Security testing by Telling TestStories

Security testing is very important to assure a certain level of reliability in a system. On the system level, security testing has to guarantee that security requirements such as confidentiality, integrity, authentication, authorization, availability and non-repudiation hold. In this paper, we present an approach to system level security testing of service oriented systems that evaluates security requirements. Our approach is based on the Telling TestStories methodology for model-driven system testing. After the elicitation of security requirements, we define a system and a test model. The test model is then transformed to executable test code. We show how traceability between all artifacts can be established and how the tests can be executed focusing on security relevant aspects. All steps are explained based on an industrial case study.

Felderer, Michael; Agreiter, Berthold; Breu, Ruth; Armenteros, Alvaro (2010): Security testing by Telling TestStories. Modellierung 2010. Bonn: Gesellschaft für Informatik e.V.. PISSN: 1617-5468. ISBN: 978-3-88579-255-0. pp. 195-202. Regular Research Papers. Klagenfurt. 24.-26. März 2010

Sammlungen

P161 - Modellierung 2010
Modellierung 2010 (LNI P161)

Komplettanzeige

Security testing by Telling TestStories

Volltext URI

Dokumententyp

Dateien

Datum

Autor:innen

Zeitschriftentitel

ISSN der Zeitschrift

Bandtitel

Quelle

Verlag

Zusammenfassung

Beschreibung

Schlagwörter

Zitierform

DOI

Tags

Sammlungen