Reference : Model-based security verification and testing for smart-cards
Scientific congresses, symposiums and conference proceedings : Paper published in a journal
Engineering, computing & technology : Computer science
http://hdl.handle.net/10993/9795
Model-based security verification and testing for smart-cards
English
Fourneret, Elizabeta mailto [LIFC, Univ. de Franche-Comte, Besançon, France]
Ochoa, Martìn [Tech. Univ. Dortmund, Dortmund, Germany]
Bouquet, Fabrice [LIFC, Univ. de Franche-Comte, Besançon, France]
Botella, Julien [Smartesting Company, Temis, Besançon]
Jurjens, Jan [Tech. Univ. Dortmund, Dortmund, Germany]
Parvaneh, Yousefi [Tech. Univ. Dortmund, Dortmund, Germany]
2011
Proceedings of 6th International Conference on Availability, Reliability and Security (ARES 2011)
IEEE Computer Society
272-279
Yes
International
6th International Conference on Availability, Reliability and Security
from 20-08-2011 to 24-08-2011
[en] Global Platform ; Model-Based Testing ; Model-Based Testing from schemas ; UML/OCL statechart ; Verification ; smart-cards
[en] Model-Based Testing (MBT) is a widely used methodology for generating tests aiming to ensure that the system behaviour conforms to its specification. Recently, it has been successfully applied for testing certain security properties. However, for the success of this approach, it is an important prerequisite to consider the correctness of test models with respect to the given security property. In this paper we present an approach for smart-card specific security properties that permits to validate the system with MBT from test schemas. We combine this MBT approach with UMLsec security verification technique, by using UMLsec stereotypes to verify the model w.r.t. given security properties and gain more confidence in the model. We then define an automatic procedure to generate security test from the UMLsec model via so-called "test schemas". We validate this approach on a fragment of the Global Platform specification and report on available tool support.
http://hdl.handle.net/10993/9795
10.1109/ARES.2011.46
http://ieeexplore.ieee.org/xpl/articleDetails.jsp?tp=&arnumber=6045950&contentType=Conference+Publications&searchWithin%3Dp_Authors%3A.QT.Jurjens%2C+J..QT.%26sortType%3Ddesc_p_Publication_Year

File(s) associated to this reference

Fulltext file(s):

FileCommentaryVersionSizeAccess
Limited access
Fourneret_ARES2011.pdfAuthor postprint637.73 kBRequest a copy

Bookmark and Share SFX Query

All documents in ORBilu are protected by a user license.