An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter Mutation
The research on component vulnerability testing is critical. In this paper, an approach of vulnerability testing is proposed based on condition mutation and parameter mutation in order to effectively detect the explicit vulnerabilities of third-party components. To start with, the Pre-condition Muta...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2013-01-01
|
| Series: | The Scientific World Journal |
| Online Access: | http://dx.doi.org/10.1155/2013/609254 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1832545402919845888 |
|---|---|
| author | Jinfu Chen Jiamei Chen Yongzhao Zhan Weihe Chen Rubing Huang |
| author_facet | Jinfu Chen Jiamei Chen Yongzhao Zhan Weihe Chen Rubing Huang |
| author_sort | Jinfu Chen |
| collection | DOAJ |
| description | The research on component vulnerability testing is critical. In this paper, an approach of vulnerability testing is proposed based on condition mutation and parameter mutation in order to effectively detect the explicit vulnerabilities of third-party components. To start with, the Pre-condition Mutation Algorithm (PCMA) is presented to generate mutants set of the pre-condition and test cases are generated based on these mutants. Then, the Single Parameter Mutated Values (SPMV) procedure is addressed to generate parameter values based on mutation operators of parameter specification. These values are then taken as the input of the Test Case Generation Algorithm based on the Parameter Constraint (TCGPC), which is addressed to generate test case set violating the parameter constraint. The explicit vulnerabilities can be detected by the vulnerability detecting algorithm based on the test cases of condition and parameter mutation. The experiments show that our approach can detect explicit vulnerability faults of third-party components. Furthermore, the proposed approach can detect more vulnerability faults than other related approaches such as condition coverage methods, fuzzy testing method and boundary value method. |
| format | Article |
| id | doaj-art-d856691dc5f2413ca55c27df6bee5ec5 |
| institution | Kabale University |
| issn | 1537-744X |
| language | English |
| publishDate | 2013-01-01 |
| publisher | Wiley |
| record_format | Article |
| series | The Scientific World Journal |
| spelling | doaj-art-d856691dc5f2413ca55c27df6bee5ec52025-02-03T07:25:56ZengWileyThe Scientific World Journal1537-744X2013-01-01201310.1155/2013/609254609254An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter MutationJinfu Chen0Jiamei Chen1Yongzhao Zhan2Weihe Chen3Rubing Huang4School of Computer Science and Tele. Engineering, Jiangsu University, Zhenjiang 212013, ChinaSchool of Computer Science and Tele. Engineering, Jiangsu University, Zhenjiang 212013, ChinaSchool of Computer Science and Tele. Engineering, Jiangsu University, Zhenjiang 212013, ChinaSchool of Computer Science and Tele. Engineering, Jiangsu University, Zhenjiang 212013, ChinaSchool of Computer Science and Tech., Huazhong University of Science and Technology, Wuhan 430074, ChinaThe research on component vulnerability testing is critical. In this paper, an approach of vulnerability testing is proposed based on condition mutation and parameter mutation in order to effectively detect the explicit vulnerabilities of third-party components. To start with, the Pre-condition Mutation Algorithm (PCMA) is presented to generate mutants set of the pre-condition and test cases are generated based on these mutants. Then, the Single Parameter Mutated Values (SPMV) procedure is addressed to generate parameter values based on mutation operators of parameter specification. These values are then taken as the input of the Test Case Generation Algorithm based on the Parameter Constraint (TCGPC), which is addressed to generate test case set violating the parameter constraint. The explicit vulnerabilities can be detected by the vulnerability detecting algorithm based on the test cases of condition and parameter mutation. The experiments show that our approach can detect explicit vulnerability faults of third-party components. Furthermore, the proposed approach can detect more vulnerability faults than other related approaches such as condition coverage methods, fuzzy testing method and boundary value method.http://dx.doi.org/10.1155/2013/609254 |
| spellingShingle | Jinfu Chen Jiamei Chen Yongzhao Zhan Weihe Chen Rubing Huang An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter Mutation The Scientific World Journal |
| title | An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter Mutation |
| title_full | An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter Mutation |
| title_fullStr | An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter Mutation |
| title_full_unstemmed | An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter Mutation |
| title_short | An Approach of Vulnerability Testing for Third-Party Component Based on Condition and Parameter Mutation |
| title_sort | approach of vulnerability testing for third party component based on condition and parameter mutation |
| url | http://dx.doi.org/10.1155/2013/609254 |
| work_keys_str_mv | AT jinfuchen anapproachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT jiameichen anapproachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT yongzhaozhan anapproachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT weihechen anapproachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT rubinghuang anapproachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT jinfuchen approachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT jiameichen approachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT yongzhaozhan approachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT weihechen approachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation AT rubinghuang approachofvulnerabilitytestingforthirdpartycomponentbasedonconditionandparametermutation |