Testing of security policies is a critical activity and mutation analysis is an effective approach for measuring the adequacy of a test suite. In this paper, we propose a set of mutation operators addressing specific faults of the XACML 2.0 access control policy and a tool, called XACMUT (XACml MUTation) for creating mutants. The tool generates the set of mutants, provides facilities to run a given test suite on the mutants set and computes the test suite effectiveness in terms of mutation score. The tool includes and enhances the mutation operators of existing security policy mutation approaches.
XACMUT: XACML 2.0 Mutants generator
Bertolino A;Daoudagh S;Lonetti F;Marchetti E
2013
Abstract
Testing of security policies is a critical activity and mutation analysis is an effective approach for measuring the adequacy of a test suite. In this paper, we propose a set of mutation operators addressing specific faults of the XACML 2.0 access control policy and a tool, called XACMUT (XACml MUTation) for creating mutants. The tool generates the set of mutants, provides facilities to run a given test suite on the mutants set and computes the test suite effectiveness in terms of mutation score. The tool includes and enhances the mutation operators of existing security policy mutation approaches.File in questo prodotto:
| File | Dimensione | Formato | |
|---|---|---|---|
|
prod_277665-doc_78245.pdf
solo utenti autorizzati
Descrizione: XACMUT: XACML 2.0 Mutants Generator
Tipologia:
Versione Editoriale (PDF)
Dimensione
245.53 kB
Formato
Adobe PDF
|
245.53 kB | Adobe PDF | Visualizza/Apri Richiedi una copia |
I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
