安全规则互操作性测试的形式化方法

2010 Sixth International Conference on Signal-Image Technology and Internet Based Systems Pub Date : 2010-12-15 DOI:10.1109/SITIS.2010.53

Mazen El Maarabani, Iksoon Hwang, A. Cavalli

{"title":"安全规则互操作性测试的形式化方法","authors":"Mazen El Maarabani, Iksoon Hwang, A. Cavalli","doi":"10.1109/SITIS.2010.53","DOIUrl":null,"url":null,"abstract":"The interaction between business communities becomes a crucial requirement due to the need of exchanging and sharing resources and services. In general, each system defines its own security policy to manage access control to its resources. In this case, we may have security interoperability problems due to the variety and complexity of secured systems implementations. In this paper, we provide a formal approach for interoperability testing of security rules. First we propose a method to integrate interoperability security rules in a functional model represented by an extended finite automata. Then, test cases are generated from the obtained secured functional model by using an automatic test generation tool, Test Gen-IF. As an application, we provide a case study of security interoperability between two hospitals that share some resources.","PeriodicalId":128396,"journal":{"name":"2010 Sixth International Conference on Signal-Image Technology and Internet Based Systems","volume":"55 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-12-15","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"A Formal Approach for Interoperability Testing of Security Rules\",\"authors\":\"Mazen El Maarabani, Iksoon Hwang, A. Cavalli\",\"doi\":\"10.1109/SITIS.2010.53\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The interaction between business communities becomes a crucial requirement due to the need of exchanging and sharing resources and services. In general, each system defines its own security policy to manage access control to its resources. In this case, we may have security interoperability problems due to the variety and complexity of secured systems implementations. In this paper, we provide a formal approach for interoperability testing of security rules. First we propose a method to integrate interoperability security rules in a functional model represented by an extended finite automata. Then, test cases are generated from the obtained secured functional model by using an automatic test generation tool, Test Gen-IF. As an application, we provide a case study of security interoperability between two hospitals that share some resources.\",\"PeriodicalId\":128396,\"journal\":{\"name\":\"2010 Sixth International Conference on Signal-Image Technology and Internet Based Systems\",\"volume\":\"55 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-12-15\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2010 Sixth International Conference on Signal-Image Technology and Internet Based Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/SITIS.2010.53\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2010 Sixth International Conference on Signal-Image Technology and Internet Based Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/SITIS.2010.53","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 9

摘要

由于需要交换和共享资源和服务，商业社区之间的互动成为一项至关重要的要求。通常，每个系统定义自己的安全策略来管理对其资源的访问控制。在这种情况下，由于安全系统实现的多样性和复杂性，我们可能会遇到安全互操作性问题。在本文中，我们为安全规则的互操作性测试提供了一种正式的方法。首先，我们提出了一种将互操作性安全规则集成到由扩展有限自动机表示的功能模型中的方法。然后，通过使用自动测试生成工具test Gen-IF，从获得的安全功能模型生成测试用例。作为一个应用程序，我们提供了共享某些资源的两家医院之间安全互操作性的案例研究。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A Formal Approach for Interoperability Testing of Security Rules

The interaction between business communities becomes a crucial requirement due to the need of exchanging and sharing resources and services. In general, each system defines its own security policy to manage access control to its resources. In this case, we may have security interoperability problems due to the variety and complexity of secured systems implementations. In this paper, we provide a formal approach for interoperability testing of security rules. First we propose a method to integrate interoperability security rules in a functional model represented by an extended finite automata. Then, test cases are generated from the obtained secured functional model by using an automatic test generation tool, Test Gen-IF. As an application, we provide a case study of security interoperability between two hospitals that share some resources.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2010 Sixth International Conference on Signal-Image Technology and Internet Based Systems

自引率

0.00%

发文量