kau.Formal Methods for Protocol Testing: A Detailed Study [J].IEEE Transactions on Software Engineering, 1989, 15(4).
[34] S.S.Yu, M.T.Liu.A New Protocol Test Sequence Generation Method Based on UIOS [A].In: Proceeding of IEEE INFOCOM Conference[C].Florence, Italia, 1992.
[35]徐军委,赵保华,屈玉贵.一种新的UIO测试序列生成算法[J].中国科学技术大学学报,2004,34(6):710-715.
[36]赵保华,钱兰,郭雄辉.基于UIO测试序列的错误诊断算法[J].电子与信息学报,2006,28(11):152-156.
[37] H.Tao, C.Anthony.A Lightweight Executable Test Sequence Generation Method for Communication Protocols Modeled by EFSM [A].In: Proceedings of 12th International Conference on Intelligent and Adaptive Systems and Software Engineering[C].San Francisco, USA, 2006.
[38] H.Motteler, A.Chung and D.Sidhu.Fault Coverage of UIO-based Methods for Protocol Testing [A].In: Proceedings of the 6th International Workshop on Protocol Test systems[C].Pau, France, 1994.
[39]马秀飞.协议一致性测试与测试序列生成算法研究[D] .南京邮电学院硕士论文, 2005.
[40]成厚甫,张玉清.基于fuzzing的蓝牙OBEX漏洞挖掘技术[J].计算机工程,2008,34(19):151-153.
[41] K.Hideha, T.Jun.An Equivalent Division Method for Reducing Test Cases in State Transition Testing of MANET Protocols [A].In: IEICE Transactions onCommunications[C],2009,92(3):794-806.
[42]杨晶,赵保华,屈玉贵.基于层次结构的OSPF一致性测试[J].通信学报,2002,23(8):87-92.
[43]吕欣岩,赵保华,屈玉贵.一种可变测试集的协议一致性测试方法[J] .电子学报,2003,12A:180-182.