def update_role(self, role, name=None, role_id=-1):
if name is not None:
old_role = self.get_role_by_name(name, simplify=False)
if role is None:
self.close()
raise ObjectNotFoundHTTPError('The asset')
role_id = old_role.theId
if role_id > -1:
params = RoleParameters(
name=role.theName,
rType=role.theType,
sCode=role.theShortCode,
desc=role.theDescription,
cProperties=[]
)
params.setId(role_id)
try:
self.db_proxy.updateRole(params)
except DatabaseProxyException as ex:
self.close()
raise ARMHTTPError(ex)
else:
self.close()
raise MissingParameterHTTPError(param_names=['id'])
def update_role(self, role, name=None, role_id=-1):
if name is not None:
old_role = self.get_role_by_name(name, simplify=False)
if role is None:
self.close()
raise ObjectNotFoundHTTPError('The asset')
role_id = old_role.theId
if role_id > -1:
params = RoleParameters(
name=role.theName,
rType=role.theType,
sCode=role.theShortCode,
desc=role.theDescription,
cProperties=[]
)
params.setId(role_id)
try:
self.db_proxy.updateRole(params)
except DatabaseProxyException as ex:
self.close()
raise ARMHTTPError(ex)
else:
self.close()
raise MissingParameterHTTPError(param_names=['id'])
def testRole(self):
irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b = Borg()
b.dbProxy.addRole(irp)
oRoles = b.dbProxy.getRoles()
o = oRoles[self.iRoles[0]["theName"]]
self.assertEqual(irp.name(), o.name())
self.assertEqual(irp.shortCode(),o.shortCode())
self.assertEqual(irp.description(),o.description())
b.dbProxy.deleteRole(o.id())
def update_role(self, role, name):
params = RoleParameters(name=role.theName,
rType=role.theType,
sCode=role.theShortCode,
desc=role.theDescription,
cProperties=[])
try:
roleId = self.db_proxy.getDimensionId(name, 'role')
params.setId(roleId)
self.db_proxy.updateRole(params)
except DatabaseProxyException as ex:
self.close()
raise ARMHTTPError(ex)
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/threats.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep = EnvironmentParameters(self.ienvs[0]["theName"],self.ienvs[0]["theShortCode"],self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(self.iPersonas[0]["theName"],self.iPersonas[0]["theActivities"],self.iPersonas[0]["theAttitudes"],self.iPersonas[0]["theAptitudes"],self.iPersonas[0]["theMotivations"],self.iPersonas[0]["theSkills"],self.iPersonas[0]["theIntrinsic"],self.iPersonas[0]["theContextual"],"","0",self.iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(self.iPersonas[0]["theEnvironmentProperties"][0]["theName"],(self.iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),self.iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],self.iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(self.iExternalDocuments[0]["theName"],self.iExternalDocuments[0]["theVersion"],self.iExternalDocuments[0]["thePublicationDate"],self.iExternalDocuments[0]["theAuthors"],self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(self.iExternalDocuments[1]["theName"],self.iExternalDocuments[1]["theVersion"],self.iExternalDocuments[1]["thePublicationDate"],self.iExternalDocuments[1]["theAuthors"],self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(self.iDocumentReferences[0]["theName"],self.iDocumentReferences[0]["theDocName"],self.iDocumentReferences[0]["theContributor"],self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(self.iDocumentReferences[1]["theName"],self.iDocumentReferences[1]["theDocName"],self.iDocumentReferences[1]["theContributor"],self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(self.iPersonaCharacteristics[0]["thePersonaName"],self.iPersonaCharacteristics[0]["theModQual"],self.iPersonaCharacteristics[0]["theVariable"],self.iPersonaCharacteristics[0]["theCharacteristic"],[(self.iPersonaCharacteristics[0]["ground"],'','document')],[(self.iPersonaCharacteristics[0]["warrant"],'','document')],[],[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [AttackerEnvironmentProperties(self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],self.iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],self.iAttackers[0]["theEnvironmentProperties"][0]["theCapabilities"])]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"], self.iAttackers[0]["theDescription"], self.iAttackers[0]["theImage"],[],self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt = ValueTypeParameters(self.iVtypes[0]["theName"], self.iVtypes[0]["theDescription"], self.iVtypes[0]["theType"])
b.dbProxy.addValueType(self.ivt)
self.ovt = b.dbProxy.getValueTypes('threat_type')
self.iassets = d['assets']
self.iaeps = [AssetEnvironmentProperties(self.iassets[0]["theEnvironmentProperties"][0][0],self.iassets[0]["theEnvironmentProperties"][0][1],self.iassets[0]["theEnvironmentProperties"][0][2])]
self.iap = AssetParameters(self.iassets[0]["theName"],self.iassets[0]["theShortCode"],self.iassets[0]["theDescription"],self.iassets[0]["theSignificance"],self.iassets[0]["theType"],"0","N/A",[],[],self.iaeps)
b.dbProxy.addAsset(self.iap)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
def testRole(self):
irp = RoleParameters(self.iRoles[0]["theName"],
self.iRoles[0]["theType"],
self.iRoles[0]["theShortCode"],
self.iRoles[0]["theDescription"], [])
b = Borg()
b.dbProxy.addRole(irp)
oRoles = b.dbProxy.getRoles()
o = oRoles[self.iRoles[0]["theName"]]
self.assertEqual(irp.name(), o.name())
self.assertEqual(irp.shortCode(), o.shortCode())
self.assertEqual(irp.description(), o.description())
b.dbProxy.deleteRole(o.id())
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/locations.json')
d = json.load(f)
f.close()
self.iEnvironments = d['environments']
iep1 = EnvironmentParameters(self.iEnvironments[0]["theName"],self.iEnvironments[0]["theShortCode"],self.iEnvironments[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(iep1)
self.theEnvironments = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b.dbProxy.addRole(irp)
self.theRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
ipp = PersonaParameters(self.iPersonas[0]["theName"],self.iPersonas[0]["theActivities"],self.iPersonas[0]["theAttitudes"],self.iPersonas[0]["theAptitudes"],self.iPersonas[0]["theMotivations"],self.iPersonas[0]["theSkills"],self.iPersonas[0]["theIntrinsic"],self.iPersonas[0]["theContextual"],"","0",self.iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(self.iPersonas[0]["theEnvironmentProperties"][0]["theName"],(self.iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),self.iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],self.iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(ipp)
thePersonas = b.dbProxy.getPersonas()
self.thePersona = thePersonas[self.iPersonas[0]["theName"]]
self.iassets = d['assets']
iaeps = [AssetEnvironmentProperties(self.iassets[0]["theEnvironmentProperties"][0][0],self.iassets[0]["theEnvironmentProperties"][0][1],self.iassets[0]["theEnvironmentProperties"][0][2])]
iap = AssetParameters(self.iassets[0]["theName"],self.iassets[0]["theShortCode"],self.iassets[0]["theDescription"],self.iassets[0]["theSignificance"],self.iassets[0]["theType"],"0","N/A",[],[],iaeps)
b = Borg()
b.dbProxy.addAsset(iap)
oaps = b.dbProxy.getAssets()
self.theAsset = oaps[self.iassets[0]["theName"]]
self.ilocations = d['locations']
def add_role(self, role):
"""
Adds a new Role to the database
:type role_props: RoleEnvironmentProperties
:type role: Role
:return Returns the role's new ID
:rtype int
"""
try:
self.db_proxy.nameCheck(role.theName, 'role')
except ARMException as ex:
self.close()
raise ARMHTTPError(ex)
role_params = RoleParameters(
name=role.theName,
rType=role.theType,
sCode=role.theShortCode,
desc=role.theDescription,
cProperties=[]
)
role_id = self.db_proxy.addRole(role_params)
return role_id
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/personas.json')
d = json.load(f)
f.close()
self.iEnvironments = d['environments']
iep1 = EnvironmentParameters(self.iEnvironments[0]["theName"],
self.iEnvironments[0]["theShortCode"],
self.iEnvironments[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(iep1)
self.theEnvironments = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
irp = RoleParameters(self.iRoles[0]["theName"],
self.iRoles[0]["theType"],
self.iRoles[0]["theShortCode"],
self.iRoles[0]["theDescription"], [])
b.dbProxy.addRole(irp)
self.theRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.iExternalDocuments = d['external_documents']
self.iDocumentReferences = d['document_references']
self.iPersonaCharacteristics = d['persona_characteristics']
def add_role(self, role):
role_params = RoleParameters(name=role.theName,
rType=role.theType,
sCode=role.theShortCode,
desc=role.theDescription,
cProperties=[])
try:
self.db_proxy.nameCheck(role.theName, 'role')
self.db_proxy.addRole(role_params)
except ARMException as ex:
self.close()
raise ARMHTTPError(ex)
def setUpClass(cls):
call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/dataflow.json')
d = json.load(f)
f.close()
iEnvironments = d['environments']
iep1 = EnvironmentParameters(iEnvironments[0]["theName"],
iEnvironments[0]["theShortCode"],
iEnvironments[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(iep1)
iRoles = d['roles']
irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"],
iRoles[0]["theShortCode"],
iRoles[0]["theDescription"], [])
b.dbProxy.addRole(irp)
iUseCases = d['use_cases']
ucName = iUseCases[0]["theName"]
ucAuthor = iUseCases[0]["theAuthor"]
ucCode = iUseCases[0]["theCode"]
ucDesc = iUseCases[0]["theDescription"]
ucActor = iUseCases[0]["theActor"]
ucEnv = iUseCases[0]["theEnvironments"][0]
ucEnvName = ucEnv["theName"]
ucPre = ucEnv["thePreconditions"]
ucPost = ucEnv["thePostconditions"]
ss = Steps()
for ucStep in ucEnv["theFlow"]:
ss.append(Step(ucStep["theDescription"]))
ucep = UseCaseEnvironmentProperties(ucEnvName, ucPre, ss, ucPost)
iuc = UseCaseParameters(ucName, ucAuthor, ucCode, [ucActor], ucDesc,
[], [ucep])
b = Borg()
b.dbProxy.addUseCase(iuc)
for iAsset in d['assets']:
iaeps = [
AssetEnvironmentProperties(
iAsset["theEnvironmentProperties"][0][0],
iAsset["theEnvironmentProperties"][0][1],
iAsset["theEnvironmentProperties"][0][2])
]
iap = AssetParameters(iAsset["theName"], iAsset["theShortCode"],
iAsset["theDescription"],
iAsset["theSignificance"], iAsset["theType"],
"0", "N/A", [], [], iaeps)
b.dbProxy.addAsset(iap)
def setUp(self): call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"]) cairis.core.BorgFactory.initialise() f = open(os.environ['CAIRIS_SRC'] + '/test/usecases.json') d = json.load(f) f.close() self.iEnvironments = d['environments'] iep1 = EnvironmentParameters(self.iEnvironments[0]["theName"],self.iEnvironments[0]["theShortCode"],self.iEnvironments[0]["theDescription"]) b = Borg() b.dbProxy.addEnvironment(iep1) iRoles = d['roles'] irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"], iRoles[0]["theShortCode"], iRoles[0]["theDescription"],[]) b.dbProxy.addRole(irp) self.iUseCases = d['use_cases']
def addAPDependentData(d):
cairis.core.BorgFactory.initialise()
b = Borg()
for i in d['roles']:
b.dbProxy.addRole(RoleParameters(i["theName"], i["theType"], i["theShortCode"], i["theDescription"],[]))
for i in d['access_rights']:
b.dbProxy.addValueType(ValueTypeParameters(i["theName"], i["theDescription"], 'access_right','',i["theValue"],i["theRationale"]))
for i in d['surface_types']:
b.dbProxy.addValueType(ValueTypeParameters(i["theName"], i["theDescription"], 'surface_type','',i["theValue"],i["theRationale"]))
for i in d['protocols']:
b.dbProxy.addValueType(ValueTypeParameters(i["theName"], i["theDescription"], 'protocol','',i["theValue"],i["theRationale"]))
for i in d['privileges']:
b.dbProxy.addValueType(ValueTypeParameters(i["theName"], i["theDescription"], 'privilege','',i["theValue"],i["theRationale"]))
spValues = [(0,'None'),(0,'None'),(0,'None'),(0,'None'),(0,'None'),(0,'None'),(0,'None'),(0,'None')]
for i in d['template_assets']:
b.dbProxy.addTemplateAsset(TemplateAssetParameters(i["theName"], i["theShortCode"], i["theDescription"], i["theSignificance"],i["theType"],i["theSurfaceType"],i["theAccessRight"],spValues,[],[]))
for i in d['template_goals']:
b.dbProxy.addTemplateGoal(TemplateGoalParameters(i["theName"],i["theDefinition"],i["theRationale"],i["theConcerns"],i["theResponsibilities"]))
def setUp(self):
call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/processes.json')
d = json.load(f)
f.close()
iCodes = d['codes']
i = CodeParameters(iCodes[0]["theName"], iCodes[0]["theType"],
iCodes[0]["theDescription"],
iCodes[0]["theInclusionCriteria"],
iCodes[0]["theExample"])
b = Borg()
b.dbProxy.addCode(i)
i = CodeParameters(iCodes[1]["theName"], iCodes[1]["theType"],
iCodes[1]["theDescription"],
iCodes[1]["theInclusionCriteria"],
iCodes[1]["theExample"])
b.dbProxy.addCode(i)
iEnvironments = d['environments']
iep1 = EnvironmentParameters(iEnvironments[0]["theName"],
iEnvironments[0]["theShortCode"],
iEnvironments[0]["theDescription"])
b.dbProxy.addEnvironment(iep1)
iRoles = d['roles']
irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"],
iRoles[0]["theShortCode"],
iRoles[0]["theDescription"], [])
b.dbProxy.addRole(irp)
iPersonas = d['personas']
ipp = PersonaParameters(
iPersonas[0]["theName"], iPersonas[0]["theActivities"],
iPersonas[0]["theAttitudes"], iPersonas[0]["theAptitudes"],
iPersonas[0]["theMotivations"], iPersonas[0]["theSkills"],
iPersonas[0]["theIntrinsic"], iPersonas[0]["theContextual"], "",
"0", iPersonas[0]["thePersonaType"], [], [
PersonaEnvironmentProperties(
iPersonas[0]["theEnvironmentProperties"][0]["theName"],
(iPersonas[0]["theEnvironmentProperties"][0]
["theDirectFlag"] == "True"), iPersonas[0]
["theEnvironmentProperties"][0]["theNarrative"],
iPersonas[0]["theEnvironmentProperties"][0]["theRole"])
], [])
b.dbProxy.addPersona(ipp)
self.iCN = d['code_networks']
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/componentviews.json')
d = json.load(f)
f.close()
self.theRequirements = []
self.theRoles = []
self.iRoles = d['roles']
for i in self.iRoles:
self.theRoles.append(RoleParameters(i["theName"], i["theType"], i["theShortCode"], i["theDescription"],[]))
self.theMetricTypes = []
self.iAccessRights = d['access_rights']
for i in self.iAccessRights:
self.theMetricTypes.append(ValueTypeParameters(i["theName"], i["theDescription"], 'access_right','',i["theValue"],i["theRationale"]))
self.iSurfaceTypes = d['surface_types']
for i in self.iSurfaceTypes:
self.theMetricTypes.append(ValueTypeParameters(i["theName"], i["theDescription"], 'surface_type','',i["theValue"],i["theRationale"]))
self.iProtocols = d['protocols']
for i in self.iProtocols:
self.theMetricTypes.append(ValueTypeParameters(i["theName"], i["theDescription"], 'protocol','',i["theValue"],i["theRationale"]))
self.iPrivileges = d['privileges']
for i in self.iPrivileges:
self.theMetricTypes.append(ValueTypeParameters(i["theName"], i["theDescription"], 'privilege','',i["theValue"],i["theRationale"]))
self.theAssets = []
spValues = [0,0,0,0,0,0,0,0,]
srValues = ['None','None','None','None','None','None','None','None']
self.iTemplateAssets = d['template_assets']
for i in self.iTemplateAssets:
self.theAssets.append(TemplateAssetParameters(i["theName"], i["theShortCode"], i["theDescription"], i["theSignificance"],i["theType"],i["theSurfaceType"],i["theAccessRight"],spValues,srValues,[],[]))
self.theGoals = []
self.iTemplateGoals = d['template_goals']
for i in self.iTemplateGoals:
self.theGoals.append(TemplateGoalParameters(i["theName"],i["theDefinition"],i["theRationale"],i["theConcerns"],i["theResponsibilities"]))
self.iComponentViews = d['architectural_patterns']
class ThreatTest(unittest.TestCase):
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/threats.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep = EnvironmentParameters(self.ienvs[0]["theName"],self.ienvs[0]["theShortCode"],self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(self.iPersonas[0]["theName"],self.iPersonas[0]["theActivities"],self.iPersonas[0]["theAttitudes"],self.iPersonas[0]["theAptitudes"],self.iPersonas[0]["theMotivations"],self.iPersonas[0]["theSkills"],self.iPersonas[0]["theIntrinsic"],self.iPersonas[0]["theContextual"],"","0",self.iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(self.iPersonas[0]["theEnvironmentProperties"][0]["theName"],(self.iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),self.iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],self.iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(self.iExternalDocuments[0]["theName"],self.iExternalDocuments[0]["theVersion"],self.iExternalDocuments[0]["thePublicationDate"],self.iExternalDocuments[0]["theAuthors"],self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(self.iExternalDocuments[1]["theName"],self.iExternalDocuments[1]["theVersion"],self.iExternalDocuments[1]["thePublicationDate"],self.iExternalDocuments[1]["theAuthors"],self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(self.iDocumentReferences[0]["theName"],self.iDocumentReferences[0]["theDocName"],self.iDocumentReferences[0]["theContributor"],self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(self.iDocumentReferences[1]["theName"],self.iDocumentReferences[1]["theDocName"],self.iDocumentReferences[1]["theContributor"],self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(self.iPersonaCharacteristics[0]["thePersonaName"],self.iPersonaCharacteristics[0]["theModQual"],self.iPersonaCharacteristics[0]["theVariable"],self.iPersonaCharacteristics[0]["theCharacteristic"],[(self.iPersonaCharacteristics[0]["ground"],'','document')],[(self.iPersonaCharacteristics[0]["warrant"],'','document')],[],[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [AttackerEnvironmentProperties(self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],self.iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],self.iAttackers[0]["theEnvironmentProperties"][0]["theCapabilities"])]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"], self.iAttackers[0]["theDescription"], self.iAttackers[0]["theImage"],[],self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt = ValueTypeParameters(self.iVtypes[0]["theName"], self.iVtypes[0]["theDescription"], self.iVtypes[0]["theType"])
b.dbProxy.addValueType(self.ivt)
self.ovt = b.dbProxy.getValueTypes('threat_type')
self.iassets = d['assets']
self.iaeps = [AssetEnvironmentProperties(self.iassets[0]["theEnvironmentProperties"][0][0],self.iassets[0]["theEnvironmentProperties"][0][1],self.iassets[0]["theEnvironmentProperties"][0][2])]
self.iap = AssetParameters(self.iassets[0]["theName"],self.iassets[0]["theShortCode"],self.iassets[0]["theDescription"],self.iassets[0]["theSignificance"],self.iassets[0]["theType"],"0","N/A",[],[],self.iaeps)
b.dbProxy.addAsset(self.iap)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
def testThreat(self):
iteps = [ThreatEnvironmentProperties(self.iThreats[0]["theEnvironmentProperties"][0]["theName"],self.iThreats[0]["theEnvironmentProperties"][0]["theLikelihood"],self.iThreats[0]["theEnvironmentProperties"][0]["theAssets"],self.iThreats[0]["theEnvironmentProperties"][0]["theAttackers"],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1])]
itps = ThreatParameters(self.iThreats[0]["theName"],self.iThreats[0]["theType"],self.iThreats[0]["theMethod"],[],iteps)
b = Borg()
b.dbProxy.addThreat(itps)
oThreats = b.dbProxy.getThreats()
o = oThreats[self.iThreats[0]["theName"]]
self.assertEqual(itps.name(), o.name())
self.assertEqual(itps.type(),o.type())
self.assertEqual(itps.method(),o.method())
oteps = o.environmentProperties()
self.assertEqual(iteps[0].name(), oteps[0].name())
self.assertEqual(iteps[0].likelihood()[0], oteps[0].likelihood()[0])
self.assertEqual(str(iteps[0].assets()[0]), str(oteps[0].assets()[0]))
self.assertEqual(str(iteps[0].attackers()[0]), str(oteps[0].attackers()[0]))
self.assertEqual(str(iteps[0].rationale()[0]), str(oteps[0].rationale()[0]))
b.dbProxy.deleteThreat(o.id())
def tearDown(self):
b = Borg()
# b.dbProxy.deletePersonaCharacteristic(self.opcs[self.ipc1.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap.name()].id())
b.dbProxy.deleteThreatType(0)
b.dbProxy.deleteAttacker(self.oAttackers[self.iatk.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr1.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr2.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec1.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec2.name()].id())
b.dbProxy.deletePersona(self.opp[self.ipp.name()].id())
b.dbProxy.deleteRole(self.oRoles[self.irp.name()].id())
b.dbProxy.deleteEnvironment(self.oenvs[self.iep.name()].id())
b.dbProxy.close()
call([os.environ['CAIRIS_SRC'] + "/test/dropdb.sh"])
class ResponseTest(unittest.TestCase):
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/responses.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep1 = EnvironmentParameters(self.ienvs[0]["theName"],
self.ienvs[0]["theShortCode"],
self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep1)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"],
self.iRoles[0]["theType"],
self.iRoles[0]["theShortCode"],
self.iRoles[0]["theDescription"], [])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(
self.iPersonas[0]["theName"], self.iPersonas[0]["theActivities"],
self.iPersonas[0]["theAttitudes"],
self.iPersonas[0]["theAptitudes"],
self.iPersonas[0]["theMotivations"],
self.iPersonas[0]["theSkills"], self.iPersonas[0]["theIntrinsic"],
self.iPersonas[0]["theContextual"], "", "0",
self.iPersonas[0]["thePersonaType"], [], [
PersonaEnvironmentProperties(
self.iPersonas[0]["theEnvironmentProperties"][0]
["theName"], (self.iPersonas[0]["theEnvironmentProperties"]
[0]["theDirectFlag"] == "True"),
self.iPersonas[0]["theEnvironmentProperties"][0]
["theNarrative"], self.iPersonas[0]
["theEnvironmentProperties"][0]["theRole"])
], [])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(
self.iExternalDocuments[0]["theName"],
self.iExternalDocuments[0]["theVersion"],
self.iExternalDocuments[0]["thePublicationDate"],
self.iExternalDocuments[0]["theAuthors"],
self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(
self.iExternalDocuments[1]["theName"],
self.iExternalDocuments[1]["theVersion"],
self.iExternalDocuments[1]["thePublicationDate"],
self.iExternalDocuments[1]["theAuthors"],
self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(
self.iDocumentReferences[0]["theName"],
self.iDocumentReferences[0]["theDocName"],
self.iDocumentReferences[0]["theContributor"],
self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(
self.iDocumentReferences[1]["theName"],
self.iDocumentReferences[1]["theDocName"],
self.iDocumentReferences[1]["theContributor"],
self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(
self.iPersonaCharacteristics[0]["thePersonaName"],
self.iPersonaCharacteristics[0]["theModQual"],
self.iPersonaCharacteristics[0]["theVariable"],
self.iPersonaCharacteristics[0]["theCharacteristic"],
[(self.iPersonaCharacteristics[0]["ground"], '', 'document')],
[(self.iPersonaCharacteristics[0]["warrant"], '', 'document')], [],
[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [
AttackerEnvironmentProperties(
self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],
self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],
self.iAttackers[0]["theEnvironmentProperties"][0]
["theMotives"], self.iAttackers[0]["theEnvironmentProperties"]
[0]["theCapabilities"])
]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"],
self.iAttackers[0]["theDescription"],
self.iAttackers[0]["theImage"], [],
self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt1 = ValueTypeParameters(self.iVtypes[0]["theName"],
self.iVtypes[0]["theDescription"],
self.iVtypes[0]["theType"])
self.ivt2 = ValueTypeParameters(self.iVtypes[1]["theName"],
self.iVtypes[1]["theDescription"],
self.iVtypes[1]["theType"])
b.dbProxy.addValueType(self.ivt1)
b.dbProxy.addValueType(self.ivt2)
self.ovtt = b.dbProxy.getValueTypes('threat_type')
self.ovtv = b.dbProxy.getValueTypes('vulnerability_type')
self.iassets = d['assets']
self.iaeps1 = [
AssetEnvironmentProperties(
self.iassets[0]["theEnvironmentProperties"][0][0],
self.iassets[0]["theEnvironmentProperties"][0][1],
self.iassets[0]["theEnvironmentProperties"][0][2])
]
self.iaeps2 = [
AssetEnvironmentProperties(
self.iassets[1]["theEnvironmentProperties"][0][0],
self.iassets[1]["theEnvironmentProperties"][0][1],
self.iassets[1]["theEnvironmentProperties"][0][2])
]
self.iaeps3 = [
AssetEnvironmentProperties(
self.iassets[2]["theEnvironmentProperties"][0][0],
self.iassets[2]["theEnvironmentProperties"][0][1],
self.iassets[2]["theEnvironmentProperties"][0][2])
]
self.iap1 = AssetParameters(self.iassets[0]["theName"],
self.iassets[0]["theShortCode"],
self.iassets[0]["theDescription"],
self.iassets[0]["theSignificance"],
self.iassets[0]["theType"], "0", "N/A", [],
[], self.iaeps1)
self.iap2 = AssetParameters(self.iassets[1]["theName"],
self.iassets[1]["theShortCode"],
self.iassets[1]["theDescription"],
self.iassets[1]["theSignificance"],
self.iassets[1]["theType"], "0", "N/A", [],
[], self.iaeps2)
self.iap3 = AssetParameters(self.iassets[2]["theName"],
self.iassets[2]["theShortCode"],
self.iassets[2]["theDescription"],
self.iassets[2]["theSignificance"],
self.iassets[2]["theType"], "0", "N/A", [],
[], self.iaeps3)
b.dbProxy.addAsset(self.iap1)
b.dbProxy.addAsset(self.iap2)
b.dbProxy.addAsset(self.iap3)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
self.iteps = [
ThreatEnvironmentProperties(
self.iThreats[0]["theEnvironmentProperties"][0]["theName"],
self.iThreats[0]["theEnvironmentProperties"][0]
["theLikelihood"],
self.iThreats[0]["theEnvironmentProperties"][0]["theAssets"],
self.iThreats[0]["theEnvironmentProperties"][0]
["theAttackers"], self.iThreats[0]["theEnvironmentProperties"]
[0]["theProperties"][0][1], self.iThreats[0]
["theEnvironmentProperties"][0]["theProperties"][0][1])
]
self.itps = ThreatParameters(self.iThreats[0]["theName"],
self.iThreats[0]["theType"],
self.iThreats[0]["theMethod"], [],
self.iteps)
b.dbProxy.addThreat(self.itps)
self.otps = b.dbProxy.getThreats()
self.iVuln = d['vulnerabilities']
self.iveps = [
VulnerabilityEnvironmentProperties(
self.iVuln[0]["theEnvironmentProperties"][0]["theName"],
self.iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],
self.iVuln[0]["theEnvironmentProperties"][0]["theAssets"])
]
self.ivp = VulnerabilityParameters(self.iVuln[0]["theName"],
self.iVuln[0]["theDescription"],
self.iVuln[0]["theType"], [],
self.iveps)
b.dbProxy.addVulnerability(self.ivp)
self.ovp = b.dbProxy.getVulnerabilities()
self.imc = d['misuseCase']
self.iRisks = d['risks']
imcep = [
MisuseCaseEnvironmentProperties(
self.imc[0]["theEnvironmentProperties"][0]["theName"],
self.imc[0]["theEnvironmentProperties"][0]["theDescription"])
]
imcp = MisuseCase(int(0), self.imc[0]["theName"], imcep,
self.imc[0]["theRisk"])
irp = RiskParameters(self.iRisks[0]["theName"],
self.iRisks[0]["threatName"],
self.iRisks[0]["vulName"], imcp, [])
b.dbProxy.addRisk(irp)
oRisks = b.dbProxy.getRisks()
self.r = oRisks[self.iRisks[0]["theName"]]
self.iResponses = d['responses']
def testResponse(self):
iar1Name = self.iResponses[0]["theType"] + " " + self.iResponses[0][
"theRisk"]
iaep1 = AcceptEnvironmentProperties(
self.iResponses[0]["theEnvironmentProperties"][0],
self.iResponses[0]["theEnvironmentProperties"][1],
self.iResponses[0]["theEnvironmentProperties"][2])
iar1 = ResponseParameters(iar1Name, self.iResponses[0]["theRisk"], [],
[iaep1], self.iResponses[0]["theType"])
iar2Name = self.iResponses[1]["theType"] + " " + self.iResponses[1][
"theRisk"]
iaep2 = MitigateEnvironmentProperties(
self.iResponses[1]["theEnvironmentProperties"],
self.iResponses[1]["theType"])
iar2 = ResponseParameters(iar2Name, self.iResponses[1]["theRisk"], [],
[iaep2], self.iResponses[1]["theType"])
b = Borg()
b.dbProxy.addResponse(iar1)
b.dbProxy.addResponse(iar2)
self.ors = b.dbProxy.getResponses()
self.oar1 = self.ors[iar1Name]
self.oar2 = self.ors[iar2Name]
self.assertEqual(iar1.name(), self.oar1.name())
self.assertEqual(iar1.risk(), self.oar1.risk())
self.assertEqual(iar1.responseType(), self.oar1.responseType())
self.assertEqual(iar1.environmentProperties()[0].cost(),
self.oar1.environmentProperties()[0].cost())
self.assertEqual(iar1.environmentProperties()[0].description(),
self.oar1.environmentProperties()[0].description())
self.assertEqual(iar2.name(), self.oar2.name())
self.assertEqual(iar2.risk(), self.oar2.risk())
self.assertEqual(iar2.responseType(), self.oar2.responseType())
rgp = cairis.core.GoalFactory.build(self.oar2)
riskParameters = rgp[0]
riskGoalId = b.dbProxy.addGoal(riskParameters)
b.dbProxy.addTrace('response_goal', self.oar2.id(), riskGoalId)
if (rgp > 1):
threatParameters = rgp[1]
vulnerabilityParameters = rgp[2]
b.dbProxy.addGoal(vulnerabilityParameters)
b.dbProxy.addGoal(threatParameters)
b.dbProxy.relabelGoals(iaep2.name())
oGoals = b.dbProxy.getGoals()
print oGoals
rg = oGoals['Deter' + self.oar2.risk()]
vg = oGoals[vulnerabilityParameters.name()]
tg = oGoals[threatParameters.name()]
ogops = b.dbProxy.getGoalAssociations()
ogop1 = ogops[iaep2.name() + '/' + riskParameters.name() + '/' +
threatParameters.name() + '/or']
ogop2 = ogops[iaep2.name() + '/' + riskParameters.name() + '/' +
vulnerabilityParameters.name() + '/or']
b.dbProxy.deleteGoalAssociation(ogop1.id(), ogop1.goal(),
ogop1.subGoal())
b.dbProxy.deleteGoalAssociation(ogop2.id(), ogop2.goal(),
ogop2.subGoal())
b.dbProxy.deleteTrace('response', self.oar2.name(), 'goal', rg.name())
b.dbProxy.deleteGoal(tg.id())
b.dbProxy.deleteGoal(vg.id())
b.dbProxy.deleteGoal(rg.id())
b.dbProxy.deleteResponse(self.oar2.id())
b.dbProxy.deleteResponse(self.oar1.id())
def tearDown(self):
b = Borg()
b.dbProxy.deleteRisk(self.r.id())
b.dbProxy.deleteVulnerability(self.ovp[self.ivp.name()].id())
b.dbProxy.deleteThreat(self.otps[self.itps.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap3.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap2.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap1.name()].id())
b.dbProxy.deleteVulnerabilityType(0)
b.dbProxy.deleteThreatType(0)
b.dbProxy.deleteAttacker(self.oAttackers[self.iatk.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr1.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr2.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec1.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec2.name()].id())
b.dbProxy.deletePersona(self.opp[self.ipp.name()].id())
b.dbProxy.deleteRole(self.oRoles[self.irp.name()].id())
b.dbProxy.deleteEnvironment(self.oenvs[self.iep1.name()].id())
b.dbProxy.close()
call([os.environ['CAIRIS_SRC'] + "/test/dropdb.sh"])
class RiskTest(unittest.TestCase):
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/risks.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep1 = EnvironmentParameters(self.ienvs[0]["theName"],
self.ienvs[0]["theShortCode"],
self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep1)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"],
self.iRoles[0]["theType"],
self.iRoles[0]["theShortCode"],
self.iRoles[0]["theDescription"], [])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(
self.iPersonas[0]["theName"], self.iPersonas[0]["theActivities"],
self.iPersonas[0]["theAttitudes"],
self.iPersonas[0]["theAptitudes"],
self.iPersonas[0]["theMotivations"],
self.iPersonas[0]["theSkills"], self.iPersonas[0]["theIntrinsic"],
self.iPersonas[0]["theContextual"], "", "0",
self.iPersonas[0]["thePersonaType"], [], [
PersonaEnvironmentProperties(
self.iPersonas[0]["theEnvironmentProperties"][0]
["theName"], (self.iPersonas[0]["theEnvironmentProperties"]
[0]["theDirectFlag"] == "True"),
self.iPersonas[0]["theEnvironmentProperties"][0]
["theNarrative"], self.iPersonas[0]
["theEnvironmentProperties"][0]["theRole"])
], [])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(
self.iExternalDocuments[0]["theName"],
self.iExternalDocuments[0]["theVersion"],
self.iExternalDocuments[0]["thePublicationDate"],
self.iExternalDocuments[0]["theAuthors"],
self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(
self.iExternalDocuments[1]["theName"],
self.iExternalDocuments[1]["theVersion"],
self.iExternalDocuments[1]["thePublicationDate"],
self.iExternalDocuments[1]["theAuthors"],
self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(
self.iDocumentReferences[0]["theName"],
self.iDocumentReferences[0]["theDocName"],
self.iDocumentReferences[0]["theContributor"],
self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(
self.iDocumentReferences[1]["theName"],
self.iDocumentReferences[1]["theDocName"],
self.iDocumentReferences[1]["theContributor"],
self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(
self.iPersonaCharacteristics[0]["thePersonaName"],
self.iPersonaCharacteristics[0]["theModQual"],
self.iPersonaCharacteristics[0]["theVariable"],
self.iPersonaCharacteristics[0]["theCharacteristic"],
[(self.iPersonaCharacteristics[0]["ground"], '', 'document')],
[(self.iPersonaCharacteristics[0]["warrant"], '', 'document')], [],
[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [
AttackerEnvironmentProperties(
self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],
self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],
self.iAttackers[0]["theEnvironmentProperties"][0]
["theMotives"], self.iAttackers[0]["theEnvironmentProperties"]
[0]["theCapabilities"])
]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"],
self.iAttackers[0]["theDescription"],
self.iAttackers[0]["theImage"], [],
self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt1 = ValueTypeParameters(self.iVtypes[0]["theName"],
self.iVtypes[0]["theDescription"],
self.iVtypes[0]["theType"])
self.ivt2 = ValueTypeParameters(self.iVtypes[1]["theName"],
self.iVtypes[1]["theDescription"],
self.iVtypes[1]["theType"])
b.dbProxy.addValueType(self.ivt1)
b.dbProxy.addValueType(self.ivt2)
self.ovtt = b.dbProxy.getValueTypes('threat_type')
self.ovtv = b.dbProxy.getValueTypes('vulnerability_type')
self.iassets = d['assets']
self.iaeps1 = [
AssetEnvironmentProperties(
self.iassets[0]["theEnvironmentProperties"][0][0],
self.iassets[0]["theEnvironmentProperties"][0][1],
self.iassets[0]["theEnvironmentProperties"][0][2])
]
self.iap1 = AssetParameters(self.iassets[0]["theName"],
self.iassets[0]["theShortCode"],
self.iassets[0]["theDescription"],
self.iassets[0]["theSignificance"],
self.iassets[0]["theType"], "0", "N/A", [],
[], self.iaeps1)
self.iap2 = AssetParameters(self.iassets[1]["theName"],
self.iassets[1]["theShortCode"],
self.iassets[1]["theDescription"],
self.iassets[1]["theSignificance"],
self.iassets[1]["theType"], "0", "N/A", [],
[], self.iaeps1)
self.iap3 = AssetParameters(self.iassets[2]["theName"],
self.iassets[2]["theShortCode"],
self.iassets[2]["theDescription"],
self.iassets[2]["theSignificance"],
self.iassets[2]["theType"], "0", "N/A", [],
[], self.iaeps1)
b.dbProxy.addAsset(self.iap1)
b.dbProxy.addAsset(self.iap2)
b.dbProxy.addAsset(self.iap3)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
self.iteps = [
ThreatEnvironmentProperties(
self.iThreats[0]["theEnvironmentProperties"][0]["theName"],
self.iThreats[0]["theEnvironmentProperties"][0]
["theLikelihood"],
self.iThreats[0]["theEnvironmentProperties"][0]["theAssets"],
self.iThreats[0]["theEnvironmentProperties"][0]
["theAttackers"], self.iThreats[0]["theEnvironmentProperties"]
[0]["theProperties"][0][1], self.iThreats[0]
["theEnvironmentProperties"][0]["theProperties"][0][1])
]
self.itps = ThreatParameters(self.iThreats[0]["theName"],
self.iThreats[0]["theType"],
self.iThreats[0]["theMethod"], [],
self.iteps)
b.dbProxy.addThreat(self.itps)
self.otps = b.dbProxy.getThreats()
self.iVuln = d['vulnerabilities']
self.iveps = [
VulnerabilityEnvironmentProperties(
self.iVuln[0]["theEnvironmentProperties"][0]["theName"],
self.iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],
self.iVuln[0]["theEnvironmentProperties"][0]["theAssets"])
]
self.ivp = VulnerabilityParameters(self.iVuln[0]["theName"],
self.iVuln[0]["theDescription"],
self.iVuln[0]["theType"], [],
self.iveps)
b.dbProxy.addVulnerability(self.ivp)
self.ovp = b.dbProxy.getVulnerabilities()
self.imc = d['misuseCase']
self.iRisks = d['risks']
def testRisk(self):
imcep = [
MisuseCaseEnvironmentProperties(
self.imc[0]["theEnvironmentProperties"][0]["theName"],
self.imc[0]["theEnvironmentProperties"][0]["theDescription"])
]
imcp = MisuseCase(int(0), self.imc[0]["theName"], imcep,
self.imc[0]["theRisk"])
irp = RiskParameters(self.iRisks[0]["theName"],
self.iRisks[0]["threatName"],
self.iRisks[0]["vulName"], imcp, [])
b = Borg()
b.dbProxy.addRisk(irp)
oRisks = b.dbProxy.getRisks()
o = oRisks[self.iRisks[0]["theName"]]
self.assertEqual(irp.name(), o.name())
self.assertEqual(irp.threat(), o.threat())
self.assertEqual(irp.vulnerability(), o.vulnerability())
# scoreDetails = b.dbProxy.riskScore(self.iRisks[0]["threatName"],self.iRisks[0]["vulName"],self.iaeps1[0].name())
# preScore = scoreDetails[0][1]
# postScore = scoreDetails[0][2]
# self.assertEqual(preScore,9)
# self.assertEqual(postScore,9)
imcp.theName = 'Updated risk'
imcp.theId = o.misuseCase().id()
irp.theRiskName = 'Updated risk'
irp.theMisuseCase = imcp
irp.setId(o.id())
b.dbProxy.updateRisk(irp)
oRisks = b.dbProxy.getRisks()
o = oRisks['Updated risk']
self.assertEqual(o.name(), 'Updated risk')
self.assertEqual(irp.threat(), o.threat())
self.assertEqual(irp.vulnerability(), o.vulnerability())
b.dbProxy.deleteRisk(o.id())
def tearDown(self):
b = Borg()
b.dbProxy.deleteVulnerability(self.ovp[self.ivp.name()].id())
b.dbProxy.deleteThreat(self.otps[self.itps.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap3.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap2.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap1.name()].id())
b.dbProxy.deleteVulnerabilityType(0)
b.dbProxy.deleteThreatType(0)
b.dbProxy.deleteAttacker(self.oAttackers[self.iatk.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr1.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr2.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec1.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec2.name()].id())
b.dbProxy.deletePersona(self.opp[self.ipp.name()].id())
b.dbProxy.deleteRole(self.oRoles[self.irp.name()].id())
b.dbProxy.deleteEnvironment(self.oenvs[self.iep1.name()].id())
b.dbProxy.close()
call([os.environ['CAIRIS_SRC'] + "/test/dropdb.sh"])
def parameters(self): parameters = RoleParameters(self.theName,self.theType,self.theShortCode,self.theDescription,[]) parameters.setId(self.theRoleId) return parameters
class AttackerTest(unittest.TestCase):
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/attackers.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep = EnvironmentParameters(self.ienvs[0]["theName"],self.ienvs[0]["theShortCode"],self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(self.iPersonas[0]["theName"],self.iPersonas[0]["theActivities"],self.iPersonas[0]["theAttitudes"],self.iPersonas[0]["theAptitudes"],self.iPersonas[0]["theMotivations"],self.iPersonas[0]["theSkills"],self.iPersonas[0]["theIntrinsic"],self.iPersonas[0]["theContextual"],"","0",self.iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(self.iPersonas[0]["theEnvironmentProperties"][0]["theName"],(self.iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),self.iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],self.iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(self.iExternalDocuments[0]["theName"],self.iExternalDocuments[0]["theVersion"],self.iExternalDocuments[0]["thePublicationDate"],self.iExternalDocuments[0]["theAuthors"],self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(self.iExternalDocuments[1]["theName"],self.iExternalDocuments[1]["theVersion"],self.iExternalDocuments[1]["thePublicationDate"],self.iExternalDocuments[1]["theAuthors"],self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(self.iDocumentReferences[0]["theName"],self.iDocumentReferences[0]["theDocName"],self.iDocumentReferences[0]["theContributor"],self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(self.iDocumentReferences[1]["theName"],self.iDocumentReferences[1]["theDocName"],self.iDocumentReferences[1]["theContributor"],self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(self.iPersonaCharacteristics[0]["thePersonaName"],self.iPersonaCharacteristics[0]["theModQual"],self.iPersonaCharacteristics[0]["theVariable"],self.iPersonaCharacteristics[0]["theCharacteristic"],[(self.iPersonaCharacteristics[0]["ground"],'','document')],[(self.iPersonaCharacteristics[0]["warrant"],'','document')],[],[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
def testAttacker(self):
iatkeps = [AttackerEnvironmentProperties(self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],self.iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],self.iAttackers[0]["theEnvironmentProperties"][0]["theCapabilities"])]
iatk = AttackerParameters(self.iAttackers[0]["theName"], self.iAttackers[0]["theDescription"], self.iAttackers[0]["theImage"],[],iatkeps)
b = Borg()
b.dbProxy.addAttacker(iatk)
oAttackers = b.dbProxy.getAttackers()
o = oAttackers[self.iAttackers[0]["theName"]]
self.assertEqual(iatk.name(), o.name())
self.assertEqual(iatk.description(),o.description())
self.assertEqual(iatk.image(),o.image())
oatkeps = o.environmentProperties()
self.assertEqual(iatkeps[0].name(), oatkeps[0].name())
self.assertEqual(str(iatkeps[0].roles()[0]), str(oatkeps[0].roles()[0]))
self.assertEqual(str(iatkeps[0].motives()[0]), str(oatkeps[0].motives()[0]))
self.assertEqual(str(iatkeps[0].capabilities()[0][0]), str(oatkeps[0].capabilities()[0][0]))
self.assertEqual(str(iatkeps[0].capabilities()[0][1]), str(oatkeps[0].capabilities()[0][1]))
iatk.theName = 'Updated name'
iatk.setId(o.id())
b.dbProxy.updateAttacker(iatk)
oAttackers = b.dbProxy.getAttackers()
o = oAttackers["Updated name"]
self.assertEqual(o.name(),'Updated name')
b.dbProxy.deleteAttacker(o.id())
def tearDown(self):
b = Borg()
b.dbProxy.deleteDocumentReference(self.odrs[self.idr1.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr2.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec1.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec2.name()].id())
b.dbProxy.deletePersona(self.opp[self.ipp.name()].id())
b.dbProxy.deleteRole(self.oRoles[self.irp.name()].id())
b.dbProxy.deleteEnvironment(self.oenvs[self.iep.name()].id())
b.dbProxy.close()
call([os.environ['CAIRIS_SRC'] + "/test/dropdb.sh"])
def setUp(self):
call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/countermeasures.json')
d = json.load(f)
f.close()
ienvs = d['environments']
iep1 = EnvironmentParameters(ienvs[0]["theName"],ienvs[0]["theShortCode"],ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(iep1)
iRoles = d['roles']
irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"], iRoles[0]["theShortCode"], iRoles[0]["theDescription"],[])
b.dbProxy.addRole(irp)
iPersonas = d['personas']
ipp = PersonaParameters(iPersonas[0]["theName"],iPersonas[0]["theActivities"],iPersonas[0]["theAttitudes"],iPersonas[0]["theAptitudes"],iPersonas[0]["theMotivations"],iPersonas[0]["theSkills"],iPersonas[0]["theIntrinsic"],iPersonas[0]["theContextual"],"","0",iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(iPersonas[0]["theEnvironmentProperties"][0]["theName"],(iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(ipp)
iAttackers = d['attackers']
iatkeps = [AttackerEnvironmentProperties(iAttackers[0]["theEnvironmentProperties"][0]["theName"],iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],iAttackers[0]["theEnvironmentProperties"][0]["theCapabilities"])]
iatk = AttackerParameters(iAttackers[0]["theName"], iAttackers[0]["theDescription"], iAttackers[0]["theImage"],[],iatkeps)
b.dbProxy.addAttacker(iatk)
iVtypes = d['valuetypes']
ivt1 = ValueTypeParameters(iVtypes[0]["theName"], iVtypes[0]["theDescription"], iVtypes[0]["theType"])
ivt2 = ValueTypeParameters(iVtypes[1]["theName"], iVtypes[1]["theDescription"], iVtypes[1]["theType"])
b.dbProxy.addValueType(ivt1)
b.dbProxy.addValueType(ivt2)
iassets = d['assets']
iaeps1 = [AssetEnvironmentProperties(iassets[0]["theEnvironmentProperties"][0][0],iassets[0]["theEnvironmentProperties"][0][1],iassets[0]["theEnvironmentProperties"][0][2])]
iaeps2 = [AssetEnvironmentProperties(iassets[1]["theEnvironmentProperties"][0][0],iassets[1]["theEnvironmentProperties"][0][1],iassets[1]["theEnvironmentProperties"][0][2])]
iaeps3 = [AssetEnvironmentProperties(iassets[2]["theEnvironmentProperties"][0][0],iassets[2]["theEnvironmentProperties"][0][1],iassets[2]["theEnvironmentProperties"][0][2])]
iap1 = AssetParameters(iassets[0]["theName"],iassets[0]["theShortCode"],iassets[0]["theDescription"],iassets[0]["theSignificance"],iassets[0]["theType"],"0","N/A",[],[],iaeps1)
iap2 = AssetParameters(iassets[1]["theName"],iassets[1]["theShortCode"],iassets[1]["theDescription"],iassets[1]["theSignificance"],iassets[1]["theType"],"0","N/A",[],[],iaeps2)
iap3 = AssetParameters(iassets[2]["theName"],iassets[2]["theShortCode"],iassets[2]["theDescription"],iassets[2]["theSignificance"],iassets[2]["theType"],"0","N/A",[],[],iaeps3)
b.dbProxy.addAsset(iap1)
b.dbProxy.addAsset(iap2)
b.dbProxy.addAsset(iap3)
iThreats = d['threats']
iteps = [ThreatEnvironmentProperties(iThreats[0]["theEnvironmentProperties"][0]["theName"],iThreats[0]["theEnvironmentProperties"][0]["theLikelihood"],iThreats[0]["theEnvironmentProperties"][0]["theAssets"],iThreats[0]["theEnvironmentProperties"][0]["theAttackers"],iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1],iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1])]
itps = ThreatParameters(iThreats[0]["theName"],iThreats[0]["theType"],iThreats[0]["theMethod"],[],iteps)
b.dbProxy.addThreat(itps)
iVuln = d['vulnerabilities']
iveps = [VulnerabilityEnvironmentProperties(iVuln[0]["theEnvironmentProperties"][0]["theName"],iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],iVuln[0]["theEnvironmentProperties"][0]["theAssets"])]
ivp = VulnerabilityParameters(iVuln[0]["theName"],iVuln[0]["theDescription"],iVuln[0]["theType"], [], iveps)
b.dbProxy.addVulnerability(ivp)
imc = d['misuseCase']
iRisks = d['risks']
imcep = [MisuseCaseEnvironmentProperties(imc[0]["theEnvironmentProperties"][0]["theName"],imc[0]["theEnvironmentProperties"][0]["theDescription"])]
imcp = MisuseCase(int(0), imc[0]["theName"], imcep,imc[0]["theRisk"])
irp = RiskParameters(iRisks[0]["theName"],iRisks[0]["threatName"],iRisks[0]["vulName"], imcp,[])
b.dbProxy.addRisk(irp)
iResponses = d['responses']
iar1Name = iResponses[0]["theType"] + " " + iResponses[0]["theRisk"]
iaep1 = AcceptEnvironmentProperties(iResponses[0]["theEnvironmentProperties"][0],iResponses[0]["theEnvironmentProperties"][1],iResponses[0]["theEnvironmentProperties"][2])
iar1 = ResponseParameters(iar1Name,iResponses[0]["theRisk"],[],[iaep1], iResponses[0]["theType"])
iar2Name = iResponses[1]["theType"] + " " + iResponses[1]["theRisk"]
iaep2 = MitigateEnvironmentProperties(iResponses[1]["theEnvironmentProperties"],iResponses[1]["theType"])
iar2 = ResponseParameters(iar2Name,iResponses[1]["theRisk"],[],[iaep2], iResponses[1]["theType"])
b.dbProxy.addResponse(iar1)
b.dbProxy.addResponse(iar2)
ors = b.dbProxy.getResponses()
oar1 = ors[iar1Name]
oar2 = ors[iar2Name]
rgp = cairis.core.GoalFactory.build(oar2)
riskParameters = rgp[0]
riskGoalId = b.dbProxy.addGoal(riskParameters)
b.dbProxy.addTrace('response_goal',oar2.id(),riskGoalId)
if (len(rgp) > 1):
threatParameters = rgp[1]
vulnerabilityParameters = rgp[2]
b.dbProxy.addGoal(vulnerabilityParameters)
b.dbProxy.addGoal(threatParameters)
b.dbProxy.relabelGoals(iaep2.name())
oGoals = b.dbProxy.getGoals()
rg = oGoals['Deter' + oar2.risk()]
vg = oGoals[vulnerabilityParameters.name()]
tg = oGoals[threatParameters.name()]
reqId = b.dbProxy.newId()
irequirements = d['requirements']
ireq = cairis.core.RequirementFactory.build(reqId,irequirements[0]["theLabel"],irequirements[0]["theName"],irequirements[0]["theDescription"],irequirements[0]["thePriority"],irequirements[0]["theRationale"],irequirements[0]["theFitCriterion"],irequirements[0]["theOriginator"],irequirements[0]["theType"],irequirements[0]["theReference"],1)
b.dbProxy.addRequirement(ireq,irequirements[0]["theReference"],True)
oreqs = b.dbProxy.getRequirements()
oreq = oreqs[ireq.description()]
iga = GoalAssociationParameters(iaep2.name(),vg.name(),'goal','and',oreq.name(),'requirement',0,'None')
b.dbProxy.addGoalAssociation(iga)
ogops = b.dbProxy.getGoalAssociations()
self.ogop3 = ogops[iaep2.name() + '/' + vg.name() + '/' + oreq.name() + '/and']
self.iCountermeasures = d['countermeasures']
class AttackerTest(unittest.TestCase):
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/attackers.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep = EnvironmentParameters(self.ienvs[0]["theName"],
self.ienvs[0]["theShortCode"],
self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"],
self.iRoles[0]["theType"],
self.iRoles[0]["theShortCode"],
self.iRoles[0]["theDescription"], [])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(
self.iPersonas[0]["theName"], self.iPersonas[0]["theActivities"],
self.iPersonas[0]["theAttitudes"],
self.iPersonas[0]["theAptitudes"],
self.iPersonas[0]["theMotivations"],
self.iPersonas[0]["theSkills"], self.iPersonas[0]["theIntrinsic"],
self.iPersonas[0]["theContextual"], "", "0",
self.iPersonas[0]["thePersonaType"], [], [
PersonaEnvironmentProperties(
self.iPersonas[0]["theEnvironmentProperties"][0]
["theName"], (self.iPersonas[0]["theEnvironmentProperties"]
[0]["theDirectFlag"] == "True"),
self.iPersonas[0]["theEnvironmentProperties"][0]
["theNarrative"], self.iPersonas[0]
["theEnvironmentProperties"][0]["theRole"])
], [])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(
self.iExternalDocuments[0]["theName"],
self.iExternalDocuments[0]["theVersion"],
self.iExternalDocuments[0]["thePublicationDate"],
self.iExternalDocuments[0]["theAuthors"],
self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(
self.iExternalDocuments[1]["theName"],
self.iExternalDocuments[1]["theVersion"],
self.iExternalDocuments[1]["thePublicationDate"],
self.iExternalDocuments[1]["theAuthors"],
self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(
self.iDocumentReferences[0]["theName"],
self.iDocumentReferences[0]["theDocName"],
self.iDocumentReferences[0]["theContributor"],
self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(
self.iDocumentReferences[1]["theName"],
self.iDocumentReferences[1]["theDocName"],
self.iDocumentReferences[1]["theContributor"],
self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(
self.iPersonaCharacteristics[0]["thePersonaName"],
self.iPersonaCharacteristics[0]["theModQual"],
self.iPersonaCharacteristics[0]["theVariable"],
self.iPersonaCharacteristics[0]["theCharacteristic"],
[(self.iPersonaCharacteristics[0]["ground"], '', 'document')],
[(self.iPersonaCharacteristics[0]["warrant"], '', 'document')], [],
[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
def testAttacker(self):
iatkeps = [
AttackerEnvironmentProperties(
self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],
self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],
self.iAttackers[0]["theEnvironmentProperties"][0]
["theMotives"], self.iAttackers[0]["theEnvironmentProperties"]
[0]["theCapabilities"])
]
iatk = AttackerParameters(self.iAttackers[0]["theName"],
self.iAttackers[0]["theDescription"],
self.iAttackers[0]["theImage"], [], iatkeps)
b = Borg()
b.dbProxy.addAttacker(iatk)
oAttackers = b.dbProxy.getAttackers()
o = oAttackers[self.iAttackers[0]["theName"]]
self.assertEqual(iatk.name(), o.name())
self.assertEqual(iatk.description(), o.description())
self.assertEqual(iatk.image(), o.image())
oatkeps = o.environmentProperties()
self.assertEqual(iatkeps[0].name(), oatkeps[0].name())
self.assertEqual(str(iatkeps[0].roles()[0]),
str(oatkeps[0].roles()[0]))
self.assertEqual(str(iatkeps[0].motives()[0]),
str(oatkeps[0].motives()[0]))
self.assertEqual(str(iatkeps[0].capabilities()[0][0]),
str(oatkeps[0].capabilities()[0][0]))
self.assertEqual(str(iatkeps[0].capabilities()[0][1]),
str(oatkeps[0].capabilities()[0][1]))
iatk.theName = 'Updated name'
iatk.setId(o.id())
b.dbProxy.updateAttacker(iatk)
oAttackers = b.dbProxy.getAttackers()
o = oAttackers["Updated name"]
self.assertEqual(o.name(), 'Updated name')
b.dbProxy.deleteAttacker(o.id())
def tearDown(self):
b = Borg()
b.dbProxy.deleteDocumentReference(self.odrs[self.idr1.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr2.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec1.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec2.name()].id())
b.dbProxy.deletePersona(self.opp[self.ipp.name()].id())
b.dbProxy.deleteRole(self.oRoles[self.irp.name()].id())
b.dbProxy.deleteEnvironment(self.oenvs[self.iep.name()].id())
b.dbProxy.close()
call([os.environ['CAIRIS_SRC'] + "/test/dropdb.sh"])
def endElement(self, name):
if (name == 'component'):
p = ComponentParameters(self.theName, self.theDescription,
self.theInterfaces, self.theStructure,
self.theComponentRequirements,
self.theComponentGoals,
self.theComponentGoalAssociations)
self.theComponents.append(p)
self.resetComponentAttributes()
elif name == 'role':
p = RoleParameters(self.theName, self.theType, self.theShortCode,
self.theDescription, [])
self.theRoles.append(p)
self.resetRoleAttributes()
elif name == 'asset':
spDict = {}
spDict['confidentiality'] = 0
spDict['integrity'] = 0
spDict['availability'] = 0
spDict['accountability'] = 0
spDict['anonymity'] = 0
spDict['pseudonymity'] = 0
spDict['unlinkability'] = 0
spDict['unobservability'] = 0
srDict = {}
srDict['confidentiality'] = 'None'
srDict['integrity'] = 'None'
srDict['availability'] = 'None'
srDict['accountability'] = 'None'
srDict['anonymity'] = 'None'
srDict['pseudonymity'] = 'None'
srDict['unlinkability'] = 'None'
srDict['unobservability'] = 'None'
for sp in self.theSecurityProperties:
spName = sp[0]
spValue = a2i(sp[1])
spRationale = sp[2]
if spName in spDict:
spDict[spName] = spValue
if spName in srDict:
srDict[spName] = spRationale
spValues = []
spValues.append(spDict['confidentiality'])
spValues.append(spDict['integrity'])
spValues.append(spDict['availability'])
spValues.append(spDict['accountability'])
spValues.append(spDict['anonymity'])
spValues.append(spDict['pseudonymity'])
spValues.append(spDict['unlinkability'])
spValues.append(spDict['unobservability'])
srValues = []
srValues.append(srDict['confidentiality'])
srValues.append(srDict['integrity'])
srValues.append(srDict['availability'])
srValues.append(srDict['accountability'])
srValues.append(srDict['anonymity'])
srValues.append(srDict['pseudonymity'])
srValues.append(srDict['unlinkability'])
srValues.append(srDict['unobservability'])
p = TemplateAssetParameters(
self.theName, self.theShortCode, self.theDescription,
self.theSignificance, self.theAssetType, self.theSurfaceType,
self.theAccessRight, spValues, srValues, self.theTags,
self.theInterfaces)
self.theAssets.append(p)
self.resetAssetAttributes()
elif name == 'security_property':
self.theSecurityProperties.append(
(self.thePropertyName, self.thePropertyValue,
self.theRationale))
self.resetSecurityPropertyAttributes()
elif name == 'structure':
self.theStructure.append(
(self.theHeadName, self.theHeadAdornment, self.theHeadNav,
self.theHeadNry, self.theHeadRole, self.theTailRole,
self.theTailNry, self.theTailNav, self.theTailAdornment,
self.theTailName))
self.resetStructure()
elif name == 'requirement':
p = TemplateRequirementParameters(self.theReqName, self.theAsset,
self.theType,
self.theDescription,
self.theRationale,
self.theFitCriterion)
self.theRequirements.append(p)
self.resetRequirementAttributes()
elif name == 'goal':
p = TemplateGoalParameters(self.theName, self.theDefinition,
self.theRationale, self.theConcerns,
self.theResponsibilities)
self.theGoals.append(p)
self.resetGoalAttributes()
elif name == 'connector':
p = ConnectorParameters(self.theName, self.theViewName,
self.theFromName, self.theFromRole,
self.theFromInterface, self.theToName,
self.theToInterface, self.theToRole,
self.theConnectorAsset,
self.theProtocolName, self.theAccessRight)
self.theConnectors.append(p)
self.resetConnectorAttributes()
elif name == 'component_goal_association':
self.theComponentGoalAssociations.append(
(self.theGoalName, self.theSubGoalName, self.theRefType,
self.theRationale))
self.resetComponentGoalAssociationAttributes()
elif name == 'description':
self.inDescription = 0
elif name == 'definition':
self.inDefinition = 0
elif name == 'synopsis':
self.inSynopsis = 0
elif name == 'rationale':
self.inRationale = 0
elif name == 'significance':
self.inSignificance = 0
elif name == 'fit_criterion':
self.inFitCriterion = 0
elif name == 'access_right' or name == 'protocol' or name == 'privilege' or name == 'surface_type':
p = ValueTypeParameters(self.theName, self.theDescription, name,
'', self.theScore, self.theRationale)
self.theMetricTypes.append(p)
self.resetValueTypeAttributes()
elif name == 'architectural_pattern':
self.theViewParameters = ComponentViewParameters(
self.theViewName, self.theSynopsis, self.theMetricTypes,
self.theRoles, self.theAssets, self.theRequirements,
self.theGoals, self.theComponents, self.theConnectors)
def setUp(self):
call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/threats.json')
d = json.load(f)
f.close()
ienvs = d['environments']
iep = EnvironmentParameters(ienvs[0]["theName"],
ienvs[0]["theShortCode"],
ienvs[0]["theDescription"])
iep1 = EnvironmentParameters(ienvs[1]["theName"],
ienvs[1]["theShortCode"],
ienvs[1]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(iep)
b.dbProxy.addEnvironment(iep1)
iRoles = d['roles']
irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"],
iRoles[0]["theShortCode"],
iRoles[0]["theDescription"], [])
b.dbProxy.addRole(irp)
iAttackers = d['attackers']
iatkeps = [
AttackerEnvironmentProperties(
iAttackers[0]["theEnvironmentProperties"][0]["theName"],
iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],
iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],
iAttackers[0]["theEnvironmentProperties"][0]
["theCapabilities"]),
AttackerEnvironmentProperties(
iAttackers[0]["theEnvironmentProperties"][1]["theName"],
iAttackers[0]["theEnvironmentProperties"][1]["theRoles"],
iAttackers[0]["theEnvironmentProperties"][1]["theMotives"],
iAttackers[0]["theEnvironmentProperties"][1]
["theCapabilities"])
]
iatk = AttackerParameters(iAttackers[0]["theName"],
iAttackers[0]["theDescription"],
iAttackers[0]["theImage"], [], iatkeps)
b.dbProxy.addAttacker(iatk)
iVtypes = d['valuetypes']
ivt = ValueTypeParameters(iVtypes[0]["theName"],
iVtypes[0]["theDescription"],
iVtypes[0]["theType"])
b.dbProxy.addValueType(ivt)
iassets = d['assets']
iaeps = [
AssetEnvironmentProperties(
iassets[0]["theEnvironmentProperties"][0][0],
iassets[0]["theEnvironmentProperties"][0][1],
iassets[0]["theEnvironmentProperties"][0][2]),
AssetEnvironmentProperties(
iassets[0]["theEnvironmentProperties"][1][0],
iassets[0]["theEnvironmentProperties"][1][1],
iassets[0]["theEnvironmentProperties"][1][2])
]
iap = AssetParameters(iassets[0]["theName"],
iassets[0]["theShortCode"],
iassets[0]["theDescription"],
iassets[0]["theSignificance"],
iassets[0]["theType"], "0", "N/A", [], [], iaeps)
b.dbProxy.addAsset(iap)
self.iThreats = d['threats']
def setUp(self):
call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/responses.json')
d = json.load(f)
f.close()
ienvs = d['environments']
iep1 = EnvironmentParameters(ienvs[0]["theName"],
ienvs[0]["theShortCode"],
ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(iep1)
iRoles = d['roles']
irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"],
iRoles[0]["theShortCode"],
iRoles[0]["theDescription"], [])
b.dbProxy.addRole(irp)
iAttackers = d['attackers']
iatkeps = [
AttackerEnvironmentProperties(
iAttackers[0]["theEnvironmentProperties"][0]["theName"],
iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],
iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],
iAttackers[0]["theEnvironmentProperties"][0]
["theCapabilities"])
]
iatk = AttackerParameters(iAttackers[0]["theName"],
iAttackers[0]["theDescription"],
iAttackers[0]["theImage"], [], iatkeps)
b.dbProxy.addAttacker(iatk)
iVtypes = d['valuetypes']
ivt1 = ValueTypeParameters(iVtypes[0]["theName"],
iVtypes[0]["theDescription"],
iVtypes[0]["theType"])
ivt2 = ValueTypeParameters(iVtypes[1]["theName"],
iVtypes[1]["theDescription"],
iVtypes[1]["theType"])
b.dbProxy.addValueType(ivt1)
b.dbProxy.addValueType(ivt2)
iassets = d['assets']
iaeps1 = [
AssetEnvironmentProperties(
iassets[0]["theEnvironmentProperties"][0][0],
iassets[0]["theEnvironmentProperties"][0][1],
iassets[0]["theEnvironmentProperties"][0][2])
]
iaeps2 = [
AssetEnvironmentProperties(
iassets[1]["theEnvironmentProperties"][0][0],
iassets[1]["theEnvironmentProperties"][0][1],
iassets[1]["theEnvironmentProperties"][0][2])
]
iaeps3 = [
AssetEnvironmentProperties(
iassets[2]["theEnvironmentProperties"][0][0],
iassets[2]["theEnvironmentProperties"][0][1],
iassets[2]["theEnvironmentProperties"][0][2])
]
iap1 = AssetParameters(iassets[0]["theName"],
iassets[0]["theShortCode"],
iassets[0]["theDescription"],
iassets[0]["theSignificance"],
iassets[0]["theType"], "0", "N/A", [], [],
iaeps1)
iap2 = AssetParameters(iassets[1]["theName"],
iassets[1]["theShortCode"],
iassets[1]["theDescription"],
iassets[1]["theSignificance"],
iassets[1]["theType"], "0", "N/A", [], [],
iaeps2)
iap3 = AssetParameters(iassets[2]["theName"],
iassets[2]["theShortCode"],
iassets[2]["theDescription"],
iassets[2]["theSignificance"],
iassets[2]["theType"], "0", "N/A", [], [],
iaeps3)
b.dbProxy.addAsset(iap1)
b.dbProxy.addAsset(iap2)
b.dbProxy.addAsset(iap3)
iThreats = d['threats']
iteps = [
ThreatEnvironmentProperties(
iThreats[0]["theEnvironmentProperties"][0]["theName"],
iThreats[0]["theEnvironmentProperties"][0]["theLikelihood"],
iThreats[0]["theEnvironmentProperties"][0]["theAssets"],
iThreats[0]["theEnvironmentProperties"][0]["theAttackers"],
iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0]
[1], iThreats[0]["theEnvironmentProperties"][0]
["theProperties"][0][1])
]
itps = ThreatParameters(iThreats[0]["theName"], iThreats[0]["theType"],
iThreats[0]["theMethod"], [], iteps)
b.dbProxy.addThreat(itps)
iVuln = d['vulnerabilities']
iveps = [
VulnerabilityEnvironmentProperties(
iVuln[0]["theEnvironmentProperties"][0]["theName"],
iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],
iVuln[0]["theEnvironmentProperties"][0]["theAssets"])
]
ivp = VulnerabilityParameters(iVuln[0]["theName"],
iVuln[0]["theDescription"],
iVuln[0]["theType"], [], iveps)
b.dbProxy.addVulnerability(ivp)
imc = d['misuseCase']
iRisks = d['risks']
imcep = [
MisuseCaseEnvironmentProperties(
imc[0]["theEnvironmentProperties"][0]["theName"],
imc[0]["theEnvironmentProperties"][0]["theDescription"])
]
imcp = MisuseCase(int(0), imc[0]["theName"], imcep, imc[0]["theRisk"])
irp = RiskParameters(iRisks[0]["theName"], iRisks[0]["threatName"],
iRisks[0]["vulName"], imcp, [])
b.dbProxy.addRisk(irp)
self.iResponses = d['responses']
def setUp(self):
call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/processes.json')
d = json.load(f)
f.close()
b = Borg()
iIntDocs = d['internaldocuments']
i = InternalDocumentParameters(iIntDocs[0]["theName"],
iIntDocs[0]["theDescription"],
iIntDocs[0]["theContent"], [], [])
b.dbProxy.addInternalDocument(i)
iCodes = d['codes']
i = CodeParameters(iCodes[0]["theName"], iCodes[0]["theType"],
iCodes[0]["theDescription"],
iCodes[0]["theInclusionCriteria"],
iCodes[0]["theExample"])
b.dbProxy.addCode(i)
i = CodeParameters(iCodes[1]["theName"], iCodes[1]["theType"],
iCodes[1]["theDescription"],
iCodes[1]["theInclusionCriteria"],
iCodes[1]["theExample"])
b.dbProxy.addCode(i)
iQs = d['quotations']
i = (iQs[0]["theType"], iQs[0]["theCode"], iQs[0]["theArtifactType"],
iQs[0]["theArtifactName"], iQs[0]["theEnvironment"],
iQs[0]["theSection"], iQs[0]["theStartIdx"], iQs[0]["theEndIdx"],
iQs[0]["theLabel"], iQs[0]["theSynopsis"])
b.dbProxy.addQuotation(i)
i = (iQs[2]['theType'], iQs[2]["theCode"], iQs[2]["theArtifactType"],
iQs[2]["theArtifactName"], iQs[2]["theEnvironment"],
iQs[2]["theSection"], iQs[2]["theStartIdx"], iQs[2]["theEndIdx"],
iQs[2]["theLabel"], iQs[2]["theSynopsis"])
b.dbProxy.addQuotation(i)
iEnvironments = d['environments']
iep1 = EnvironmentParameters(iEnvironments[0]["theName"],
iEnvironments[0]["theShortCode"],
iEnvironments[0]["theDescription"])
b.dbProxy.addEnvironment(iep1)
iRoles = d['roles']
irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"],
iRoles[0]["theShortCode"],
iRoles[0]["theDescription"], [])
b.dbProxy.addRole(irp)
iPersonas = d['personas']
ipp = PersonaParameters(
iPersonas[0]["theName"], iPersonas[0]["theActivities"],
iPersonas[0]["theAttitudes"], iPersonas[0]["theAptitudes"],
iPersonas[0]["theMotivations"], iPersonas[0]["theSkills"],
iPersonas[0]["theIntrinsic"], iPersonas[0]["theContextual"], "",
"0", iPersonas[0]["thePersonaType"], [], [
PersonaEnvironmentProperties(
iPersonas[0]["theEnvironmentProperties"][0]["theName"],
(iPersonas[0]["theEnvironmentProperties"][0]
["theDirectFlag"] == "True"), iPersonas[0]
["theEnvironmentProperties"][0]["theNarrative"],
iPersonas[0]["theEnvironmentProperties"][0]["theRole"])
], [])
b.dbProxy.addPersona(ipp)
self.iCN = d['code_networks']
b.dbProxy.addCodeRelationship(self.iCN[0]["thePersonaName"],
self.iCN[0]["theFromCode"],
self.iCN[0]["theToCode"],
self.iCN[0]["theRshipType"])
def endElement(self, name):
if name == 'role':
p = RoleParameters(self.theName, self.theType,
unescape(self.theShortCode),
unescape(self.theDescription), [])
self.theRoleParameters.append(p)
self.resetRoleAttributes()
elif name == 'asset':
envDict = {}
for sp in self.theSecurityProperties:
envName = sp[0]
spName = sp[1]
spValue = a2i(sp[2])
spRationale = sp[3]
if envName in envDict:
(envDict[envName])[spName] = (spValue, spRationale)
else:
spDict = {}
spDict['confidentiality'] = (0, 'None')
spDict['integrity'] = (0, 'None')
spDict['availability'] = (0, 'None')
spDict['accountability'] = (0, 'None')
spDict['anonymity'] = (0, 'None')
spDict['pseudonymity'] = (0, 'None')
spDict['unlinkability'] = (0, 'None')
spDict['unobservability'] = (0, 'None')
spDict[spName] = (spValue, spRationale)
envDict[envName] = spDict
for envName in envDict:
spDict = envDict[envName]
cProperty, cRationale = spDict['confidentiality']
iProperty, iRationale = spDict['integrity']
avProperty, avRationale = spDict['availability']
acProperty, acRationale = spDict['accountability']
anProperty, anRationale = spDict['anonymity']
panProperty, panRationale = spDict['pseudonymity']
unlProperty, unlRationale = spDict['unlinkability']
unoProperty, unoRationale = spDict['unobservability']
ep = AssetEnvironmentProperties(envName, [
cProperty, iProperty, avProperty, acProperty, anProperty,
panProperty, unlProperty, unoProperty
], [
cRationale, iRationale, avRationale, acRationale,
anRationale, panRationale, unlRationale, unoRationale
])
self.theEnvironmentProperties.append(ep)
p = AssetParameters(self.theName, unescape(self.theShortCode),
unescape(self.theDescription),
unescape(self.theSignificance),
self.theAssetType, self.isCritical,
self.theCriticalRationale, self.theTags,
self.theInterfaces,
self.theEnvironmentProperties)
self.theAssetParameters.append(p)
self.resetAssetAttributes()
elif name == 'security_property':
self.theSecurityProperties.append(
(self.theEnvironmentName, self.thePropertyName,
self.thePropertyValue, unescape(self.theRationale)))
self.resetSecurityPropertyAttributes()
elif name == 'threatened_property':
self.theSpDict[self.thePropertyName] = (self.thePropertyValue,
unescape(
self.theRationale))
self.resetThreatenedPropertyAttributes()
elif name == 'vulnerability':
p = VulnerabilityParameters(self.theName,
unescape(self.theDescription),
self.theType, self.theTags,
self.theEnvironmentProperties)
self.theVulnerabilities.append(p)
self.resetVulnerabilityAttributes()
elif name == 'vulnerability_environment':
p = VulnerabilityEnvironmentProperties(self.theEnvironmentName,
self.theSeverity,
self.theAssets)
self.theEnvironmentProperties.append(p)
self.resetVulnerabilityEnvironmentAttributes()
elif name == 'attacker':
p = AttackerParameters(self.theName, unescape(self.theDescription),
self.theImage, self.theTags,
self.theEnvironmentProperties)
self.theAttackerParameters.append(p)
self.resetAttackerAttributes()
elif name == 'attacker_environment':
p = AttackerEnvironmentProperties(self.theEnvironmentName,
self.theRoles,
self.theMotivations,
self.theCapabilities)
self.theEnvironmentProperties.append(p)
self.resetAttackerEnvironmentAttributes()
elif name == 'threat':
p = ThreatParameters(self.theName, self.theType,
unescape(self.theMethod), self.theTags,
self.theEnvironmentProperties)
self.theThreats.append(p)
self.resetThreatAttributes()
elif name == 'threat_environment':
cProperty, cRationale = self.theSpDict['confidentiality']
iProperty, iRationale = self.theSpDict['integrity']
avProperty, avRationale = self.theSpDict['availability']
acProperty, acRationale = self.theSpDict['accountability']
anProperty, anRationale = self.theSpDict['anonymity']
panProperty, panRationale = self.theSpDict['pseudonymity']
unlProperty, unlRationale = self.theSpDict['unlinkability']
unoProperty, unoRationale = self.theSpDict['unobservability']
p = ThreatEnvironmentProperties(
self.theEnvironmentName, self.theLikelihood, self.theAssets,
self.theAttackers, [
cProperty, iProperty, avProperty, acProperty, anProperty,
panProperty, unlProperty, unoProperty
], [
cRationale, iRationale, avRationale, acRationale,
anRationale, panRationale, unlRationale, unoRationale
])
self.theEnvironmentProperties.append(p)
self.resetThreatEnvironmentAttributes()
elif name == 'risk':
mc = MisuseCase(-1, 'Exploit ' + self.theName,
self.theEnvironmentProperties, self.theName)
p = RiskParameters(self.theName, self.theThreat,
self.theVulnerability, mc, self.theTags)
self.theRisks.append(p)
self.resetRiskAttributes()
elif name == 'misusecase':
p = MisuseCaseEnvironmentProperties(self.theEnvironmentName,
unescape(self.theDescription))
self.theEnvironmentProperties.append(p)
self.resetRiskEnvironmentAttributes()
elif name == 'response':
p = ResponseParameters(self.theType + ' ' + self.theRisk,
self.theRisk, self.theTags,
self.theEnvironmentProperties, self.theType)
self.theResponses.append(p)
self.resetResponseAttributes()
elif name == 'accept_environment':
p = AcceptEnvironmentProperties(self.theEnvironmentName,
self.theCost,
unescape(self.theDescription))
self.theEnvironmentProperties.append(p)
self.resetResponseEnvironmentAttributes()
elif name == 'transfer_environment':
p = TransferEnvironmentProperties(self.theEnvironmentName,
unescape(self.theDescription),
self.theResponseRoles)
self.theEnvironmentProperties.append(p)
self.resetResponseEnvironmentAttributes()
elif name == 'deter_environment':
p = MitigateEnvironmentProperties(self.theEnvironmentName, 'Deter')
self.theEnvironmentProperties.append(p)
self.resetResponseEnvironmentAttributes()
elif name == 'prevent_environment':
p = MitigateEnvironmentProperties(self.theEnvironmentName,
'Prevent')
self.theEnvironmentProperties.append(p)
self.resetResponseEnvironmentAttributes()
elif name == 'detect_environment':
p = MitigateEnvironmentProperties(self.theEnvironmentName,
'Detect', self.theDetectionPoint)
self.theEnvironmentProperties.append(p)
self.resetResponseEnvironmentAttributes()
elif name == 'react_environment':
p = MitigateEnvironmentProperties(self.theEnvironmentName, 'React',
'', self.theDetectionMechanisms)
self.theEnvironmentProperties.append(p)
self.resetResponseEnvironmentAttributes()
elif name == 'asset_association':
p = ClassAssociationParameters(
self.theEnvironmentName, self.theHeadName, 'asset',
self.theHeadNav, self.theHeadAdornment, self.theHeadNry,
self.theHeadRole, self.theTailRole, self.theTailNry,
self.theTailAdornment, self.theTailNav, 'asset',
self.theTailName, unescape(self.theRationale))
self.theAssociations.append(p)
self.resetAssociationAttributes()
elif name == 'description':
self.inDescription = 0
elif name == 'method':
self.inMethod = 0
elif name == 'narrative':
self.inDescription = 0
elif name == 'rationale':
self.inRationale = 0
elif name == 'significance':
self.inSignificance = 0
elif name == 'critical':
self.inCritical = 0
class RiskTest(unittest.TestCase):
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/risks.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep1 = EnvironmentParameters(self.ienvs[0]["theName"],self.ienvs[0]["theShortCode"],self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep1)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(self.iPersonas[0]["theName"],self.iPersonas[0]["theActivities"],self.iPersonas[0]["theAttitudes"],self.iPersonas[0]["theAptitudes"],self.iPersonas[0]["theMotivations"],self.iPersonas[0]["theSkills"],self.iPersonas[0]["theIntrinsic"],self.iPersonas[0]["theContextual"],"","0",self.iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(self.iPersonas[0]["theEnvironmentProperties"][0]["theName"],(self.iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),self.iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],self.iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(self.iExternalDocuments[0]["theName"],self.iExternalDocuments[0]["theVersion"],self.iExternalDocuments[0]["thePublicationDate"],self.iExternalDocuments[0]["theAuthors"],self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(self.iExternalDocuments[1]["theName"],self.iExternalDocuments[1]["theVersion"],self.iExternalDocuments[1]["thePublicationDate"],self.iExternalDocuments[1]["theAuthors"],self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(self.iDocumentReferences[0]["theName"],self.iDocumentReferences[0]["theDocName"],self.iDocumentReferences[0]["theContributor"],self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(self.iDocumentReferences[1]["theName"],self.iDocumentReferences[1]["theDocName"],self.iDocumentReferences[1]["theContributor"],self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(self.iPersonaCharacteristics[0]["thePersonaName"],self.iPersonaCharacteristics[0]["theModQual"],self.iPersonaCharacteristics[0]["theVariable"],self.iPersonaCharacteristics[0]["theCharacteristic"],[(self.iPersonaCharacteristics[0]["ground"],'','document')],[(self.iPersonaCharacteristics[0]["warrant"],'','document')],[],[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [AttackerEnvironmentProperties(self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],self.iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],self.iAttackers[0]["theEnvironmentProperties"][0]["theCapabilities"])]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"], self.iAttackers[0]["theDescription"], self.iAttackers[0]["theImage"],[],self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt1 = ValueTypeParameters(self.iVtypes[0]["theName"], self.iVtypes[0]["theDescription"], self.iVtypes[0]["theType"])
self.ivt2 = ValueTypeParameters(self.iVtypes[1]["theName"], self.iVtypes[1]["theDescription"], self.iVtypes[1]["theType"])
b.dbProxy.addValueType(self.ivt1)
b.dbProxy.addValueType(self.ivt2)
self.ovtt = b.dbProxy.getValueTypes('threat_type')
self.ovtv = b.dbProxy.getValueTypes('vulnerability_type')
self.iassets = d['assets']
self.iaeps1 = [AssetEnvironmentProperties(self.iassets[0]["theEnvironmentProperties"][0][0],self.iassets[0]["theEnvironmentProperties"][0][1],self.iassets[0]["theEnvironmentProperties"][0][2])]
self.iap1 = AssetParameters(self.iassets[0]["theName"],self.iassets[0]["theShortCode"],self.iassets[0]["theDescription"],self.iassets[0]["theSignificance"],self.iassets[0]["theType"],"0","N/A",[],[],self.iaeps1)
self.iap2 = AssetParameters(self.iassets[1]["theName"],self.iassets[1]["theShortCode"],self.iassets[1]["theDescription"],self.iassets[1]["theSignificance"],self.iassets[1]["theType"],"0","N/A",[],[],self.iaeps1)
self.iap3 = AssetParameters(self.iassets[2]["theName"],self.iassets[2]["theShortCode"],self.iassets[2]["theDescription"],self.iassets[2]["theSignificance"],self.iassets[2]["theType"],"0","N/A",[],[],self.iaeps1)
b.dbProxy.addAsset(self.iap1)
b.dbProxy.addAsset(self.iap2)
b.dbProxy.addAsset(self.iap3)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
self.iteps = [ThreatEnvironmentProperties(self.iThreats[0]["theEnvironmentProperties"][0]["theName"],self.iThreats[0]["theEnvironmentProperties"][0]["theLikelihood"],self.iThreats[0]["theEnvironmentProperties"][0]["theAssets"],self.iThreats[0]["theEnvironmentProperties"][0]["theAttackers"],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1])]
self.itps = ThreatParameters(self.iThreats[0]["theName"],self.iThreats[0]["theType"],self.iThreats[0]["theMethod"],[],self.iteps)
b.dbProxy.addThreat(self.itps)
self.otps = b.dbProxy.getThreats()
self.iVuln = d['vulnerabilities']
self.iveps = [VulnerabilityEnvironmentProperties(self.iVuln[0]["theEnvironmentProperties"][0]["theName"],self.iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],self.iVuln[0]["theEnvironmentProperties"][0]["theAssets"])]
self.ivp = VulnerabilityParameters(self.iVuln[0]["theName"],self.iVuln[0]["theDescription"],self.iVuln[0]["theType"], [], self.iveps)
b.dbProxy.addVulnerability(self.ivp)
self.ovp = b.dbProxy.getVulnerabilities()
self.imc = d['misuseCase']
self.iRisks = d['risks']
def testRisk(self):
imcep = [MisuseCaseEnvironmentProperties(self.imc[0]["theEnvironmentProperties"][0]["theName"],self.imc[0]["theEnvironmentProperties"][0]["theDescription"])]
imcp = MisuseCase(int(0), self.imc[0]["theName"], imcep,self.imc[0]["theRisk"])
irp = RiskParameters(self.iRisks[0]["theName"],self.iRisks[0]["threatName"],self.iRisks[0]["vulName"], imcp,[])
b = Borg()
b.dbProxy.addRisk(irp)
oRisks = b.dbProxy.getRisks()
o = oRisks[self.iRisks[0]["theName"]]
self.assertEqual(irp.name(), o.name())
self.assertEqual(irp.threat(),o.threat())
self.assertEqual(irp.vulnerability(),o.vulnerability())
# scoreDetails = b.dbProxy.riskScore(self.iRisks[0]["threatName"],self.iRisks[0]["vulName"],self.iaeps1[0].name())
# preScore = scoreDetails[0][1]
# postScore = scoreDetails[0][2]
# self.assertEqual(preScore,9)
# self.assertEqual(postScore,9)
imcp.theName = 'Updated risk'
imcp.theId = o.misuseCase().id()
irp.theRiskName = 'Updated risk'
irp.theMisuseCase = imcp
irp.setId(o.id())
b.dbProxy.updateRisk(irp)
oRisks = b.dbProxy.getRisks()
o = oRisks['Updated risk']
self.assertEqual(o.name(),'Updated risk')
self.assertEqual(irp.threat(),o.threat())
self.assertEqual(irp.vulnerability(),o.vulnerability())
b.dbProxy.deleteRisk(o.id())
def tearDown(self):
b = Borg()
b.dbProxy.deleteVulnerability(self.ovp[self.ivp.name()].id())
b.dbProxy.deleteThreat(self.otps[self.itps.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap3.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap2.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap1.name()].id())
b.dbProxy.deleteVulnerabilityType(0)
b.dbProxy.deleteThreatType(0)
b.dbProxy.deleteAttacker(self.oAttackers[self.iatk.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr1.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr2.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec1.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec2.name()].id())
b.dbProxy.deletePersona(self.opp[self.ipp.name()].id())
b.dbProxy.deleteRole(self.oRoles[self.irp.name()].id())
b.dbProxy.deleteEnvironment(self.oenvs[self.iep1.name()].id())
b.dbProxy.close()
call([os.environ['CAIRIS_SRC'] + "/test/dropdb.sh"])
class ResponseTest(unittest.TestCase):
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/responses.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep1 = EnvironmentParameters(self.ienvs[0]["theName"],self.ienvs[0]["theShortCode"],self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep1)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(self.iPersonas[0]["theName"],self.iPersonas[0]["theActivities"],self.iPersonas[0]["theAttitudes"],self.iPersonas[0]["theAptitudes"],self.iPersonas[0]["theMotivations"],self.iPersonas[0]["theSkills"],self.iPersonas[0]["theIntrinsic"],self.iPersonas[0]["theContextual"],"","0",self.iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(self.iPersonas[0]["theEnvironmentProperties"][0]["theName"],(self.iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),self.iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],self.iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(self.iExternalDocuments[0]["theName"],self.iExternalDocuments[0]["theVersion"],self.iExternalDocuments[0]["thePublicationDate"],self.iExternalDocuments[0]["theAuthors"],self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(self.iExternalDocuments[1]["theName"],self.iExternalDocuments[1]["theVersion"],self.iExternalDocuments[1]["thePublicationDate"],self.iExternalDocuments[1]["theAuthors"],self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(self.iDocumentReferences[0]["theName"],self.iDocumentReferences[0]["theDocName"],self.iDocumentReferences[0]["theContributor"],self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(self.iDocumentReferences[1]["theName"],self.iDocumentReferences[1]["theDocName"],self.iDocumentReferences[1]["theContributor"],self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(self.iPersonaCharacteristics[0]["thePersonaName"],self.iPersonaCharacteristics[0]["theModQual"],self.iPersonaCharacteristics[0]["theVariable"],self.iPersonaCharacteristics[0]["theCharacteristic"],[(self.iPersonaCharacteristics[0]["ground"],'','document')],[(self.iPersonaCharacteristics[0]["warrant"],'','document')],[],[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [AttackerEnvironmentProperties(self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],self.iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],self.iAttackers[0]["theEnvironmentProperties"][0]["theCapabilities"])]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"], self.iAttackers[0]["theDescription"], self.iAttackers[0]["theImage"],[],self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt1 = ValueTypeParameters(self.iVtypes[0]["theName"], self.iVtypes[0]["theDescription"], self.iVtypes[0]["theType"])
self.ivt2 = ValueTypeParameters(self.iVtypes[1]["theName"], self.iVtypes[1]["theDescription"], self.iVtypes[1]["theType"])
b.dbProxy.addValueType(self.ivt1)
b.dbProxy.addValueType(self.ivt2)
self.ovtt = b.dbProxy.getValueTypes('threat_type')
self.ovtv = b.dbProxy.getValueTypes('vulnerability_type')
self.iassets = d['assets']
self.iaeps1 = [AssetEnvironmentProperties(self.iassets[0]["theEnvironmentProperties"][0][0],self.iassets[0]["theEnvironmentProperties"][0][1],self.iassets[0]["theEnvironmentProperties"][0][2])]
self.iaeps2 = [AssetEnvironmentProperties(self.iassets[1]["theEnvironmentProperties"][0][0],self.iassets[1]["theEnvironmentProperties"][0][1],self.iassets[1]["theEnvironmentProperties"][0][2])]
self.iaeps3 = [AssetEnvironmentProperties(self.iassets[2]["theEnvironmentProperties"][0][0],self.iassets[2]["theEnvironmentProperties"][0][1],self.iassets[2]["theEnvironmentProperties"][0][2])]
self.iap1 = AssetParameters(self.iassets[0]["theName"],self.iassets[0]["theShortCode"],self.iassets[0]["theDescription"],self.iassets[0]["theSignificance"],self.iassets[0]["theType"],"0","N/A",[],[],self.iaeps1)
self.iap2 = AssetParameters(self.iassets[1]["theName"],self.iassets[1]["theShortCode"],self.iassets[1]["theDescription"],self.iassets[1]["theSignificance"],self.iassets[1]["theType"],"0","N/A",[],[],self.iaeps2)
self.iap3 = AssetParameters(self.iassets[2]["theName"],self.iassets[2]["theShortCode"],self.iassets[2]["theDescription"],self.iassets[2]["theSignificance"],self.iassets[2]["theType"],"0","N/A",[],[],self.iaeps3)
b.dbProxy.addAsset(self.iap1)
b.dbProxy.addAsset(self.iap2)
b.dbProxy.addAsset(self.iap3)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
self.iteps = [ThreatEnvironmentProperties(self.iThreats[0]["theEnvironmentProperties"][0]["theName"],self.iThreats[0]["theEnvironmentProperties"][0]["theLikelihood"],self.iThreats[0]["theEnvironmentProperties"][0]["theAssets"],self.iThreats[0]["theEnvironmentProperties"][0]["theAttackers"],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1])]
self.itps = ThreatParameters(self.iThreats[0]["theName"],self.iThreats[0]["theType"],self.iThreats[0]["theMethod"],[],self.iteps)
b.dbProxy.addThreat(self.itps)
self.otps = b.dbProxy.getThreats()
self.iVuln = d['vulnerabilities']
self.iveps = [VulnerabilityEnvironmentProperties(self.iVuln[0]["theEnvironmentProperties"][0]["theName"],self.iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],self.iVuln[0]["theEnvironmentProperties"][0]["theAssets"])]
self.ivp = VulnerabilityParameters(self.iVuln[0]["theName"],self.iVuln[0]["theDescription"],self.iVuln[0]["theType"], [], self.iveps)
b.dbProxy.addVulnerability(self.ivp)
self.ovp = b.dbProxy.getVulnerabilities()
self.imc = d['misuseCase']
self.iRisks = d['risks']
imcep = [MisuseCaseEnvironmentProperties(self.imc[0]["theEnvironmentProperties"][0]["theName"],self.imc[0]["theEnvironmentProperties"][0]["theDescription"])]
imcp = MisuseCase(int(0), self.imc[0]["theName"], imcep,self.imc[0]["theRisk"])
irp = RiskParameters(self.iRisks[0]["theName"],self.iRisks[0]["threatName"],self.iRisks[0]["vulName"], imcp,[])
b.dbProxy.addRisk(irp)
oRisks = b.dbProxy.getRisks()
self.r = oRisks[self.iRisks[0]["theName"]]
self.iResponses = d['responses']
def testResponse(self):
iar1Name = self.iResponses[0]["theType"] + " " + self.iResponses[0]["theRisk"]
iaep1 = AcceptEnvironmentProperties(self.iResponses[0]["theEnvironmentProperties"][0],self.iResponses[0]["theEnvironmentProperties"][1],self.iResponses[0]["theEnvironmentProperties"][2])
iar1 = ResponseParameters(iar1Name,self.iResponses[0]["theRisk"],[],[iaep1], self.iResponses[0]["theType"])
iar2Name = self.iResponses[1]["theType"] + " " + self.iResponses[1]["theRisk"]
iaep2 = MitigateEnvironmentProperties(self.iResponses[1]["theEnvironmentProperties"],self.iResponses[1]["theType"])
iar2 = ResponseParameters(iar2Name,self.iResponses[1]["theRisk"],[],[iaep2], self.iResponses[1]["theType"])
b = Borg()
b.dbProxy.addResponse(iar1)
b.dbProxy.addResponse(iar2)
self.ors = b.dbProxy.getResponses()
self.oar1 = self.ors[iar1Name]
self.oar2 = self.ors[iar2Name]
self.assertEqual(iar1.name(),self.oar1.name())
self.assertEqual(iar1.risk(),self.oar1.risk())
self.assertEqual(iar1.responseType(),self.oar1.responseType())
self.assertEqual(iar1.environmentProperties()[0].cost(),self.oar1.environmentProperties()[0].cost())
self.assertEqual(iar1.environmentProperties()[0].description(),self.oar1.environmentProperties()[0].description())
self.assertEqual(iar2.name(),self.oar2.name())
self.assertEqual(iar2.risk(),self.oar2.risk())
self.assertEqual(iar2.responseType(),self.oar2.responseType())
rgp = cairis.core.GoalFactory.build(self.oar2)
riskParameters = rgp[0]
riskGoalId = b.dbProxy.addGoal(riskParameters)
b.dbProxy.addTrace('response_goal',self.oar2.id(),riskGoalId)
if (rgp > 1):
threatParameters = rgp[1]
vulnerabilityParameters = rgp[2]
b.dbProxy.addGoal(vulnerabilityParameters)
b.dbProxy.addGoal(threatParameters)
b.dbProxy.relabelGoals(iaep2.name())
oGoals = b.dbProxy.getGoals()
print oGoals
rg = oGoals['Deter' + self.oar2.risk()]
vg = oGoals[vulnerabilityParameters.name()]
tg = oGoals[threatParameters.name()]
ogops = b.dbProxy.getGoalAssociations()
ogop1 = ogops[iaep2.name() + '/' + riskParameters.name() + '/' + threatParameters.name() + '/or']
ogop2 = ogops[iaep2.name() + '/' + riskParameters.name() + '/' + vulnerabilityParameters.name() + '/or']
b.dbProxy.deleteGoalAssociation(ogop1.id(),ogop1.goal(),ogop1.subGoal())
b.dbProxy.deleteGoalAssociation(ogop2.id(),ogop2.goal(),ogop2.subGoal())
b.dbProxy.deleteTrace('response',self.oar2.name(),'goal',rg.name())
b.dbProxy.deleteGoal(tg.id())
b.dbProxy.deleteGoal(vg.id())
b.dbProxy.deleteGoal(rg.id())
b.dbProxy.deleteResponse(self.oar2.id())
b.dbProxy.deleteResponse(self.oar1.id())
def tearDown(self):
b = Borg()
b.dbProxy.deleteRisk(self.r.id())
b.dbProxy.deleteVulnerability(self.ovp[self.ivp.name()].id())
b.dbProxy.deleteThreat(self.otps[self.itps.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap3.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap2.name()].id())
b.dbProxy.deleteAsset(self.oap[self.iap1.name()].id())
b.dbProxy.deleteVulnerabilityType(0)
b.dbProxy.deleteThreatType(0)
b.dbProxy.deleteAttacker(self.oAttackers[self.iatk.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr1.name()].id())
b.dbProxy.deleteDocumentReference(self.odrs[self.idr2.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec1.name()].id())
b.dbProxy.deleteExternalDocument(self.oecs[self.iec2.name()].id())
b.dbProxy.deletePersona(self.opp[self.ipp.name()].id())
b.dbProxy.deleteRole(self.oRoles[self.irp.name()].id())
b.dbProxy.deleteEnvironment(self.oenvs[self.iep1.name()].id())
b.dbProxy.close()
call([os.environ['CAIRIS_SRC'] + "/test/dropdb.sh"])
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/responses.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep1 = EnvironmentParameters(self.ienvs[0]["theName"],self.ienvs[0]["theShortCode"],self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep1)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"], self.iRoles[0]["theType"], self.iRoles[0]["theShortCode"], self.iRoles[0]["theDescription"],[])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(self.iPersonas[0]["theName"],self.iPersonas[0]["theActivities"],self.iPersonas[0]["theAttitudes"],self.iPersonas[0]["theAptitudes"],self.iPersonas[0]["theMotivations"],self.iPersonas[0]["theSkills"],self.iPersonas[0]["theIntrinsic"],self.iPersonas[0]["theContextual"],"","0",self.iPersonas[0]["thePersonaType"],[],[PersonaEnvironmentProperties(self.iPersonas[0]["theEnvironmentProperties"][0]["theName"],(self.iPersonas[0]["theEnvironmentProperties"][0]["theDirectFlag"] == "True"),self.iPersonas[0]["theEnvironmentProperties"][0]["theNarrative"],self.iPersonas[0]["theEnvironmentProperties"][0]["theRole"])],[])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(self.iExternalDocuments[0]["theName"],self.iExternalDocuments[0]["theVersion"],self.iExternalDocuments[0]["thePublicationDate"],self.iExternalDocuments[0]["theAuthors"],self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(self.iExternalDocuments[1]["theName"],self.iExternalDocuments[1]["theVersion"],self.iExternalDocuments[1]["thePublicationDate"],self.iExternalDocuments[1]["theAuthors"],self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(self.iDocumentReferences[0]["theName"],self.iDocumentReferences[0]["theDocName"],self.iDocumentReferences[0]["theContributor"],self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(self.iDocumentReferences[1]["theName"],self.iDocumentReferences[1]["theDocName"],self.iDocumentReferences[1]["theContributor"],self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(self.iPersonaCharacteristics[0]["thePersonaName"],self.iPersonaCharacteristics[0]["theModQual"],self.iPersonaCharacteristics[0]["theVariable"],self.iPersonaCharacteristics[0]["theCharacteristic"],[(self.iPersonaCharacteristics[0]["ground"],'','document')],[(self.iPersonaCharacteristics[0]["warrant"],'','document')],[],[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [AttackerEnvironmentProperties(self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],self.iAttackers[0]["theEnvironmentProperties"][0]["theMotives"],self.iAttackers[0]["theEnvironmentProperties"][0]["theCapabilities"])]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"], self.iAttackers[0]["theDescription"], self.iAttackers[0]["theImage"],[],self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt1 = ValueTypeParameters(self.iVtypes[0]["theName"], self.iVtypes[0]["theDescription"], self.iVtypes[0]["theType"])
self.ivt2 = ValueTypeParameters(self.iVtypes[1]["theName"], self.iVtypes[1]["theDescription"], self.iVtypes[1]["theType"])
b.dbProxy.addValueType(self.ivt1)
b.dbProxy.addValueType(self.ivt2)
self.ovtt = b.dbProxy.getValueTypes('threat_type')
self.ovtv = b.dbProxy.getValueTypes('vulnerability_type')
self.iassets = d['assets']
self.iaeps1 = [AssetEnvironmentProperties(self.iassets[0]["theEnvironmentProperties"][0][0],self.iassets[0]["theEnvironmentProperties"][0][1],self.iassets[0]["theEnvironmentProperties"][0][2])]
self.iaeps2 = [AssetEnvironmentProperties(self.iassets[1]["theEnvironmentProperties"][0][0],self.iassets[1]["theEnvironmentProperties"][0][1],self.iassets[1]["theEnvironmentProperties"][0][2])]
self.iaeps3 = [AssetEnvironmentProperties(self.iassets[2]["theEnvironmentProperties"][0][0],self.iassets[2]["theEnvironmentProperties"][0][1],self.iassets[2]["theEnvironmentProperties"][0][2])]
self.iap1 = AssetParameters(self.iassets[0]["theName"],self.iassets[0]["theShortCode"],self.iassets[0]["theDescription"],self.iassets[0]["theSignificance"],self.iassets[0]["theType"],"0","N/A",[],[],self.iaeps1)
self.iap2 = AssetParameters(self.iassets[1]["theName"],self.iassets[1]["theShortCode"],self.iassets[1]["theDescription"],self.iassets[1]["theSignificance"],self.iassets[1]["theType"],"0","N/A",[],[],self.iaeps2)
self.iap3 = AssetParameters(self.iassets[2]["theName"],self.iassets[2]["theShortCode"],self.iassets[2]["theDescription"],self.iassets[2]["theSignificance"],self.iassets[2]["theType"],"0","N/A",[],[],self.iaeps3)
b.dbProxy.addAsset(self.iap1)
b.dbProxy.addAsset(self.iap2)
b.dbProxy.addAsset(self.iap3)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
self.iteps = [ThreatEnvironmentProperties(self.iThreats[0]["theEnvironmentProperties"][0]["theName"],self.iThreats[0]["theEnvironmentProperties"][0]["theLikelihood"],self.iThreats[0]["theEnvironmentProperties"][0]["theAssets"],self.iThreats[0]["theEnvironmentProperties"][0]["theAttackers"],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1],self.iThreats[0]["theEnvironmentProperties"][0]["theProperties"][0][1])]
self.itps = ThreatParameters(self.iThreats[0]["theName"],self.iThreats[0]["theType"],self.iThreats[0]["theMethod"],[],self.iteps)
b.dbProxy.addThreat(self.itps)
self.otps = b.dbProxy.getThreats()
self.iVuln = d['vulnerabilities']
self.iveps = [VulnerabilityEnvironmentProperties(self.iVuln[0]["theEnvironmentProperties"][0]["theName"],self.iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],self.iVuln[0]["theEnvironmentProperties"][0]["theAssets"])]
self.ivp = VulnerabilityParameters(self.iVuln[0]["theName"],self.iVuln[0]["theDescription"],self.iVuln[0]["theType"], [], self.iveps)
b.dbProxy.addVulnerability(self.ivp)
self.ovp = b.dbProxy.getVulnerabilities()
self.imc = d['misuseCase']
self.iRisks = d['risks']
imcep = [MisuseCaseEnvironmentProperties(self.imc[0]["theEnvironmentProperties"][0]["theName"],self.imc[0]["theEnvironmentProperties"][0]["theDescription"])]
imcp = MisuseCase(int(0), self.imc[0]["theName"], imcep,self.imc[0]["theRisk"])
irp = RiskParameters(self.iRisks[0]["theName"],self.iRisks[0]["threatName"],self.iRisks[0]["vulName"], imcp,[])
b.dbProxy.addRisk(irp)
oRisks = b.dbProxy.getRisks()
self.r = oRisks[self.iRisks[0]["theName"]]
self.iResponses = d['responses']
def setUp(self):
call([os.environ['CAIRIS_SRC'] + "/test/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/responses.json')
d = json.load(f)
f.close()
self.ienvs = d['environments']
self.iep1 = EnvironmentParameters(self.ienvs[0]["theName"],
self.ienvs[0]["theShortCode"],
self.ienvs[0]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(self.iep1)
self.oenvs = b.dbProxy.getEnvironments()
self.iRoles = d['roles']
self.irp = RoleParameters(self.iRoles[0]["theName"],
self.iRoles[0]["theType"],
self.iRoles[0]["theShortCode"],
self.iRoles[0]["theDescription"], [])
b.dbProxy.addRole(self.irp)
self.oRoles = b.dbProxy.getRoles()
self.iPersonas = d['personas']
self.ipp = PersonaParameters(
self.iPersonas[0]["theName"], self.iPersonas[0]["theActivities"],
self.iPersonas[0]["theAttitudes"],
self.iPersonas[0]["theAptitudes"],
self.iPersonas[0]["theMotivations"],
self.iPersonas[0]["theSkills"], self.iPersonas[0]["theIntrinsic"],
self.iPersonas[0]["theContextual"], "", "0",
self.iPersonas[0]["thePersonaType"], [], [
PersonaEnvironmentProperties(
self.iPersonas[0]["theEnvironmentProperties"][0]
["theName"], (self.iPersonas[0]["theEnvironmentProperties"]
[0]["theDirectFlag"] == "True"),
self.iPersonas[0]["theEnvironmentProperties"][0]
["theNarrative"], self.iPersonas[0]
["theEnvironmentProperties"][0]["theRole"])
], [])
b.dbProxy.addPersona(self.ipp)
self.opp = b.dbProxy.getPersonas()
self.iExternalDocuments = d['external_documents']
self.iec1 = ExternalDocumentParameters(
self.iExternalDocuments[0]["theName"],
self.iExternalDocuments[0]["theVersion"],
self.iExternalDocuments[0]["thePublicationDate"],
self.iExternalDocuments[0]["theAuthors"],
self.iExternalDocuments[0]["theDescription"])
self.iec2 = ExternalDocumentParameters(
self.iExternalDocuments[1]["theName"],
self.iExternalDocuments[1]["theVersion"],
self.iExternalDocuments[1]["thePublicationDate"],
self.iExternalDocuments[1]["theAuthors"],
self.iExternalDocuments[1]["theDescription"])
b.dbProxy.addExternalDocument(self.iec1)
b.dbProxy.addExternalDocument(self.iec2)
self.oecs = b.dbProxy.getExternalDocuments()
self.iDocumentReferences = d['document_references']
self.idr1 = DocumentReferenceParameters(
self.iDocumentReferences[0]["theName"],
self.iDocumentReferences[0]["theDocName"],
self.iDocumentReferences[0]["theContributor"],
self.iDocumentReferences[0]["theExcerpt"])
self.idr2 = DocumentReferenceParameters(
self.iDocumentReferences[1]["theName"],
self.iDocumentReferences[1]["theDocName"],
self.iDocumentReferences[1]["theContributor"],
self.iDocumentReferences[1]["theExcerpt"])
b.dbProxy.addDocumentReference(self.idr1)
b.dbProxy.addDocumentReference(self.idr2)
self.odrs = b.dbProxy.getDocumentReferences()
self.iPersonaCharacteristics = d['persona_characteristics']
self.ipc1 = PersonaCharacteristicParameters(
self.iPersonaCharacteristics[0]["thePersonaName"],
self.iPersonaCharacteristics[0]["theModQual"],
self.iPersonaCharacteristics[0]["theVariable"],
self.iPersonaCharacteristics[0]["theCharacteristic"],
[(self.iPersonaCharacteristics[0]["ground"], '', 'document')],
[(self.iPersonaCharacteristics[0]["warrant"], '', 'document')], [],
[])
b.dbProxy.addPersonaCharacteristic(self.ipc1)
self.opcs = b.dbProxy.getPersonaCharacteristics()
self.iAttackers = d['attackers']
self.iatkeps = [
AttackerEnvironmentProperties(
self.iAttackers[0]["theEnvironmentProperties"][0]["theName"],
self.iAttackers[0]["theEnvironmentProperties"][0]["theRoles"],
self.iAttackers[0]["theEnvironmentProperties"][0]
["theMotives"], self.iAttackers[0]["theEnvironmentProperties"]
[0]["theCapabilities"])
]
self.iatk = AttackerParameters(self.iAttackers[0]["theName"],
self.iAttackers[0]["theDescription"],
self.iAttackers[0]["theImage"], [],
self.iatkeps)
b.dbProxy.addAttacker(self.iatk)
self.oAttackers = b.dbProxy.getAttackers()
self.iVtypes = d['valuetypes']
self.ivt1 = ValueTypeParameters(self.iVtypes[0]["theName"],
self.iVtypes[0]["theDescription"],
self.iVtypes[0]["theType"])
self.ivt2 = ValueTypeParameters(self.iVtypes[1]["theName"],
self.iVtypes[1]["theDescription"],
self.iVtypes[1]["theType"])
b.dbProxy.addValueType(self.ivt1)
b.dbProxy.addValueType(self.ivt2)
self.ovtt = b.dbProxy.getValueTypes('threat_type')
self.ovtv = b.dbProxy.getValueTypes('vulnerability_type')
self.iassets = d['assets']
self.iaeps1 = [
AssetEnvironmentProperties(
self.iassets[0]["theEnvironmentProperties"][0][0],
self.iassets[0]["theEnvironmentProperties"][0][1],
self.iassets[0]["theEnvironmentProperties"][0][2])
]
self.iaeps2 = [
AssetEnvironmentProperties(
self.iassets[1]["theEnvironmentProperties"][0][0],
self.iassets[1]["theEnvironmentProperties"][0][1],
self.iassets[1]["theEnvironmentProperties"][0][2])
]
self.iaeps3 = [
AssetEnvironmentProperties(
self.iassets[2]["theEnvironmentProperties"][0][0],
self.iassets[2]["theEnvironmentProperties"][0][1],
self.iassets[2]["theEnvironmentProperties"][0][2])
]
self.iap1 = AssetParameters(self.iassets[0]["theName"],
self.iassets[0]["theShortCode"],
self.iassets[0]["theDescription"],
self.iassets[0]["theSignificance"],
self.iassets[0]["theType"], "0", "N/A", [],
[], self.iaeps1)
self.iap2 = AssetParameters(self.iassets[1]["theName"],
self.iassets[1]["theShortCode"],
self.iassets[1]["theDescription"],
self.iassets[1]["theSignificance"],
self.iassets[1]["theType"], "0", "N/A", [],
[], self.iaeps2)
self.iap3 = AssetParameters(self.iassets[2]["theName"],
self.iassets[2]["theShortCode"],
self.iassets[2]["theDescription"],
self.iassets[2]["theSignificance"],
self.iassets[2]["theType"], "0", "N/A", [],
[], self.iaeps3)
b.dbProxy.addAsset(self.iap1)
b.dbProxy.addAsset(self.iap2)
b.dbProxy.addAsset(self.iap3)
self.oap = b.dbProxy.getAssets()
self.iThreats = d['threats']
self.iteps = [
ThreatEnvironmentProperties(
self.iThreats[0]["theEnvironmentProperties"][0]["theName"],
self.iThreats[0]["theEnvironmentProperties"][0]
["theLikelihood"],
self.iThreats[0]["theEnvironmentProperties"][0]["theAssets"],
self.iThreats[0]["theEnvironmentProperties"][0]
["theAttackers"], self.iThreats[0]["theEnvironmentProperties"]
[0]["theProperties"][0][1], self.iThreats[0]
["theEnvironmentProperties"][0]["theProperties"][0][1])
]
self.itps = ThreatParameters(self.iThreats[0]["theName"],
self.iThreats[0]["theType"],
self.iThreats[0]["theMethod"], [],
self.iteps)
b.dbProxy.addThreat(self.itps)
self.otps = b.dbProxy.getThreats()
self.iVuln = d['vulnerabilities']
self.iveps = [
VulnerabilityEnvironmentProperties(
self.iVuln[0]["theEnvironmentProperties"][0]["theName"],
self.iVuln[0]["theEnvironmentProperties"][0]["theSeverity"],
self.iVuln[0]["theEnvironmentProperties"][0]["theAssets"])
]
self.ivp = VulnerabilityParameters(self.iVuln[0]["theName"],
self.iVuln[0]["theDescription"],
self.iVuln[0]["theType"], [],
self.iveps)
b.dbProxy.addVulnerability(self.ivp)
self.ovp = b.dbProxy.getVulnerabilities()
self.imc = d['misuseCase']
self.iRisks = d['risks']
imcep = [
MisuseCaseEnvironmentProperties(
self.imc[0]["theEnvironmentProperties"][0]["theName"],
self.imc[0]["theEnvironmentProperties"][0]["theDescription"])
]
imcp = MisuseCase(int(0), self.imc[0]["theName"], imcep,
self.imc[0]["theRisk"])
irp = RiskParameters(self.iRisks[0]["theName"],
self.iRisks[0]["threatName"],
self.iRisks[0]["vulName"], imcp, [])
b.dbProxy.addRisk(irp)
oRisks = b.dbProxy.getRisks()
self.r = oRisks[self.iRisks[0]["theName"]]
self.iResponses = d['responses']
def setUp(self):
call([os.environ['CAIRIS_CFG_DIR'] + "/initdb.sh"])
cairis.core.BorgFactory.initialise()
f = open(os.environ['CAIRIS_SRC'] + '/test/tasks.json')
d = json.load(f)
f.close()
iEnvironments = d['environments']
iep1 = EnvironmentParameters(iEnvironments[0]["theName"],
iEnvironments[0]["theShortCode"],
iEnvironments[0]["theDescription"])
iep2 = EnvironmentParameters(iEnvironments[1]["theName"],
iEnvironments[1]["theShortCode"],
iEnvironments[1]["theDescription"])
b = Borg()
b.dbProxy.addEnvironment(iep1)
b.dbProxy.addEnvironment(iep2)
iRoles = d['roles']
irp = RoleParameters(iRoles[0]["theName"], iRoles[0]["theType"],
iRoles[0]["theShortCode"],
iRoles[0]["theDescription"], [])
b.dbProxy.addRole(irp)
iPersonas = d['personas']
ipp = PersonaParameters(
iPersonas[0]["theName"], iPersonas[0]["theActivities"],
iPersonas[0]["theAttitudes"], iPersonas[0]["theAptitudes"],
iPersonas[0]["theMotivations"], iPersonas[0]["theSkills"],
iPersonas[0]["theIntrinsic"], iPersonas[0]["theContextual"], "",
"0", iPersonas[0]["thePersonaType"], [], [
PersonaEnvironmentProperties(
iPersonas[0]["theEnvironmentProperties"][0]["theName"],
(iPersonas[0]["theEnvironmentProperties"][0]
["theDirectFlag"] == "True"), iPersonas[0]
["theEnvironmentProperties"][0]["theNarrative"],
iPersonas[0]["theEnvironmentProperties"][0]["theRole"]),
PersonaEnvironmentProperties(
iPersonas[0]["theEnvironmentProperties"][1]["theName"],
(iPersonas[0]["theEnvironmentProperties"][1]
["theDirectFlag"] == "True"), iPersonas[0]
["theEnvironmentProperties"][1]["theNarrative"],
iPersonas[0]["theEnvironmentProperties"][1]["theRole"])
], [])
b.dbProxy.addPersona(ipp)
iAssets = d['assets']
iaeps = [
AssetEnvironmentProperties(
iAssets[0]["theEnvironmentProperties"][0][0],
iAssets[0]["theEnvironmentProperties"][0][1],
iAssets[0]["theEnvironmentProperties"][0][2]),
AssetEnvironmentProperties(
iAssets[0]["theEnvironmentProperties"][1][0],
iAssets[0]["theEnvironmentProperties"][1][1],
iAssets[0]["theEnvironmentProperties"][1][2])
]
iap = AssetParameters(iAssets[0]["theName"],
iAssets[0]["theShortCode"],
iAssets[0]["theDescription"],
iAssets[0]["theSignificance"],
iAssets[0]["theType"], "0", "N/A", [], [], iaeps)
b = Borg()
b.dbProxy.addAsset(iap)
self.iTasks = d['tasks']
