Inroads in Testing Access Control

Mouelhi, Tejeddine; Kateb, Donia El; Traon, Yves Le

doi:10.1016/bs.adcom.2015.04.003

Cited by 8 publications

(2 citation statements)

References 33 publications

(46 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For instance, considering the policy of Figure For instance, considering the policy of Figure 3, the Rule Effect of RuleA is equal to Permit (see line 19).…”

Section: Coverage Criteriamentioning

confidence: 99%

“…Finally, concerning the adoption of monitoring facilities for coverage assessment, the work in [3] represents a preliminary attempt of an infrastructure for enabling coverage criterion selection and policy coverage assessment analysis. Several general‐purpose monitoring proposals are currently available, which can be mainly divided into two groups: those that are embedded in the execution engine such as [20, 23] and those that can be integrated into the execution framework as an additional component such as for instance [24]. Among the additional monitor facility in this paper, we refer to the monitoring framework called Glimpse [9], which is extremely flexible and adaptable to various scenarios and service oriented architecture (SOA) architecture patterns.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

On‐line tracing of XACML‐based policy coverage criteria

Lonetti

Marchetti

2018

IET softw.

View full text Add to dashboard Cite

Currently, XACML has becoming the standard for implementing access control policies and consequently more attention is dedicated to testing the correctness of XACML policies. In particular, coverage measures can be adopted for assessing test strategy effectiveness in exercising the policy elements. This paper introduces a set of XACML coverage criteria and describes the access control infrastructure, based on a monitor engine, enabling the coverage criterion selection and the on-line tracing of the testing activity. Examples of infrastructure usage and of assessment of different test strategies are provided.

show abstract

“…For instance, considering the policy of Figure For instance, considering the policy of Figure 3, the Rule Effect of RuleA is equal to Permit (see line 19).…”

Section: Coverage Criteriamentioning

confidence: 99%