< overview
ICMPv4 Test Suite Data Sheet
Test Suite:
ICMPv4 Test SuiteDirection:
ServerEstimates show that up to 800-900 million people depend on IPv4 for their daily communications needs. Since the inception of the Internet, IPv4 has assumed an unprecedented importance in the global scale. IPv4 implementations are found in almost all modern computer systems. This includes routers, switches, firewalls, desktop and server systems, laptops, PDAs, cell phones and other mobile systems, as well as a large number of various embedded systems. All of these devices are vulnerable to exploitation through externally-supplied malformed protocol data. Effects of malicious data range from transient parsing errors to complete system takeovers. ICMPv4 as part of IPv4 protocol stack has an extremely crucial role in modern society, the dependability and reliability of ICMPv4 implementations must be verified. ICMPv4 implementations are often tightly coupled with the underlying operating system, which means that serious flaws in ICMPv4 protocol handling may easily result in total system compromises. ICMPv4 Test Tools help prevent this by making ICMPv4 implementations more robust. ICMPv4 test suite implements a large variant of tested ICMPv4 messages. Some of the test groups are for testing ICMPv4 Request messages, these groups expect a response from SUT. ICMPv4 Control message groups are for testing Control messages, these groups do not except a response for SUT. In addition suite contains test groups for Response messages. Regular Response groups expect a request from SUT before response is sent, while Unsolicited Response message groups do not expect a request. The list of supported message types are shown below in the "Tested ICMPv4 Messages" table.
Used specifications
Specification
Title
EDSA-404
ISA Security Compliance Institute - Embedded Device Security Assurance - Testing the robustness of implementations of the IETF ICMPv4 network protocol - Version 1.3
IANA Protocol Numbers
Assigned Internet Protocol Numbers
RFC791
Internet Protocol Specification
RFC792
Internet Control Message Protocol
RFC950
Internet Standard Subnetting Procedure
RFC1108
U.S. Department of Defense: Security Options for the Internet Protocol
RFC1122
Requirements for Internet Hosts -- Communication Layers
RFC1191
Path MTU Discovery
RFC1256
ICMP Router Discovery Messages
RFC1393
Traceroute Using an IP Option
RFC1788
ICMP Domain Name Messages
RFC1812
Requirements for IP Version 4 Routers
RFC2521
ICMP Security Failures Messages
RFC4884
Extended ICMP to Support Multi-Part Messages
RFC4950
ICMP Extensions for Multiprotocol Label Switching
RFC5837
Extending ICMP for Interface and Next-Hop Identification
Tool-specific information
Tested ICMPv4 Messages
Notes
Specifications
Echo
Request, Response and Unsolicited Response
RFC792
Destination-Unreachable
Control
RFC792, RFC1108, RFC1122, RFC1191, RFC1812
Source-Quench
Control
RFC792
Redirect
Control
RFC792
Router-Advertisement
Control
RFC1256
Router-Solicitation
Control
RFC1256
Time-Exceeded
Control
RFC792
Parameter-Problem
Control
RFC792, RFC1108
Timestamp
Request, Response and Unsolicited Response
RFC792
Information
Request, Response and Unsolicited Response
RFC792
Address-Mask
Request
RFC950
Traceroute
Control and Response
RFC1393
Domain-Name
Request
RFC1788
Security-Failures
Control
RFC2521
Test tool general features
- Fully automated black-box negative testing
- Ready-made test cases
- Written in Java(tm)
- GUI command line remote interface modes
- Instrumentation (health-check) capability
- Support and maintenance
- Comprehensive user documentation
- Results reporting and analysis