"International Journal of Security and its Applications" by Izzat M. Alsmadi

Computer Science Faculty Publications

Title

Approaches for Testing and Evaluation of XACML Policies

Authors

Izzat M. Alsmadi, Texas A&M University-San AntonioFollow

Document Type

Article

Publication Date

2014

Abstract

Security services are provided through: The applications, operating systems, databases, and the network. There are many proposals to use policies to define, implement and evaluate security services. We discussed a full test automation framework to test XACML based policies. Using policies as input the developed tool can generate test cases based on the policy and the general XACML model. We evaluated a large dataset of policy implementations. The collection includes more than 200 test cases that represent instances of policies. Policies are executed and verified, using requests and responses generated for each instance of policies. WSO2 platform is used to perform different testing activities on evaluated policies.

Digital Object Identifier (DOI)

10.14257/ijsia.2014.8.4.10

Volume

Issue

Comments

Original published version available at Alsmadi I.M. "Approaches for Testing and Evaluation of XACML Policies," International Journal of Security and its Applications, vol. 8, pp. 101-112, 2014.

Repository Citation

Alsmadi, Izzat M., "Approaches for Testing and Evaluation of XACML Policies" (2014). Computer Science Faculty Publications. 4.
https://digitalcommons.tamusa.edu/computer_faculty/4

Download

Included in

Computer Sciences Commons

COinS