![]() ![]() These protocols have syntactic structure information embedded in the PDU. Previous research has led to the development of a protocol testing framework and methodology for syntax-based testing of protocols, whose abstract syntax is based on ASN.1 (Abstract Syntax Notation), and whose transfer syntax is based on BER or DER (Basic or Distinguished Encoding Rules). segmentation faults, buffer, heap or stack overflows, etc.) when it attempts to parse and use a mutated PDU. Security vulnerabilities can be discovered by detecting anomalous behaviour or crashes in the IUT (e.g. ![]() It involves testing the Implementation Under Test (IUT) with a large number of mutated Protocol Data Units (PDUs), built by intentionally disobeying the protocol's syntax. Syntax-based vulnerability testing is a static black-box testing method for protocol implementations.
0 Comments
Leave a Reply. |