Testing Obligation Policy Enforcement Using Mutation Analysis
Testing Obligation Policy Enforcement Using Mutation Analysis
The support of obligations with access control policies allows the expression of more sophisticated requirements such as usage control, availability and privacy. In order to enable the use of these policies, it is crucial to ensure their correct enforcement and management in the system. For this reason, this paper introduces a set of mutation operators for obligation policies. The paper first identifies key elements in obligation policy management, then presents mutation operators which injects minimal errors which affect these aspects. Test cases are qualified w.r.t. their ability in detecting problems, simulated by mutation, in the interactions between policy management and the application code. The use of policy mutants as substitutes for real flaws enables a first investigation of testing obligation policies in a system. We validate our work by providing an implementation of the mutation process: the experiments conducted on a Java program provide insights for improving test selection.
- University of Luxembourg Luxembourg
Mutation process, : Computer science [C05] [Engineering, computing & technology], Access control policies, Minimal errors, Java programming language, Mutation operators, Policy enforcement, Usage control, : Sciences informatiques [C05] [Ingénierie, informatique & technologie], Software testing, Mutation analysis, Policy management, Access control, Application codes, Test selection, Test case, Key elements, Java program
Mutation process, : Computer science [C05] [Engineering, computing & technology], Access control policies, Minimal errors, Java programming language, Mutation operators, Policy enforcement, Usage control, : Sciences informatiques [C05] [Ingénierie, informatique & technologie], Software testing, Mutation analysis, Policy management, Access control, Application codes, Test selection, Test case, Key elements, Java program
selected citations These citations are derived from selected sources.This is an alternative to the "Influence" indicator, which also reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).14 popularity This indicator reflects the "current" impact/attention (the "hype") of an article in the research community at large, based on the underlying citation network.Average influence This indicator reflects the overall/total impact of an article in the research community at large, based on the underlying citation network (diachronically).Top 10% impulse This indicator reflects the initial momentum of an article directly after its publication, based on the underlying citation network.Top 10%
Citations provided by BIP!Popularity provided by BIP!