API Testing - PowerPoint PPT Presentation

1 / 26
About This Presentation
Title:

API Testing

Description:

Trend Micro, AppletTrap Team. 2001.09.18 (Nanjing) ... Trend Micro InterScan AppletTrap is a policy-based, centrally-managed ... – PowerPoint PPT presentation

Number of Views:5181
Avg rating:3.0/5.0
Slides: 27
Provided by: suns
Category:
Tags: api | micro | testing | trend

less

Transcript and Presenter's Notes

Title: API Testing


1
InterScan AppletTrap
Zhang Hong
Trend Micro, AppletTrap Team 2001.09.18 (Nanjing)
2
Wheres AppletTrap
  • Trend Micro InterScan AppletTrap is a
    policy-based, centrally-managed enterprise
    solution at the Internet gateway that monitors
    the behavior of malicious applets, ActiveX,
    JavaScript and VBScript.

3
The competitors
  • SurfinShield Client solution. Replace Java
    library in browsers
  • administration issue(deploy, upgrade)
  • SurfinGate Server Solution. Static parsing at
    server.
  • Heavy load on server

4
AppletTrap
  • Distribute work between client and server evenly
  • Balance between runtime monitoring and static
    scanning
  • Low administration cost
  • Support resign for Jar file

5
How AppletTrap works?
6
AppletTrap Proxy
  • AppletTrap stands as a HTTP proxy and not require
    any client-side modification
  • Implemented Cache
  • Support Http, Https and Ftp

7
Jar File Controls
  • Check the block list firstly
  • Check the certification
  • Do instrument
  • Repack the Jar file
  • Resign with imported sign key

8
Class File Controls
  • Check the block list firstly
  • Do instrument

9
Instrument
  • Alter java code sequence during downloading
  • Server static scan java code to find insecure
    function
  • Server insert monitoring instruction before and
    after insecure function
  • Client run original code and monitoring code
  • Client send report back if malicious code found

10
Certification checks
  • Check the integrality of certification to prove
    that the certification not be modified
  • Check whether the CP are trusted with our CP list
  • Check the integrality of software with the public
    key of CP

11
Certification
  • A certificate is a set of data that identifies an
    entity.
  • The data in a certificate includes the public
    cryptographic key.
  • A certification include CP and CA

12
CA CP
  • The trusted organization that issues the
    certificate is a Certification Authority (CA) and
    is known as the certificate's issuer.
  • CP is some one who publish the software, as well
    as the certificate, and we can verify the
    authenticity of that CP by verifying the digital
    signature and the certificate

13
Re-Sign
  • Break the integrity of digitally signed Applets
  • Re-sign by specified signer
  • Client only accept specified signer

14
ActiveX Signature Scanning
  • AppletTrap can check the certification and block
    unsafe PE (Portable Executable) formats (for
    example, .exe, .ocx etc.) and cabinet (.cab)
    files with hash list.

15
HTML Script Filtering
  • AppletTrap just gets out all the script from the
    html file.
  • AppletTrap only filter scripts from Hypertext
    Markup Language file and will not do script
    filter for a normal script file.

16
URL Blocking
  • AppletTrap provides the ability to forbid all the
    clients access the given URLs
  • Administrator can add a remote folder and set
    recursive to forbid access all the files and all
    subfolders in it.

17
TVCS compatible
  • InterScan AppletTrap comes fully compatible with
    the Trend Virus Control System
  • TVCS registration supports through a proxy and
    supports

18
Update Block Lists
  • Upload all blocked java,URL and ActiveX to server
    and download trend identified block list

19
Configure Controls
  • Support remote configure
  • InterScan AppletTrap comes with a
    web-based administrator console for central
    management on the network.

20
Q A
21
Known issues 1
  • UTF8 name file can't exact correctly and report
    error in server log

22
Known issues 2
  • If cached file quantity is large and shut down
    the PC abnormal, restart the applettrap service
    will take long time.

23
Known issues 3
  • Cant access some website chat room or forum with
    Applettrap. For example, chat rooms in
    http//newchat.sina.com.cn/

24
Known issues 4
  • We only support digital ID which is for Netscape
    Object signing purpose and can export to .p12
    format by Netscape browser.Digital ID from
    Verisign is recommended.

25
Known issues 5
  • If the disk space is near to full, the all
    ActiveX can pass through, AppletTrap cant block
    it.

26
Known issues 6
  • If update licensed version 2.0 to Version 2.5, it
    is still trial run version, user must input the
    license key again
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "API Testing" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!