Behavioral model-based software security test case generation method

A security testing and behavioral technology, applied in the field of software security test case generation based on behavioral models, and can solve problems such as unsatisfactory effects

A security testing and behavioral technology, applied in the field of software security test case generation based on behavioral models, and can solve problems such as unsatisfactory effects

CN101968769AActive Publication Date: 2011-02-09PLA UNIV OF SCI & TECH
1 Cites 27 Cited by

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Behavioral model-based software security test case generation method
  • Behavioral model-based software security test case generation method
  • Behavioral model-based software security test case generation method

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0053] The present invention will be further described below in conjunction with the accompanying drawings.

[0054] figure 1 It is a schematic diagram of the implementation flow of the behavior model-based software security test case generation method of the present invention. The method includes the following steps:

[0055] (1) Determine the behavioral requirements of software security testing;

[0056] (2) Use the test requirement behavior model to describe the security test requirements;

[0057] (3) Use UML state diagram to describe the test requirement behavior model;

[0058] (4) Convert UML diagram state diagram to FSM;

[0059] (5) Automatically generate security test cases based on FSM feature sequences.

[0060] The above steps will be further described below in conjunction with specific examples and accompanying drawings.

[0061] Step (1) Determine software security testing requirements

[0062] Software security testing requirements can be obtained throug...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a behavioral model-based software security test case generation method, which comprises the following steps of: (1) determining software security test needs; (2) describing the security test needs by using a test need behavioral model; (3) describing the test need behavioral model by using a unified modeling language (UML) state chart; (4) transforming the UML state chart into a finite state machine (FSM); and (5) automatically generating a security test case based on a characteristic sequence of the FSM. In the behavioral model-based software security test case generation method provided by the invention, security test is performed primarily from a software security defect (SSD) behavior prevention mechanism, an SSD behavior detection mechanism and an SSD behavior response mechanism, so that the one-sidedness and need imperfection of conventional software security tests are overcome and the test effectiveness is ensured. Simultaneously, the test case automatic generation method provided by the invention reduces the workload of testers, improves the efficiency and level of automation of the test and ensures test effects.

Description

technical field [0001] The invention relates to a software testing method, in particular to a behavior model-based software safety test case generation method. Background technique [0002] In recent years, software security incidents have emerged one after another, causing more and more harm. People tend to focus their energy on network security technology and information system security framework, but the latest research shows that the vast majority of serious security crises in recent years are software security issues, the root cause of which is the security flaws in software. Statistics show that the 10 most common software security flaws cause 75% of security breaches. [0003] As an important way to ensure software quality, software testing is of great significance to improving software security, and the key lies in the practicability and effectiveness of security testing methods. Traditional software security testing originates from functional testing technology, w...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
09 Feb 2011
Publication
CN101968769A
IPC
G06F11/36
Inventors
黄松; 任正平