Model-based Security Testing Using UMLsec | Zendy

Jan Jürjens | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Model-based Security Testing Using UMLsec

Author(s) -

Jan Jürjens

Publication year - 2008

Publication title -

electronic notes in theoretical computer science

Language(s) - English

Resource type - Journals

SCImago Journal Rank - 0.242

H-Index - 60

ISSN - 1571-0661

DOI - 10.1016/j.entcs.2008.11.008

Subject(s) - computer science , security testing , implementation , computer security model , model based testing , security bug , test (biology) , computer security , software security assurance , software engineering , test case , information security , security service , cloud computing security , security information and event management , operating system , cloud computing , paleontology , regression analysis , machine learning , biology

Designing and implementing security-critical systems correctly is very difficult. In practice, most vulnerabilities arise from bugs in implementations. We present work towards systematic specification-based testing of security-critical systems based on UMLsec models. We show how to systematically generate test sequences for security properties based on the model that can be used to test the implementation for vulnerabilities. We explain our method at the example of a part of the Common Electronic Purse Specifications (CEPS), a candidate for an international electronic purse standard

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research