ICMPv4 Test Suite Data Sheet
Test Suite:
ICMPv4 Test Suite
Direction:
Server

Estimates show that up to 800-900 million people depend on IPv4 for their daily communications needs. Since the inception of the Internet, IPv4 has assumed an unprecedented importance in the global scale. IPv4 implementations are found in almost all modern computer systems. This includes routers, switches, firewalls, desktop and server systems, laptops, PDAs, cell phones and other mobile systems, as well as a large number of various embedded systems. All of these devices are vulnerable to exploitation through externally-supplied malformed protocol data. Effects of malicious data range from transient parsing errors to complete system takeovers. ICMPv4 as part of IPv4 protocol stack has an extremely crucial role in modern society, the dependability and reliability of ICMPv4 implementations must be verified. ICMPv4 implementations are often tightly coupled with the underlying operating system, which means that serious flaws in ICMPv4 protocol handling may easily result in total system compromises. ICMPv4 Test Tools help prevent this by making ICMPv4 implementations more robust. ICMPv4 test suite implements a large variant of tested ICMPv4 messages. Some of the test groups are for testing ICMPv4 Request messages, these groups expect a response from SUT. ICMPv4 Control message groups are for testing Control messages, these groups do not except a response for SUT. In addition suite contains test groups for Response messages. Regular Response groups expect a request from SUT before response is sent, while Unsolicited Response message groups do not expect a request. The list of supported message types are shown below in the "Tested ICMPv4 Messages" table.

Used specifications

Specification
Title
EDSA-404

ISA Security Compliance Institute - Embedded Device Security Assurance - Testing the robustness of implementations of the IETF ICMPv4 network protocol - Version 1.3

IANA Protocol Numbers

Assigned Internet Protocol Numbers

RFC791

Internet Protocol Specification

RFC792

Internet Control Message Protocol

RFC950

Internet Standard Subnetting Procedure

RFC1108

U.S. Department of Defense: Security Options for the Internet Protocol

RFC1122

Requirements for Internet Hosts -- Communication Layers

RFC1191

Path MTU Discovery

RFC1256

ICMP Router Discovery Messages

RFC1393

Traceroute Using an IP Option

RFC1788

ICMP Domain Name Messages

RFC1812

Requirements for IP Version 4 Routers

RFC2521

ICMP Security Failures Messages

RFC4884

Extended ICMP to Support Multi-Part Messages

RFC4950

ICMP Extensions for Multiprotocol Label Switching

RFC5837

Extending ICMP for Interface and Next-Hop Identification

Tool-specific information

Tested ICMPv4 Messages
Notes
Specifications
Echo
Request, Response and Unsolicited Response
RFC792
Destination-Unreachable
Control
RFC792, RFC1108, RFC1122, RFC1191, RFC1812
Source-Quench
Control
RFC792
Redirect
Control
RFC792
Router-Advertisement
Control
RFC1256
Router-Solicitation
Control
RFC1256
Time-Exceeded
Control
RFC792
Parameter-Problem
Control
RFC792, RFC1108
Timestamp
Request, Response and Unsolicited Response
RFC792
Information
Request, Response and Unsolicited Response
RFC792
Address-Mask
Request
RFC950
Traceroute
Control and Response
RFC1393
Domain-Name
Request
RFC1788
Security-Failures
Control
RFC2521
Test tool general features
  • Fully automated black-box negative testing
  • Ready-made test cases
  • Written in Java(tm)
  • GUI command line remote interface modes
  • Instrumentation (health-check) capability
  • Support and maintenance
  • Comprehensive user documentation
  • Results reporting and analysis