Model-based Security Testing Using UMLsec A Case Study

被引:29
|
作者
Juerjens, Jan [1 ]
机构
[1] Open Univ, Comp Dept, Milton Keynes, Bucks, England
来源
ELECTRONIC NOTES IN THEORETICAL COMPUTER SCIENCE | 2008年 / 220卷 / 01期
关键词
Model-based Testing; UML; Security; UMLsec;
D O I
10.1016/j.entcs.2008.11.008
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Designing and implementing security-critical systems correctly is very difficult. In practice, most vulnerabilities arise from bugs in implementations. We present work towards systematic specification-based testing of security-critical systems based on UMLsec models. We show how to systematically generate test sequences for security properties based on the model that can be used to test the implementation for vulnerabilities. We explain our method at the example of a part of the Common Electronic Purse Specifications (CEPS), a candidate for an international electronic purse standard.
引用
收藏
页码:93 / 104
页数:12
相关论文
共 50 条
  • [21] Model-based testing using UML activity diagrams: A systematic mapping study
    Ahmad, Tanwir
    Iqbal, Junaid
    Ashraf, Adnan
    Truscan, Dragos
    Porres, Ivan
    COMPUTER SCIENCE REVIEW, 2019, 33 : 98 - 112
  • [22] Model-Based System Testing Using Visual Contracts
    Gueldali, Baris
    Mlynarski, Michael
    Wuebbeke, Andreas
    Engels, Gregor
    2009 35TH EUROMICRO CONFERENCE ON SOFTWARE ENGINEERING AND ADVANCED APPLICATIONS, PROCEEDINGS, 2009, : 121 - 124
  • [23] Automated refinement of models for model-based testing using exploratory testing
    Ceren Şahin Gebizli
    Hasan Sözer
    Software Quality Journal, 2017, 25 : 979 - 1005
  • [24] Model-Based Mutation Testing Using Pushdown Automata
    Belli, Fevzi
    Beyazit, Mutlu
    Takagi, Tomohiko
    Furukawa, Zengo
    IEICE TRANSACTIONS ON INFORMATION AND SYSTEMS, 2012, E95D (09): : 2211 - 2218
  • [25] A Methodology to do Model-Based Testing using FMEA
    Atifi, Meriem
    Marzak, Abdelaziz
    PROCEEDINGS OF THE 2ND INTERNATIONAL CONFERENCE ON NETWORKING, INFORMATION SYSTEMS & SECURITY (NISS19), 2019,
  • [26] Automated refinement of models for model-based testing using exploratory testing
    Gebizli, Ceren Sahin
    Sozer, Hasan
    SOFTWARE QUALITY JOURNAL, 2017, 25 (03) : 979 - 1005
  • [27] Killing strategies for model-based mutation testing
    Aichernig, Bernhard K.
    Brandl, Harald
    Joebstl, Elisabeth
    Krenn, Willibald
    Schlick, Rupert
    Tiran, Stefan
    SOFTWARE TESTING VERIFICATION & RELIABILITY, 2015, 25 (08) : 716 - 748
  • [28] Model-based testing of autonomous robots using TestIt
    Kanter G.
    Vain J.
    Journal of Reliable Intelligent Environments, 2020, 6 (01) : 15 - 30
  • [29] Trust Value Assigmnent Using Model-based Testing
    Chen, Jianguo
    Chen, Xiaozhu
    Bruda, Stefan D.
    2008 THIRD INTERNATIONAL CONFERENCE ON COMMUNICATIONS AND NETWORKING IN CHINA, VOLS 1-3, 2008, : 902 - +
  • [30] Specification, verification, and quantification of security in model-based systems
    Ouchani, Samir
    Debbabi, Mourad
    COMPUTING, 2015, 97 (07) : 691 - 711
12345