Daoudagh S., Lonetti F., Marchetti E.
Mutation analysis Access Control Systems Testing XACML
In modern pervasive applications, it is important to validate Access Control (AC) mechanisms that are usually defined by means of the XACML standard. Mutation analysis has been applied on Access Control Policies (ACPs) for measuring the adequacy of a test suite. This paper provides an automatic framework for realizing mutations of the code of the Policy Decision Point (PDP) that is a critical component in AC systems. The proposed framework allows the test strategies assessment and the analysis of test data by leveraging mutation-based approaches. We show how to instantiate the proposed framework and provide also some examples of its application.
Source: Emerging Technologies for Authorization and Authentication. ETAA 2019, pp. 35–51, Luxembourg City, Luxembourg, 27/09/2019
@inproceedings{oai:it.cnr:prodotti:416276, title = {A Framework for the Validation of Access Control Systems}, author = {Daoudagh S. and Lonetti F. and Marchetti E.}, doi = {10.1007/978-3-030-39749-4_3}, booktitle = {Emerging Technologies for Authorization and Authentication. ETAA 2019, pp. 35–51, Luxembourg City, Luxembourg, 27/09/2019}, year = {2020} }