Xml-based fuzzy test language protocol test script and test engine

A technology of fuzzy testing and testing engine, which is applied in software testing/debugging, error detection/correction, instrumentation, etc. It can solve the problems that Achilles is difficult to meet testing requirements, limited industrial control protocols, and long development cycle, so as to ensure flexibility and The effect of scalability

Pending Publication Date: 2019-09-13
NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT +1
View PDF6 Cites 14 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] Although Achilles has become a very mature product in the industry, it also has obvious limitations. The industrial control protocols supported by Achilles are limited. Once the protocol type needs to be added, the development cycle is relatively long, and equipment manufacturers often have new protocols or custom protocols. testing requirements, and need to customize flexible contract delivery mechanism according to different protocols, so it is difficult for Achilles to meet such flexible testing requirements

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Xml-based fuzzy test language protocol test script and test engine

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0066]下面对本发明作进一步说明:

[0067]本发明所述协议测试脚本包括根据工控和物联网协议报文格式,基于模糊测试语言和状态机自动生成测试脚本和针对被测设备状态,基于模糊测试语言生成监测脚本;

[0068]所述测试引擎包括

[0069]模糊测试引擎可实现对脚本的自动解析;

[0070]输入测试脚本和监测脚本自动生成的测试报文和监测报文并发送给被测设备;

[0071]测试引擎通过发送监测报文可对目标设备的存活状态、响应延迟等进行监测;

[0072]发送测试报文时,在对方出现响应超时和死机时测试引擎能够记录当前测试包最近的若干报文数据,有利于进行错误分析;

[0073]测试引擎可以通过区间测试、分段测试等灵活的方式进行漏洞确认,从而发现被测设备的协议设计、实现缺陷或安全漏洞。

[0074]所述基于xml的高效模糊测试语言包括对象和函数定义及条件和循环语句,根据工控和物联网协议提供适用于工控和物联网协议FUZZ测试的结构变异、错误注入和违反内容语义,基于模糊测试语言并根据工控和物联网协议的报文格式和状态机生成测试脚本;模糊测试引擎对脚本自动解析,并自动生成包含结构变异、错误注入和违反内容语义模糊语言功能的测试报文发送给被测设备,同时利用模糊测试语言监测被测设备状态监测脚本,对目标的存活状态和响应延迟进行监测,在对方出现响应超时和死机时记录当前测试包最近的若干报文,并通过再次重放和分段测试的方式进行漏洞确认,确认被测设备的协议设计、实现缺陷或安全漏洞。

[0075]所述基于xml的高效模糊测试语言支持对象和函数的定义,也支持常量和变量的基本数据类型,对象为动作,包括send(发送)、recv(接收)和assign(赋值),还包括数据定义,如:PDU、struct、field等,函数则提供了丰富的逻辑功能,例如crc校验、协议值替换等。

[0076]本发明优选的,所述对象和函数包括

[0077]a、, ;

[0078]

[0079]

[0080]对属性variable指定的变量执行递增(+1)操作;

[0081]对属性variable指定的变量执行递增(-1)操作;

[0082]b、

[0083]15000

[0084]将元素的取值常量或表达式赋值给属性variable指定的变量,如果variable预先定义了类型,就无需指定type属性。如果是初次使用此变量,则需要指定类型;如不指定type属性,...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses an xml-based fuzzy test language protocol test script and a test engine. The protocol test script comprises a test script automatically generated based on a fuzzy test languageand a state machine according to industrial control and Internet of Things protocol message formats and a monitoring script generated based on the fuzzy test language and the state machine and aimingat the state of tested equipment. According to the xml-based fuzzy test language protocol test script and a test engine, the test script and the monitoring script are automatically generated based onthe language; and the test engine can automatically parse the script language to generate the test data packet and send the test data packet to the tested equipment to complete the test task, the efficient fuzzy test language enables the detection system to expand a new protocol very conveniently, and the test engine architecture also guarantees the flexibility and expansibility of a packet sending mechanism.

Description

technical field [0001] The invention relates to the technical field of test scripts and test engines, in particular to an xml-based fuzzy test language protocol test script and test engine. Background technique [0002] In recent years, several major incidents of industrial control systems being attacked by hackers have occurred in the world, causing serious consequences and shocking the world. Moreover, such cyber attacks are increasing, exposing serious deficiencies in the security protection of industrial control systems. China has also begun to gradually pay attention to the security issues of industrial control systems. As more and more security flaws of industrial control networks are exposed, security issues have become a major problem for industrial control networks. To improve the security of the industrial control network, we must first improve the security of various devices in the industrial control network. Through the attack test, it is an effective method to...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): G06F11/36
CPCG06F11/3684G06F11/3688
Inventor 张晓明何跃鹰张嘉玮孙中豪刘中金方喆君李明柱郭涛
Owner NAT COMP NETWORK & INFORMATION SECURITY MANAGEMENT CENT
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap