andr3/scyther
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

MPA: Improved the attack summaries.

Browse Source
This commit is contained in:
Cas Cremers 2010-11-24 17:13:26 +01:00
parent d96ffa3354
commit 2ec70106ba
1 changed files with 68 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

69
gui/test-mpa.py
View File

@ -53,6 +53,11 @@ http://code.google.com/p/python-progressbar/
""" """
FOUND = [] FOUND = []
ALLMPA = []
ALLCLAIMS = []
INVOLVED = []
PROTFILETONAME = {}
PROTNAMETOFILE = {}
OPTS = None OPTS = None
ARGS = None ARGS = None
@ -214,9 +219,20 @@ def getCorrectIsolatedClaims(protocolset,options=[]):
goodprotocols.append(protocol) goodprotocols.append(protocol)
allfalse = True allfalse = True
for claim in s.claims: for claim in s.claims:
global ALLCLAIMS
global PROTFILETONAME
global PROTNAMETOFILE
if claim not in ALLCLAIMS:
ALLCLAIMS.append(claim)
if claim.okay: if claim.okay:
correctclaims.append((protocol,claim.id)) correctclaims.append((protocol,claim.id))
allfalse = False allfalse = False
PROTFILETONAME[protocol] = str(claim.protocol)
PROTNAMETOFILE[str(claim.protocol)] = protocol
count += 1 count += 1
if not allfalse: if not allfalse:
cpcount += 1 cpcount += 1
@ -244,11 +260,25 @@ def verifyMPAlist(mpalist,claimid,options=[]):
if claim: if claim:
if not claim.okay: if not claim.okay:
global FOUND global FOUND
global ALLFOUND
global INVOLVED
# This is an MPA attack! # This is an MPA attack!
if OPTS.debug: if OPTS.debug:
print "I've found a multi-protocol attack on claim %s in the context %s." % (claimid,str(mpalist)) print "I've found a multi-protocol attack on claim %s in the context %s." % (claimid,str(mpalist))
FOUND.append(Attack(claim,mpalist))
att = Attack(claim,mpalist)
FOUND.append(att)
ALLFOUND.append(att)
inv = [claim.protocol]
for fn in mpalist:
global PROTFILETONAME
inv.append(PROTFILETONAME[fn])
for pn in inv:
if pn not in INVOLVED:
INVOLVED.append(pn)
return False return False
else: else:
@ -465,6 +495,15 @@ def exploreTree( i, choices , l, options = [], mpaoptions = []):
def fullScan(l, options = [], mpaoptions = []): def fullScan(l, options = [], mpaoptions = []):
global OPTS global OPTS
global ALLFOUND
global ALLCLAIMS
global INVOLVED
global PROTNAMETOFILE
global PROTFILETONAME
ALLFOUND = []
ALLCLAIMS = []
INVOLVED = []
if OPTS.limit > 0: if OPTS.limit > 0:
l = l[:OPTS.limit] l = l[:OPTS.limit]
@ -481,6 +520,34 @@ def fullScan(l, options = [], mpaoptions = []):
if len(lres) > 1: if len(lres) > 1:
showDiff(lres) showDiff(lres)
allprots = set()
attprots = set()
invprots = set()
for att in ALLFOUND:
attprots.add(str(att.protocol()))
for cl in ALLCLAIMS:
allprots.add(str(cl.protocol))
for prot in INVOLVED:
invprots.add(str(prot))
print "The bottom line: we found %i protocols with multi-protocol attacks from a set of %i protocols." % (len(attprots),len(allprots))
print
print "Multi-protocol attacks were found on:"
for prot in sorted(list(allprots & attprots)):
print " %s" % (prot)
print
print "No multi-protocol attacks were found on these protocols, but they caused MPA attacks:"
for prot in sorted(list((allprots - attprots) & invprots)):
print " %s" % (prot)
print
print "These protocols were not involved in any MPA attacks:"
for prot in sorted(list((allprots - attprots) - invprots)):
print " %s\t[%s]" % (prot,PROTNAMETOFILE[prot])
print