Patent 7185232 Issued on February 27, 2007. Estimated Expiration Date: February 28, 2022. Estimated Expiration Date is calculated based on simple USPTO term provisions. It does not account for terminal disclaimers, term adjustments, failure to pay maintenance fees, or other factors which might affect the term of a patent.
A method of testing a target in a network by fault injection, includes: defining a transaction baseline; modifying at least one of an order and a structure of the transaction baseline to obtain a modified transaction with malformed grammar; and transmitting the modified transaction to a target. The method may further include, receiving a feedback from the target to determine fault occurrence. An apparatus for testing a target in a network by fault injection, includes: a driver configured to generate patterns, where a pattern can generate a plurality of packets for transmission to the target, the pattern being represented by an expression with a literal string and a wild character class; and a network interface coupled to the driver and configured to transmit and receive network traffic.
Other References
Ptacek et al. “Insertion, evasion, and denial of service: eluding network intrusion detection.” Technical report. Secure Networks Inc., Jan. 1998.
Ghosh et al. “An Automated Approach for Identifying Potential Vulnerabilities in Software.” Proc. of IEEE Symp. on Sec. and Privacy. May 3-6, 1998, pp. 104-114.
“An Automated Approach for Identifying Potential Vulnerabilities In Software” by A. K. Ghosh, et al. Proc. of IEEE Symp. on Sec. and Privacy. May 3-6, 1998. pp. 104-114.
“Towards Analysing Security-Critical Software During Development”, by A. K. Ghosh, et al. Technical Report RSTR-96-023-01, RST Corporation, Dec. 1996. Total pp. 14.
“An Approach for Certifying Security in Software Components”, by A.K. Ghosh, et al. Proc. 21st NIST-NCSC National Info. Systems Conf., Oct. 6-9, 1998. Total pp. 7.
“Vulnerability Testing of Software System Using Fault Injection” by W. Du, et al. Tech. Report Coast TR98-02, Dept. of Comp. Science, Purdue Univ., 1998. Total pp. 20.
“NT Web Technology Vulnerabilities”, rain.forest.puppy, Phrack Magazine, vol. 8, Iss. 54, Dec. 25, 1998, Article 8 of 12. Total pp. 8.
“Program-Probe Web for Insecure Perl Installations”, perl-cgi—pl.txt, Mar. 28, 1996. Total pp. 3.
“Program-CgiScan v 1.5”, cgiscan—c.txt, Feb. 1999. Total pp. 3.
“SPHINX: A Framework for Creating Personal, SIte-Specific Web Crawlers” by R. Miller, et al. Apr. 1998. [webpages] [online]. Retrieved on Mar. 23, 2006. Retrieved from the internet: http://www.cs.cmu.edu/—rcm/papers/www7/www7.html. Total pp. 14.
“The World Wide Web Security FAQ version 1.9.0” by L. Stein. Jun. 30, 1998. [webpages] [online]. Retrieved on Mar. 20, 2006. Retrieved from the internet: file://C:\work\Cenzic\www-security-faq.html. Total pp. 4.
February 28, 2022. Estimated Expiration Date is calculated based on simple USPTO term provisions. It does not account for terminal disclaimers, term adjustments, failure to pay maintenance fees, or other factors which might affect the term of a patent.
