Istituto di Scienza e Tecnologie dell'Informazione     
Bertolino A., Busch M., Daoudagh S., Koch N., Lonetti F., Marchetti E. A toolchain for designing and testing XACML policies. In: ICST - IEEE Sixth International Conference on Software Testing, Verification and Validation (Luxembourg, 18-22 March 2013). Proceedings, pp. 495 - 496. IEEE, 2013.
Access control mechanisms are defined by means of XACML policies in many application domains. Model-driven approaches: i)allow to overcome difficulties in the XACML policy definition; ii)can hide inaccuracies and weaknesses of security mechanisms. Testing is a key activity for assessing compliance of a XACML policy with the initial model. We propose a Toolchain for supporting users in testing access control policies modeled with UWE.
URL: http://ieeexplore.ieee.org/xpl/articleDetails.jsp?arnumber=6569771
DOI: 10.1109/ICST.2013.70
Subject XACML policies
UML-based Web Engineering
Test cases generation
Model compliance
D.2.5 Testing and Debugging
D.2.6 Security and Protection. Access controls

Icona documento 1) Download Document PDF

Icona documento Open access Icona documento Restricted Icona documento Private


Per ulteriori informazioni, contattare: Librarian http://puma.isti.cnr.it

Valid HTML 4.0 Transitional