Istituto di Scienza e Tecnologie dell'Informazione     
Bertolino A., Daoudagh S., Lonetti F., Marchetti E. The X-CREATE framework: a comparison of XACML policy testing strategies. In: WEBIST 2012 - 8th International Conference on Web Information Systems and Technologies (Porto, Portugal, 18 - 21 April 2012). Proceedings, pp. 155 - 160. Karl-Heinz Krempels, Josť Cordeiro (eds.). SciTePress Digital Library, 2012.
The specification of access control policies with the XACML language could be an error prone process, so a testing is usually the solution for increasing the confidence on the policy itself. In this paper, we compare two methodologies for deriving test cases for policy testing, i.e. XACML requests, that are implemented in the X-CREATE tool. We consider a simple combinatorial strategy and a XML-based approach (XPT) which exploit policy values and the XACML Context Schema. A stopping criterion for the test cases generation is also provided and used for the comparison of the strategies in terms of fault detection effectiveness.
URL: http://www.nessos-project.eu/index.php?option=com_jresearch&view=publication&task=show&id=214&Itemid=115
Subject XACML
Policy testing
XACML requests derivation
D.2.5 Testing and Debugging
D.2.6 Security and Protection. Access controls

Icona documento 1) Download Document PDF

Icona documento Open access Icona documento Restricted Icona documento Private


Per ulteriori informazioni, contattare: Librarian http://puma.isti.cnr.it

Valid HTML 4.0 Transitional