On the effectiveness of mutation analysis as a black box testing technique

“…Rather than mutating the source code of a program, specification-based mutation analysis changes the inputs and outputs of a given executable unit. Murnane and Reed [9] illustrate that mutation testing must be verified for efficacy against more traditional black box techniques which employ this technique, such as boundary value and equivalence class partitioning. The authors completed test suites for a data-vetting and a statistical analysis program using equivalence class and boundary value analysis testing techniques.…”

An Empirical Evaluation of the MuJava Mutation Operators

“…Rather than mutating the source code of a program, specification-based mutation analysis changes the inputs and outputs of a given executable unit. Murnane and Reed [9] illustrate that mutation testing must be verified for efficacy against more traditional black box techniques which employ this technique, such as boundary value and equivalence class partitioning. The authors completed test suites for a data-vetting and a statistical analysis program using equivalence class and boundary value analysis testing techniques.…”

An Empirical Evaluation of the MuJava Mutation Operators

“…Mutation testing can be thought of as "testing the test suite." Mutation analysis additionally entails adding or modifying test cases until the test suite is sufficient to detect as many mutants as possible (Murnane, et al, 2001). The augmented test suite resulting from mutation analysis may reveal latent faults and provides a stronger test suite to detect future errors which might be injected.…”

On guiding the augmentation of an automated test suite via mutation analysis

“…White box techniques are testing techniques, which use knowledge about the internal composition of a system for the test case definition. [8] Equivalence Class Testing. The equivalence class testing technique implies, that the input domain of a system is partitioned into a finte number of sets, called equivalence classes, such that the systems behavior to a test of a representative value, called test case, of one equivalence class is equal to the systems behavior to a test of any other value of the same equivalence class.…”

“…As discussed by Hu and Ahn in [7] a system is under-constrained if, based on the security model, undesired system states are granted and over-constrained if desired system states are denied, which probably causes availability problems. Murnane and Reed argument in [8].…”

A Formal Equivalence Classes Based Method for Security Policy Conformance Checking