A Model-Based Framework for Security Policy Specification, Deployment and Testing

Mouelhi, Tejeddine; Fleurey, Franck; Baudry, Benoît; Traon, Yves Le

doi:10.1007/978-3-540-87875-9_38

Cited by 68 publications

(68 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…The other uses eXtensible Access Control Markup Language (XACML) to create the actual implementation of a security policy [13,27,28]. Le Traon et al have investigated various issues of testing access control policies, such as test criteria of access control policies [25], test generation from access control models [29], and selection and transformation of functional tests for policy testing [30]. Martin and Xie [13,27,28] have been investigating techniques for test generation from access control policy specifications written in XACML (OASIS XACML).…”

Section: Background and Related Workmentioning

confidence: 99%

“…(2) If CurrentNode is in a test sequence that has children with an OR relationship, we create the same number of sequences as children of the CurrentNode and replace CurrentNode in each of these sequences with one of the children of the OR relationship. Then, delete the original sequence containing CurrentNode (lines [24][25][26][27][28][29][30][31][32][33][34][35]. The set of test sequences that remains after the substitutions is the final set of test sequences used for test generation.…”

Section: Test Sequence Generation Algorithmmentioning

confidence: 99%

See 1 more Smart Citation

A threat model‐based approach to security testing

Marback

et al. 2012

Softw Pract Exp

View full text Add to dashboard Cite

SUMMARYSoftware security issues have been a major concern in the cyberspace community, so a great deal of research on security testing has been performed, and various security testing techniques have been developed. Threat modeling provides a systematic way to identify threats that might compromise security, and it has been a well-accepted practice by the industry, but test case generation from threat models has not been addressed yet. Thus, in this paper, we propose a threat model-based security testing approach that automatically generates security test sequences from threat trees and transforms them into executable tests. The security testing approach we consider consists of three activities in large: building threat models with threat trees; generating security test sequences from threat trees; and creating executable test cases by considering valid and invalid inputs. To support our approach, we implemented security test generation techniques, and we also conducted an empirical study to assess the effectiveness of our approach. The results of our study show that our threat tree-based approach is effective in exposing vulnerabilities.

show abstract

Section: Background and Related Workmentioning

confidence: 99%

Section: Test Sequence Generation Algorithmmentioning

confidence: 99%

A threat model‐based approach to security testing

Marback

et al. 2012

Softw Pract Exp

View full text Add to dashboard Cite

show abstract

“…Extracted network topology with the increasing adoption by industry and academy, makes XACML a good choice for a generic access-control representation. Indeed, some works in the model-driven community already chose XACML as a target language as in [3] and [16].…”

Section: Application Scenariosmentioning

confidence: 99%

Model-Driven Extraction and Analysis of Network Security Policies

Martínez

García-Alfaro

Cuppens

et al. 2013

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. Firewalls are a key element in network security. They are in charge of filtering the traffic of the network in compliance with a number of access-control rules that enforce a given security policy. In an always-evolving context, where security policies must often be updated to respond to new security requirements, knowing with precision the policy being enforced by a network system is a critical information. Otherwise, we risk to hamper the proper evolution of the system and compromise its security. Unfortunately, discovering such enforced policy is an error-prone and time consuming task that requires low-level and, often, vendor-specific expertise since firewalls may be configured using different languages and conform to a complex network topology. To tackle this problem, we propose a model-driven reverse engineering approach able to extract the security policy implemented by a set of firewalls in a working network, easing the understanding, analysis and evolution of network security policies.

show abstract

“…However, several work, including ones by the authors, proposed techniques and tools for automatically testing the security policies (access control policies) [12], [13], [14], [15]. Others TABLE III MOBILE BROWSER VS DESKTOP BROWSER COMPARISON 0 1 2 3 8 9 10 13 14 16 26 28 30 34 35 36 40 42 43 47 48 50 51 53 56 69 70 1 1 1 1 1 1 1 1 1 1 1 1 1 1 1 0 1 1 1 1 1 1 1 1 1 0 1 offer frameworks and techniques to test the systems from its interfaces [16], [17].…”

Section: Related Workmentioning

confidence: 99%

Empirical Investigation of the Web Browser Attack Surface under Cross-Site Scripting: An Urgent Need for Systematic Security Regression Testing

Abgrall

Traon²,

Gombault

et al. 2014

2014 IEEE Seventh International Conference on Software Testing, Verification and Validation Workshops

View full text Add to dashboard Cite

Abstract-One of the major threats against web applications is Cross-Site Scripting (XSS). The final target of XSS attacks is the client running a particular web browser. During this last decade, several competing web browsers (IE, Netscape, Chrome, Firefox) have evolved to support new features. In this paper, we explore whether the evolution of web browsers is done using systematic security regression testing. Beginning with an analysis of their current exposure degree to XSS, we extend the empirical study to a decade of most popular web browser versions. We use XSS attack vectors as unit test cases and we propose a new method supported by a tool to address this XSS vector testing issue. The analysis on a decade releases of most popular web browsers including mobile ones shows an urgent need of XSS regression testing. We advocate the use of a shared security testing benchmark as a good practice and propose a first set of publicly available XSS vectors as a basis to ensure that security is not sacrificed when a new version is delivered.

show abstract

A Model-Based Framework for Security Policy Specification, Deployment and Testing

Cited by 68 publications

References 8 publications

A threat model‐based approach to security testing

A threat model‐based approach to security testing

Model-Driven Extraction and Analysis of Network Security Policies

Empirical Investigation of the Web Browser Attack Surface under Cross-Site Scripting: An Urgent Need for Systematic Security Regression Testing

Contact Info

Product

Resources

About