Temporal logic of programs
Design and validation of computer protocols
Design and validation of computer protocols
Test Purposes: Adapting the Notion of Specification to Testing
Proceedings of the 16th IEEE international conference on Automated software engineering
International Journal on Software Tools for Technology Transfer (STTT) - Special section on high-level test of complex systems
A formal approach for testing security rules
Proceedings of the 12th ACM symposium on Access control models and technologies
Test Generation from Security Policies Specified in Or-BAC
COMPSAC '07 Proceedings of the 31st Annual International Computer Software and Applications Conference - Volume 02
ARES '08 Proceedings of the 2008 Third International Conference on Availability, Reliability and Security
An Automated Validation Method for Security Policies: The Firewall Case
IAS '08 Proceedings of the 2008 The Fourth International Conference on Information Assurance and Security
Test generation and execution for security rules in temporal logic
ICSTW '08 Proceedings of the 2008 IEEE International Conference on Software Testing Verification and Validation Workshop
| Hi-index | 0.00 |
Security Policy specification and testing constitute two fundamental challenges in the development of secure communication systems since they can ensure that a security policy is correctly enforced. Model checking techniques can be used to do such task. Given a system modeling and a test criterion, the model checker can generate a counterexample from which test cases can be deduced. To address the previous challenges, we propose in this paper, a framework to specify a security policy and to test its implementation. This framework is characterized as follows: (1) the security policy enforcement is specified through a new modeling language, S-Promela, (2) the test criteria are expressed by the use of a temporal logic LTL and (3) the test cases are generated by a classical model checking technique.