X.509 Test Suite Data Sheet
Test Suite:
X.509 Test Suite
Direction:
Not applicable

Defensics X.509 Test Suite is a security assessment test tool for analysing the security and robustness of X.509 implementations. The X.509 Test Suite used the Defensics robustness testing methodology to locate flaws in X.509 Certificate implementations. The test materials are capable of finding and identifying various different kinds of flaws with varying levels of severity. This is accomplished by feeding the tested implementation with various carefully crafted malformed X.509 Certificates. The test suite implements only those parts of the X.509 specification that are required to create certificate files that can be used for testing.

Used specifications

Specification
Title
Notes
RFC3280
Internet X.509 Public Key Infrastructure: Certificate and Certificate Revocation List (CRL) Profile
Obsoletes RFC2459. Updated by RFC4325 and RFC4630. Obsoleted by RFC5280.
RFC5280
Internet X.509 Public Key Infrastructure: Certificate and Certificate Revocation List (CRL) Profile
Obsoletes RFC3280, RFC4325 and RFC4630.
RFC3709
Internet X.509 Public Key Infrastructure: Logotypes in X.509 Certificates

Tool-specific information

Tested data structures
Specifications
Notes
X.509 Certificate, Version 1
RFC5280
X.509 Certificate, Version 2
RFC5280
X.509 Certificate, Version 3
RFC5280
Test tool general features
  • Fully automated black-box negative testing
  • Ready-made test cases
  • Written in Java(tm)
  • GUI command line remote interface modes
  • Instrumentation (health-check) capability
  • Support and maintenance
  • Comprehensive user documentation
  • Results reporting and analysis
Contact Us