Skip to main content
SpringerLink
Log in
Book cover

International Workshop on Automated Verification of Critical Systems

International Workshop on Formal Methods for Industrial Critical Systems

AVoCS 2017, FMICS 2017: Critical Systems: Formal Methods and Automated Verification pp 185–200Cite as

Learning-Based Testing the Sliding Window Behavior of TCP Implementations

  • Conference paper
  • First Online:

Part of the book series: Lecture Notes in Computer Science ((LNPSE,volume 10471))

Abstract

We develop a learning-based testing framework for register automaton models that can express the windowing behavior of TCP, thereby presenting the first significant application of register automata learning to realistic software for a class of automata with Boolean-arithmetic constraints over data values. We have applied our framework to TCP implementations belonging to different operating systems and have found a violation of the TCP specification in Linux and Windows. The violation has been confirmed by Linux developers.

P. Fiterău-Broştean—Supported by NWO project 612.001.216, Active Learning of Security Protocols (ALSEP).

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Notes

  1. 1.

    See: https://goo.gl/23VNfv.

  2. 2.

    See: https://goo.gl/9A8ZYM.

  3. 3.

    See: https://www.rfc-editor.org/errata/rfc5961.

References

  1. Stewart, R., Ramaiah, A., Dalal, M.: Improving TCP’s Robustness to Blind In-Window Attacks. RFC 5961, August 2010

    Google Scholar 

  2. Aarts, F., Fiterau-Brostean, P., Kuppens, H., Vaandrager, F.: Learning register automata with fresh value generation. In: Leucker, M., Rueda, C., Valencia, F.D. (eds.) ICTAC 2015. LNCS, vol. 9399, pp. 165–183. Springer, Cham (2015). doi:10.1007/978-3-319-25150-9_11

    Chapter  Google Scholar 

  3. Angluin, D.: Learning regular sets from queries and counterexamples. Inf. Comput. 75(2), 87–106 (1987)

    Article  MATH  MathSciNet  Google Scholar 

  4. Berg, T., Grinchtein, O., Jonsson, B., Leucker, M., Raffelt, H., Steffen, B.: On the correspondence between conformance testing and regular inference. In: Cerioli, M. (ed.) FASE 2005. LNCS, vol. 3442, pp. 175–189. Springer, Heidelberg (2005). doi:10.1007/978-3-540-31984-9_14

    Chapter  Google Scholar 

  5. Cassel, S., Howar, F., Jonsson, B.: RALib: a LearnLib extension for inferring EFSMs. In: DIFTS 2015 (2015)

    Google Scholar 

  6. Cassel, S., Howar, F., Jonsson, B., Steffen, B.: Active learning for extended finite state machines. Formal Aspects Comput. 28(2), 233–263 (2016)

    Article  MATH  MathSciNet  Google Scholar 

  7. Fiterău-Broştean, P., Janssen, R., Vaandrager, F.: Learning fragments of the TCP network protocol. In: Lang, F., Flammini, F. (eds.) FMICS 2014. LNCS, vol. 8718, pp. 78–93. Springer, Cham (2014). doi:10.1007/978-3-319-10702-8_6

    Google Scholar 

  8. Fiterău-Broştean, P., Janssen, R., Vaandrager, F.: Combining model learning and model checking to analyze TCP implementations. In: Chaudhuri, S., Farzan, A. (eds.) CAV 2016. LNCS, vol. 9780, pp. 454–471. Springer, Cham (2016). doi:10.1007/978-3-319-41540-6_25

    Google Scholar 

  9. Fiterău-Broştean, P., Lenaerts, T., de Ruiter, J., Poll, E., Vaandrager, F.W., Verleg, P.: Model learning and model checking of SSH implementations. In: SPIN Symposium (2017, to appear)

    Google Scholar 

  10. Hagerer, A., Hungar, H., Niese, O., Steffen, B.: Model generation by moderated regular extrapolation. In: Kutsche, R.-D., Weber, H. (eds.) FASE 2002. LNCS, vol. 2306, pp. 80–95. Springer, Heidelberg (2002). doi:10.1007/3-540-45923-5_6

    Chapter  Google Scholar 

  11. Koopman, P., Achten, P., Plasmeijer, R.: Model-based shrinking for state-based testing. In: McCarthy, J. (ed.) TFP 2013. LNCS, vol. 8322, pp. 107–124. Springer, Heidelberg (2014). doi:10.1007/978-3-642-45340-3_7

    Chapter  Google Scholar 

  12. Meinke, K., Sindhu, M.A.: Lbtest: a learning-based testing tool for reactive systems. In: ICST 2013, pp. 447–454. IEEE Computer Society (2013)

    Google Scholar 

  13. Peled, D., Vardi, M.Y., Yannakakis, M.: Black box checking. J. Autom. Lang. Comb. 7(2), 225–246 (2001)

    MATH  MathSciNet  Google Scholar 

  14. Postel, J.: Transmission Control Protocol. RFC 793, September 1981

    Google Scholar 

  15. de Ruiter, J., Poll, E.: Protocol state fuzzing of TLS implementations. In: USENIX Security, pp. 193–206. USENIX Association, Washington, D.C. (2015)

    Google Scholar 

  16. Tretmans, J.: Model-based testing and some steps towards test-based modelling. In: Bernardo, M., Issarny, V. (eds.) SFM 2011. LNCS, vol. 6659, pp. 297–326. Springer, Heidelberg (2011). doi:10.1007/978-3-642-21455-4_9

    Chapter  Google Scholar 

  17. Valiant, L.G.: A theory of the learnable. Commun. ACM 27(11), 1134–1142 (1984)

    Article  MATH  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Institute for Computing and Information Sciences, Radboud University, Nijmegen, The Netherlands

    Paul Fiterău-Broştean

  2. Institute for Applied Software Systems Engineering, Clausthal University of Technology, Clausthal-Zellerfeld, Germany

    Falk Howar

Authors
  1. Paul Fiterău-Broştean
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Falk Howar
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Paul Fiterău-Broştean .

Editor information

Editors and Affiliations

  1. Paris 13 University, Villetaneuse, France

    Laure Petrucci

  2. Mälardalen University, Västerås, Sweden

    Cristina Seceleanu

  3. University of York, York, United Kingdom

    Ana Cavalcanti

Rights and permissions

Reprints and permissions

Copyright information

© 2017 Springer International Publishing AG

About this paper

Cite this paper

Fiterău-Broştean, P., Howar, F. (2017). Learning-Based Testing the Sliding Window Behavior of TCP Implementations. In: Petrucci, L., Seceleanu, C., Cavalcanti, A. (eds) Critical Systems: Formal Methods and Automated Verification. AVoCS FMICS 2017 2017. Lecture Notes in Computer Science(), vol 10471. Springer, Cham. https://doi.org/10.1007/978-3-319-67113-0_12

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-67113-0_12

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-67112-3

  • Online ISBN: 978-3-319-67113-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation