Security Testing of Optical Networking Equipment
Optical networks are a critical part of today's infrastructure, from 5G to residential access, that must be protected. A connecting device or group of devices with malicious intent should not be able to disrupt network operations under any circumstance.
The nodes that make up modern optical networks need to be manageable, upgradeable and possible to monitor, all from a distance. In addition, their features and software components should be modular. They are also expected to support a large variety of protocols on various interfaces. In short, the nodes are complex software systems. And where there is software, there are bugs and possibly even vulnerabilities.
Security testing is the first line of defense against attackers. Software becomes more secure if bugs and vulnerabilities are found at an early stage in the development cycle, before the software is deployed.
But how do you find vulnerabilities which you don't know that you have? In this project we investigate how experimental and state-of-the-art methods for automated test case generation can be used to assess the security of next-generation optical networking equipment. We are concerned both with functional verification and with the performance aspect to prevent overloading attacks.
Publications
L. Fernandez and G. Karlsson, "Black-box Fuzzing for Security in Managed Networks: An Outline," in IEEE Networking Letters, doi: 10.1109/LNET.2023.3286443 .