Title :
Security Rules Specification and Analysis Based on Passive Testing
Author :
Mallouli, Wissam ; Bessayah, Fayçal ; Cavalli, Ana ; Benameur, Azzedine
Abstract :
Security is a critical issue in dynamic and open distributed environments such as network-based services or wireless networks. To ensure that a certain level of security is maintained in such environments, the system behavior has to be restrained by a security policy in order to regulate the nature and the context of actions that can be performed within the system, according to specific roles. In this paper, we propose a passive testing approach that permits to check whether a system respects its security policy. To reach this goal, we specify this policy using ´Nomad´ formal language which is based on deontic and temporal logics. This language is well adapted to passive testing methods that aim to analyze collected system execution traces in order to give a verdict about their conformity with to the system security requirements. Finally, we apply our methodology to an industrial case study provided by SAP group to demonstrate its reliability.
Keywords :
formal languages; formal specification; program testing; security of data; systems analysis; temporal logic; ´Nomad´ formal language; deontic logics; network-based services; passive testing; security rules analysis; security rules specification; temporal logics; wireless networks; Automatic testing; Data security; Formal languages; Formal specifications; Information security; Logic testing; Monitoring; System testing; Telecommunications; Wireless networks;
Conference_Titel :
Global Telecommunications Conference, 2008. IEEE GLOBECOM 2008. IEEE
Conference_Location :
New Orleans, LO
Print_ISBN :
978-1-4244-2324-8
DOI :
10.1109/GLOCOM.2008.ECP.400
