Title :
Systematic XACML Request Generation for Testing Purposes
Author :
Bertolino, Antonia ; Lonetti, Francesca ; Marchetti, Eda
Author_Institution :
Consiglio Naz. delle Ric., Ist. di Scienza e Tecnol. dell´´Inf. A. Faedo, Pisa, Italy
Abstract :
A widely adopted security mechanism is the specification of access control policies by means of the XACML language. In this paper, we propose a framework, called X-CREATE, for the systematic generation of test inputs (XACML requests). Differently from existing tools, XCREATE exploits the XACML Context Schema. In particular, the tool applies a XML-based methodology (XPT) to systematically produce a set of intermediate instances, covering the XACML Context Schema. Moreover, for request generation, X-CREATE applies a procedure for parsing the policy under test and assigning values to the generated intermediate instances. The aim of the proposed framework is twofold: testing of policy evaluation engines and testing of access control policies. The experimental results show that the fault detection effectiveness of X-CREATE is similar or higher than that of existing approaches.
Keywords :
XML; authorisation; fault diagnosis; formal specification; program compilers; program testing; X-CREATE; XACML context schema; XML based methodology; access control policies specification; fault detection effectiveness; parsing; systematic XACML request generation; test inputs generation; Access control; Context; Proposals; Systematics; Testing; XML; Policy testing; Test suite generation; XACML;
Conference_Titel :
Software Engineering and Advanced Applications (SEAA), 2010 36th EUROMICRO Conference on
Conference_Location :
Lille
Print_ISBN :
978-1-4244-7901-6
DOI :
10.1109/SEAA.2010.58
