• DocumentCode
    1901202
  • Title

    Selection of regression system tests for security policy evolution

  • Author

    Jeehyun Hwang ; Tao Xie ; El Kateb, Donia ; Mouelhi, Tejeddine ; Le Traon, Yves

  • Author_Institution
    Dept. of Comput. Sci., North Carolina State Univ., Raleigh, NC, USA
  • fYear
    2012
  • fDate
    3-7 Sept. 2012
  • Firstpage
    266
  • Lastpage
    269
  • Abstract
    As security requirements of software often change, developers may modify security policies such as access control policies (policies in short) according to evolving requirements. To increase confidence that the modification of policies is correct, developers conduct regression testing. However, rerunning all of existing system test cases could be costly and time-consuming. To address this issue, we develop a regression-test-selection approach, which selects every system test case that may reveal regression faults caused by policy changes. Our evaluation results show that our test-selection approach reduces a substantial number of system test cases efficiently.
  • Keywords
    authorisation; regression analysis; statistical testing; access control policy; policy modification; regression fault; regression system test; regression-test-selection approach; security policy evolution; software security requirement; Regression Testing; Security Policy; Test Selection;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Automated Software Engineering (ASE), 2012 Proceedings of the 27th IEEE/ACM International Conference on
  • Conference_Location
    Essen
  • Print_ISBN
    978-1-4503-1204-2
  • Type

    conf

  • DOI
    10.1145/2351676.2351719
  • Filename
    6494932
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1901202