Model-Based Testing of SDN Firewalls: A Case Study

Authors

Izzat Alsmadi, Boise State University
Milson Munakami, Boise State UniversityFollow
Dianxiang Xu, Boise State UniversityFollow

Document Type

Conference Proceeding

Publication Date

2015

DOI

https://doi.org/10.1109/TSA.2015.22

Abstract

In Software defined networking (SDN), security mechanisms such as firewalls need to deal with dynamic network environments. This raises challenges for quality assurance of these security mechanisms. This paper presents a case study on model-based testing of SDN firewall programs. The subject program is the firewall module of Floodlight, one of the most popular SDN platforms in Java. We model the expected firewall behavior with function nets, a modeling formalism in the MISTA tool. The test code is generated automatically by MISTA. The result of our case study shows that the generated model-based tests have achieved much higher mutation coverage than the existing Junit tests in the Floodlight firewall program. This indicates that model-based testing can be a viable option for quality assurance of SDN-based firewall programs.

Publication Information

Alsmadi, Izzat; Munakami, Milson; and Xu, Dianxiang. (2015). "Model-Based Testing of SDN Firewalls: A Case Study". 2015 Second International Conference on Trustworthy Systems and Their Applications, 81-88.