• DocumentCode
    2400933
  • Title

    Testing Security Rules with Decomposable Activities

  • Author

    Mallouli, Wissam ; Cavalli, Ana

  • Author_Institution
    GET/INT, Evry
  • fYear
    2007
  • fDate
    14-16 Nov. 2007
  • Firstpage
    149
  • Lastpage
    155
  • Abstract
    Checking that a security policy has been correctly deployed over a network is a key issue for system administrators. Specification and testing of such policies constitute fundamental steps in the development of a secure system. To address both challenges, we propose a framework to describe how modalities such as permissions, prohibitions and obligations -involving decomposable activities- can be integrated in a functional EFSM specification of a system to obtain a new specification of the system that takes into account the security policy. Then, we propose a method to automatically derive test sequences to test the implementation, using a dedicated tool developed in our laboratory. Finally, we apply our framework to a Weblog system case study to demonstrate its reliability.
  • Keywords
    formal specification; formal verification; program testing; Weblog system; extended finite state machine; security policy; system specification; test sequences; Access control; Authorization; Automata; Automatic testing; Laboratories; Mathematical model; Permission; Security; System testing; Systems engineering and theory; Extended Finite State Machine; SDL; Security Policy; Test Generation.; Verification and Testing;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    High Assurance Systems Engineering Symposium, 2007. HASE '07. 10th IEEE
  • Conference_Location
    Plano, TX
  • ISSN
    1530-2059
  • Print_ISBN
    978-0-7695-3043-7
  • Type

    conf

  • DOI
    10.1109/HASE.2007.41
  • Filename
    4404737
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=2400933