A Framework for the Validation of Access Control Systems

Conference Paper

Publication Date:

2020

abstract:

In modern pervasive applications, it is important to validate Access Control (AC) mechanisms that are usually defined by means of the XACML standard. Mutation analysis has been applied on Access Control Policies (ACPs) for measuring the adequacy of a test suite. This paper provides an automatic framework for realizing mutations of the code of the Policy Decision Point (PDP) that is a critical component in AC systems. The proposed framework allows the test strategies assessment and the analysis of test data by leveraging mutation-based approaches. We show how to instantiate the proposed framework and provide also some examples of its application.

Iris type:

04.01 Contributo in Atti di convegno

Keywords:

Access Control Systems; Mutation analysis; Testing; XACML

List of contributors:

Marchetti, Eda; Daoudagh, Said; Lonetti, Francesca

Authors of the University:

DAOUDAGH SAID

LONETTI FRANCESCA

MARCHETTI EDA

Handle:

https://iris.cnr.it/handle/20.500.14243/368086

Book title:

Emerging Technologies for Authorization and Authentication Second International Workshop, ETAA 2019, Luxembourg City, Luxembourg, September 27, 2019, Proceedings

Overview

URL

https://link.springer.com/chapter/10.1007/978-3-030-39749-4_3

A Framework for the Validation of Access Control Systems

Marchetti, Eda; Daoudagh, Said; Lonetti, Francesca

Overview

URL