coverage criterion; test selection; XACML based access control systems; Access control policies; Coverage criteria; Critical tasks; De facto standard; Mutation analysis; Mutation score; XACML policies
Abstract :
[en] XACML is the de facto standard for implementing access control policies. Testing the correctness of policies is a critical task. The test of XACML policies involves running requests and checking manually the correct response. It is therefore important to reduce the manual test effort by automatically selecting the most important requests to be tested. This paper introduces the XACML smart coverage selection approach, based on a proposed XACML policy coverage criterion. The approach is evaluated using mutation analysis and is compared on the one side with a not-reduced test suite, on the other with random and greedy optimal test selection approaches. We performed the evaluation on a set of six real world policies. The results show that our selection approach can reach good mutation scores, while significantly reducing the number of tests to be run.
Disciplines :
Computer science
Author, co-author :
Bertolino, Antonia; CNR, Ist Sci & Tecnol Informaz A Faedo, I-56100 Pisa, Italy.
Le Traon, Yves ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
Lonetti, Francesca; CNR, Ist Sci & Tecnol Informaz A Faedo, I-56100 Pisa, Italy.
Marchetti, Eda; CNR, Ist Sci & Tecnol Informaz A Faedo, I-56100 Pisa, Italy.
