Author_Institution :
Scholl of Mechatronical Eng., Beijing Inst. of Technol., Beijing, China
Abstract :
Notice of Violation of IEEE Publication Principles
"A Scenario-Based Test Case Generation Framework for Security Policies"
by Chen Yan and Wu Dan
International Conference on Computational Intelligence and Security, 2009. CIS \´09 December 2009, pp. 489-493
After careful and considered review of the content and authorship of this paper by a duly constituted expert committee, this paper has been found to be in violation of IEEE\´s Publication Principles.
This paper contains significant portions of original text from the paper cited below. The original text was copied without attribution (including appropriate references to the original author(s) and/or paper title) and without permission.
Due to the nature of this violation, reasonable effort should be made to remove all past references to this paper, and future references should be made to the following article:
"Model-based Testing Using Scenarios and Event-B Refinements"
by Qaisar A. Malik, Johan Lilius and Linas Laibinis
Methods, Models and Tools for Fault-Tolerance, Lecture Notes in Computer Science series, Springer, March 2009, pp. 177-195
Security policy system is critical to the security sensitive implementation systems. To increase confidence in the correctness of the security policies, policy developers can conduct policy testing to ensure security policies are correctly implemented in these systems. In this paper we present a novel framework for security policy testing. The framework takes the security policy as a support for the secure operation of the functional systems and seizes the dynamic characteristic of the security policies which change with the refinement of functional systems. The testing framework is model based and includes three parts. They are security policy integration; refinement based testing scenario acquisition and risk-based testing organization. The framework covers all elements for the model-based testing and provides a comprehen- sive solution for the security policy testing.
Keywords :
program testing; program verification; security of data; functional systems; refinement based testing scenario acquisition; risk-based testing organization; scenario-based test case generation framework; security policy integration; security policy system; security policy testing; Access control; Application software; Automatic testing; Computational intelligence; Computer aided software engineering; Security; Software engineering; Software testing; System testing; scenario; security policy; testing;
