Hier finden Sie wissenschaftliche Publikationen aus den Fraunhofer-Instituten.

Model-based security testing

: Schieferdecker, Ina; Großmann, Jürgen; Schneider, Martin

Fulltext (PDF; )

Petrenko, Alexandre (Hrsg.); Schlingloff, Holger (Hrsg.):
7th Workshop on Model-Based Testing, MBT 2012. Proceedings. Online resource : Held on 25 March, 2012 in Tallinn, Estonia, as a satellite event of the European Joint Conferences on Theory and Practice of Software, ETAPS 2012
Tallinn, 2012 (Electronic Proceedings in Theoretical Computer Science (EPCTS) 80)
DOI: 10.4204/EPTCS.80
Workshop on Model-Based Testing (MBT) <7, 2012, Tallinn>
European Joint Conferences on Theory and Practice of Software (ETAPS) <15, 2012, Tallinn>
Conference Paper, Electronic Publication
Fraunhofer FOKUS ()

Security testing aims at validating software system requirements related to security properties like confidentiality, integrity, authentication, authorization, availability, and non-repudiation. Although security testing techniques are available for many years, there has been little approaches that allow for specification of test cases at a higher level of abstraction, for enabling guidance on test identification and specification as well as for automated test generation.
Model-based security testing (MBST) is a relatively new field and especially dedicated to the systematic and efficient specification and documentation of security test objectives, security test cases and test suites, as well as to their automated or semi-automated generation. In particular, the combination of security modelling and test generation approaches is still a challenge in research and of high interest for industrial applications. MBST includes e.g. security functional testing, model-based fuzzing, risk- and threat-oriented testing, and the usage of security test patterns. This paper provides a survey on MBST techniques and the related models as well as samples of new methods and tools that are under development in the European ITEA2-project DIAMONDS.