Title :
Testing Security Rules with Decomposable Activities
Author :
Mallouli, Wissam ; Cavalli, Ana
Author_Institution :
GET/INT, Evry
Abstract :
Checking that a security policy has been correctly deployed over a network is a key issue for system administrators. Specification and testing of such policies constitute fundamental steps in the development of a secure system. To address both challenges, we propose a framework to describe how modalities such as permissions, prohibitions and obligations -involving decomposable activities- can be integrated in a functional EFSM specification of a system to obtain a new specification of the system that takes into account the security policy. Then, we propose a method to automatically derive test sequences to test the implementation, using a dedicated tool developed in our laboratory. Finally, we apply our framework to a Weblog system case study to demonstrate its reliability.
Keywords :
formal specification; formal verification; program testing; Weblog system; extended finite state machine; security policy; system specification; test sequences; Access control; Authorization; Automata; Automatic testing; Laboratories; Mathematical model; Permission; Security; System testing; Systems engineering and theory; Extended Finite State Machine; SDL; Security Policy; Test Generation.; Verification and Testing;
Conference_Titel :
High Assurance Systems Engineering Symposium, 2007. HASE '07. 10th IEEE
Conference_Location :
Plano, TX
Print_ISBN :
978-0-7695-3043-7
DOI :
10.1109/HASE.2007.41
