Defining and measuring policy coverage in testing access control policies

Authors:
Evan Martin;Tao Xie;Ting Yu
Affiliations:
Department of Computer Science, North Carolina State University, Raleigh, NC;Department of Computer Science, North Carolina State University, Raleigh, NC;Department of Computer Science, North Carolina State University, Raleigh, NC
Venue:
ICICS'06 Proceedings of the 8th international conference on Information and Communications Security
Year:
2006

Citing 31
Cited 10

PIE: A Dynamic Failure-Based Technique

IEEE Transactions on Software Engineering
Estimation and Enhancement of Real-Time Software Reliability Through Mutation Analysis

IEEE Transactions on Computers - Special issue on fault-tolerant computing
A methodology for controlling the size of a test suite

ACM Transactions on Software Engineering and Methodology (TOSEM)
A unified framework for enforcing multiple access control policies

SIGMOD '97 Proceedings of the 1997 ACM SIGMOD international conference on Management of data
Software unit test coverage and adequacy

ACM Computing Surveys (CSUR)
The ARBAC97 model for role-based administration of roles

ACM Transactions on Information and System Security (TISSEC) - Special issue on role-based access control
Structural specification-based testing: automated support and experimental evaluation

ESEC/FSE-7 Proceedings of the 7th European software engineering conference held jointly with the 7th ACM SIGSOFT international symposium on Foundations of software engineering
An authorization mechanism for a relational database system

ACM Transactions on Database Systems (TODS)
Conflicts in Policy-Based Distributed Systems Management

IEEE Transactions on Software Engineering
XML document security based on provisional authorization

Proceedings of the 7th ACM conference on Computer and communications security
A modular approach to composing access control policies

Proceedings of the 7th ACM conference on Computer and communications security
On specifying security policies for web documents with an XML-based language

SACMAT '01 Proceedings of the sixth ACM symposium on Access control models and technologies
A micromodularity mechanism

Proceedings of the 8th European software engineering conference held jointly with 9th ACM SIGSOFT international symposium on Foundations of software engineering
An access control language for web services

SACMAT '02 Proceedings of the seventh ACM symposium on Access control models and technologies
Art of Software Testing

Art of Software Testing
The Ponder Policy Specification Language

POLICY '01 Proceedings of the International Workshop on Policies for Distributed Systems and Networks
A Logical Framework for Reasoning on Data Access Control Policies

CSFW '99 Proceedings of the 12th IEEE workshop on Computer Security Foundations
Policy resolution for workflow management systems

HICSS '95 Proceedings of the 28th Hawaii International Conference on System Sciences
An Empirical Study of the Effects of Minimization on the Fault Detection Capabilities of Test Suites

ICSM '98 Proceedings of the International Conference on Software Maintenance
A Logical Language for Expressing Authorizations

SP '97 Proceedings of the 1997 IEEE Symposium on Security and Privacy
Policy management using access control spaces

ACM Transactions on Information and System Security (TISSEC)
A family of test adequacy criteria for database-driven applications

Proceedings of the 9th European software engineering conference held jointly with 11th ACM SIGSOFT international symposium on Foundations of software engineering
An XACML-based Policy Management and Authorization Service for Globus Resources

GRID '03 Proceedings of the 4th International Workshop on Grid Computing
Synthesising verified access control systems in XACML

Proceedings of the 2004 ACM workshop on Formal methods in security engineering
Using an SQL coverage measurement for testing database applications

Proceedings of the 12th ACM SIGSOFT twelfth international symposium on Foundations of software engineering
Verification and change-impact analysis of access-control policies

Proceedings of the 27th international conference on Software engineering
An analysis of rule coverage as a criterion in generating minimal test suites for grammar-based software

Proceedings of the 20th IEEE/ACM international Conference on Automated software engineering
Hints on Test Data Selection: Help for the Practicing Programmer

Computer
Approximation algorithms for combinatorial problems

Journal of Computer and System Sciences
A security policy model for clinical information systems

SP'96 Proceedings of the 1996 IEEE conference on Security and privacy
Evaluating access control policies through model checking

ISC'05 Proceedings of the 8th international conference on Information Security

A fault model and mutation testing of access control policies

Proceedings of the 16th international conference on World Wide Web
Testing and Analysis of Access Control Policies

ICSE COMPANION '07 Companion to the proceedings of the 29th International Conference on Software Engineering
Automated Test Generation for Access Control Policies via Change-Impact Analysis

SESS '07 Proceedings of the Third International Workshop on Software Engineering for Secure Systems
Xengine: a fast and scalable XACML policy evaluation engine

SIGMETRICS '08 Proceedings of the 2008 ACM SIGMETRICS international conference on Measurement and modeling of computer systems
Multiple-implementation testing for XACML implementations

TAV-WEB '08 Proceedings of the 2008 workshop on Testing, analysis, and verification of web services and applications
Security policy testing via automated program code generation

Proceedings of the 5th Annual Workshop on Cyber Security and Information Intelligence Research: Cyber Security and Information Intelligence Challenges and Strategies
XACML policy performance evaluation using a flexible load testing framework

Proceedings of the 17th ACM conference on Computer and communications security
Linguistic security testing for text communication protocols

TAIC PART'10 Proceedings of the 5th international academic and industrial conference on Testing - practice and research techniques
Refactoring access control policies for performance improvement

ICPE '12 Proceedings of the 3rd ACM/SPEC International Conference on Performance Engineering
A model-based approach to automated testing of access control policies

Proceedings of the 17th ACM symposium on Access Control Models and Technologies

Quantified Score

Hi-index	0.00

Visualization

Abstract

To facilitate managing access control in a system, security officers increasingly write access control policies in specification languages such as XACML, and use a dedicated software component called a Policy Decision Point (PDP). To increase confidence on written policies, certain types of policy testing (often in an ad hoc way) are usually conducted, which probe the PDP with some typical requests and check PDP's responses against expected ones. This paper develops a first step toward systematic policy testing by defining and measuring policy coverage when testing policies. We have developed a coverage-measurement tool to measure policy coverage given a set of XACML policies and a set of requests. We have developed a tool for request generation, which randomly generates requests for a given set of policies, and a tool for request reduction, which greedily selects a nearly minimal set of requests for achieving the same coverage as the originally generated requests. To evaluate coverage-based request reduction and its effect on fault detection, we have conducted an experiment with mutation testing on a set of real policies. Our experimental results show that the coveragebased test reduction can substantially reduce the size of generated requests and incur only relatively low loss on fault detection. We also conduct a study on the policy coverage achieved by manually generated requests.