Home » SHIELDS Tools

TestInv-Protocol

Tool Details

Tool Name: TestInv-Protocol
Tool Title Phrase: TestInv-Protocol, a passive testing tool that monitors communication traces of an application during run-time and verifies whether they satisfy certain security-related invariants derived from SHIELDS models.
Current Version: 0.1
Description: TestInv-Protocol tool aims at passively testing a deployed communicating system under test (SUT) to verify if it respects a set of properties called invariants. Here, invariants describe the correct order of exchanged messages among system entities with conditions on communicated data. Passive testing consists in observing input and output events of the system implementation in run-time and detecting potential misbehaviours or errors. The term “passive” means that the tests do not disturb the natural run-time of SUT since they do not stimulate it as in the case of active testing.
Architecture: The Figure below represents the basic architecture of the tool and the required input and outputs.

As shown, the TestInv-Protocol tool takes as input (in blue):
  1. Information on the system under test that is being observed. This information represents data of interest (protocol packets fields’ names for example) that are relevant to the automated analysis of the captured traces. This information is described in the “traceformat.properties” file.
  2. The SUT invariants defined in XML format. By invariants we mean here the combination of conditions that must be respected by the system. The non-respect of an invariant may imply a vulnerability.
  3. And the communication traces represented in XML format (captured using Wireshark for instance).
List of Features: TestInv-Protocol is a powerful detection tool that can be customized to work on different protocols, such as SIP, HTTP, SOAP, OLSR, SSH and SSDP.
Web site: Not yet available
Contact information: contact@montimage.com
Other informations: Prototype version only that will be made available under an open source license before the end of 2009. A first version has been developed by Institute Telecom / Telecom & Management SudParis and re-engineered by Montimage. A commercial version will also be made available, as well as services offering assistance in the detection, elimination and test of security vulnerabilities.