Paper published in a book (Scientific congresses, symposiums and conference proceedings)
MCP: A Security Testing Tool Driven by Requirements
Mai, Xuan Phu; Pastore, Fabrizio; Goknil, Arda et al.
2019In 2019 IEEE/ACM 41st International Conference on Software Engineering
Peer reviewed
 

Files


Full Text
MCP-ICSE-Demo-2019.pdf
Author postprint (568.62 kB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Keywords :
System Security Testing; Natural Language Requirements; Natural Language Processing (NLP)
Abstract :
[en] We present MCP, a tool for automatically generating executable security test cases from misuse case specifications in natural language (i.e., use case specifications capturing the behavior of malicious users). MCP relies on Natural Language Processing (NLP), a restricted form of misuse case specifications, and a test driver API implementing basic utility functions for security testing. NLP is used to identify the activities performed by the malicious user and the control flow of misuse case specifications. MCP matches the malicious user’s activities to the methods of the provided test driver API in order to generate executable security test cases that perform the activities described in the misuse case specifications. MCP has been successfully evaluated on an industrial case study.
Research center :
Interdisciplinary Centre for Security, Reliability and Trust (SnT) > SVV - Software Verification and Validation
Disciplines :
Computer science
Author, co-author :
Mai, Xuan Phu ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Pastore, Fabrizio  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
Goknil, Arda
Briand, Lionel ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
External co-authors :
no
Language :
English
Title :
MCP: A Security Testing Tool Driven by Requirements
Publication date :
May 2019
Event name :
International Conference on Software Engineering
Event organizer :
IEEE/ACM
Event place :
Montreal, Canada
Event date :
from 25-05-2019 to 31-05-2019
Main work title :
2019 IEEE/ACM 41st International Conference on Software Engineering
Publisher :
IEEE, United States
Peer reviewed :
Peer reviewed
Focus Area :
Security, Reliability and Trust
European Projects :
H2020 - 694277 - TUNE - Testing the Untestable: Model Testing of Complex Software-Intensive Systems
FnR Project :
FNR11213850 - Enhanced Daily Living And Health 2 – An Incentive Based Service, 2015 (01/06/2016-30/11/2018) - Lionel Briand
Funders :
CE - Commission Européenne [BE]
Union Européenne [BE]
Available on ORBilu :
since 03 June 2019

Statistics


Number of views
256 (39 by Unilu)
Number of downloads
226 (7 by Unilu)

Scopus citations®
 
10
Scopus citations®
without self-citations
4
OpenCitations
 
6
WoS citations
 
6

Bibliography


Similar publications



Contact ORBilu