2020
Conference article  Restricted

A Framework for the Validation of Access Control Systems

Daoudagh S., Lonetti F., Marchetti E.

Mutation analysis  Access Control Systems  Testing  XACML 

In modern pervasive applications, it is important to validate Access Control (AC) mechanisms that are usually defined by means of the XACML standard. Mutation analysis has been applied on Access Control Policies (ACPs) for measuring the adequacy of a test suite. This paper provides an automatic framework for realizing mutations of the code of the Policy Decision Point (PDP) that is a critical component in AC systems. The proposed framework allows the test strategies assessment and the analysis of test data by leveraging mutation-based approaches. We show how to instantiate the proposed framework and provide also some examples of its application.

Source: Emerging Technologies for Authorization and Authentication. ETAA 2019, pp. 35–51, Luxembourg City, Luxembourg, 27/09/2019



Back to previous page
Projects (via OpenAIRE)

CyberSec4Europe
Cyber Security Network of Competence Centres for Europe


OpenAIRE
BibTeX entry
@inproceedings{oai:it.cnr:prodotti:416276,
	title = {A Framework for the Validation of Access Control Systems},
	author = {Daoudagh S. and Lonetti F. and Marchetti E.},
	doi = {10.1007/978-3-030-39749-4_3},
	booktitle = {Emerging Technologies for Authorization and Authentication. ETAA 2019, pp. 35–51, Luxembourg City, Luxembourg, 27/09/2019},
	year = {2020}
}