«

»

A Model-Based Framework for Security Policy Specification, Deployment and Testing

by Tejeddine Mouelhi, Franck Fleurey, Benoit Baudry, Yves Le Traon
Abstract:
In this paper, we propose a model-driven approach for specifying, deploying and testing security policies in Java applications. First, a security policy is specified independently of the underlying access control language (OrBAC, RBAC). It is based on a generic security meta-model which can be used for early consistency checks in the security policy. This model is then automatically transformed into security policy for the XACML platform and integrated in the application using aspect-oriented programming. To qualify test cases that validate the security policy in the application, we inject faults into the policy. The fault model and the fault injection process are defined at the meta-model level, making the qualification process language-independent. Empirical results on 3 case studies explore both the feasibility of the approach and the efficiency of a full design & test MDE process.
Reference:
A Model-Based Framework for Security Policy Specification, Deployment and Testing (Tejeddine Mouelhi, Franck Fleurey, Benoit Baudry, Yves Le Traon), In Proceedings of the International Conference on Model Driven Engineering Languages and Systems (MODELS), 2008.
Bibtex Entry:
@inproceedings{Mouelhi08f,
	Abstract = {In this paper, we propose a model-driven approach for specifying,
	deploying and testing security policies in Java applications. First,
	a security policy is specified independently of the underlying access
	control language (OrBAC, RBAC). It is based on a generic security
	meta-model which can be used for early consistency checks in the
	security policy. This model is then automatically transformed into
	security policy for the XACML platform and integrated in the application
	using aspect-oriented programming. To qualify test cases that validate
	the security policy in the application, we inject faults into the
	policy. The fault model and the fault injection process are defined
	at the meta-model level, making the qualification process language-independent.
	Empirical results on 3 case studies explore both the feasibility
	of the approach and the efficiency of a full design & test MDE process.},
	Address = {Toulouse, France},
	keywords = {test, security, MDE},
	Author = {Mouelhi, Tejeddine and Fleurey, Franck and Baudry, Benoit and Le Traon, Yves},
	Booktitle = {Proceedings of the International Conference on Model Driven Engineering Languages and Systems (MODELS)},
	Month = oct,
	Title = {A Model-Based Framework for Security Policy Specification, Deployment and Testing},
	x-abbrv = {MODELS},
	X-Country = {FR},
	X-International-Audience = {yes},
	X-Language = {EN},
	X-Proceedings = {yes},
	Year = {2008},
	url = {http://www.irisa.fr/triskell/publis/2008/Mouelhi08f}}