Evolution of Security Requirements Tests for Service-Centric Systems
| Title | Evolution of Security Requirements Tests for Service-Centric Systems |
| Publication Type | Conference Paper |
| Year of Publication | 2011 |
| Refereed Designation | Unknown |
| Authors | Felderer, M., B. Agreiter, and R. Breu |
| Secondary Authors | Erlingsson, U., R. Wieringa, and N. Zannone |
| Conference Name | International Symposium on Engineering Secure Software and Systems |
| Date Published | 02/2011 |
| Publisher | Springer-Verlag |
| Conference Location | Madrid, Spain |
| Abstract | Security is an important quality aspect of open service-centric systems. However, it is challenging to keep such systems secure because of steady evolution. Thus, security requirements testing, considering system changes is crucial to provide a certain level of reliability in a service-centric system. In this paper, we present a model--driven method to \emph{system level security testing} of service-centric systems focusing on the aspect of requirements, system and test evolution. As requirements and the system may change over time, regular adaptations to the tests of security requirements are essential to retain, or even improve, system quality. We attach state machines to all model elements of our system- and test model to obtain consistent and traceable evolution of the system and its tests. We highlight the specifics for the evolution of security requirements, and show by a case study how changes of the attached tests are managed. |
- Login to post comments
- XML
- BibTex
- Google Scholar
