Automated testing of eXtensible Access Control Markup Language‐based access control systems.
Saved in:
| Title: | Automated testing of eXtensible Access Control Markup Language‐based access control systems. |
|---|---|
| Authors: | Bertolino, Antonia1 (AUTHOR), Daoudagh, Said1 (AUTHOR), Lonetti, Francesca1 (AUTHOR) francesca.lonetti@isti.cnr.it, Marchetti, Eda1 (AUTHOR), Schilders, Louis2 (AUTHOR) |
| Source: | IET Software (Wiley-Blackwell). Aug2013, Vol. 7 Issue 4, p203-212. 10p. |
| Abstract: | The trustworthiness of sensitive data needs to be guaranteed and testing is a common activity among privacy protection solutions, even if quite expensive. Accesses to data and resources are ruled by the policy decision point (PDP), which relies on the eXtensible Access Control Markup Language (XACML) standard language for specifying access rights. In this study, the authors propose a testing strategy for automatically deriving test requests from a XACML policy and describe their pilot experience in test automation using this strategy. Considering a real two‐level PDP implemented for health data security, the authors compare the effectiveness of the test plan automatically derived with the one derived by a standard manual testing process. [ABSTRACT FROM AUTHOR] |
| Copyright of IET Software (Wiley-Blackwell) is the property of Wiley-Blackwell and its content may not be copied or emailed to multiple sites without the copyright holder's express written permission. Additionally, content may not be used with any artificial intelligence tools or machine learning technologies. However, users may print, download, or email articles for individual use. This abstract may be abridged. No warranty is given about the accuracy of the copy. Users should refer to the original published version of the material for the full abstract. (Copyright applies to all Abstracts.) | |
| Database: | Engineering Source |
Be the first to leave a comment!
