This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
A New Security Testing Method and Its Application to the Secure Xenix Kernel
February 1987 (vol. 13 no. 2)
pp. 169-183
V.D. Gligor, Department of Electrical Engineering, University of Maryland
A new security testing method is proposed that combines the advantages of both traditional "black box" (monolithic functional) testing and "white box" (functional-synthesis-based) testing. The new method allows significant coverage both for security model-based tests and for individual kernel-call tests. It eliminates redundant kernel test cases 1) by using a variant of control synthesis graphs, 2) by analyzing dependencies between descriptive kernel-call specifications, and 3) by exploiting access check separability. A higher degree of test assurance is achieved than that of other security testing methods because the new method helps eliminate cyclic dependencies among test programs for different kernel calls. The application of this method to the testing of the Secure Xenix? kernel is illustrated.
Index Terms:
security testing, Access check graphs, control synthesis graphs, cyclic dependencies, data flow coverage, functional testing, kernels, security model
Citation:
V.D. Gligor, C.S. Chandersekaran, null Wen-Der Jiang, A. Johri, G.L. Luckenbaugh, L.E. Reich, "A New Security Testing Method and Its Application to the Secure Xenix Kernel," IEEE Transactions on Software Engineering, vol. 13, no. 2, pp. 169-183, Feb. 1987, doi:10.1109/TSE.1987.232890
Usage of this product signifies your acceptance of the Terms of Use.