Access Control Testing

Access Control Testing

Access control is one of the most significant security techniques. It controls which users or processes have access to which resources in a system.

QATestLab focuses on access control testing because assuring the accuracy of policy specifications is becoming a significant and yet challenging task, especially as access control policies become more difficult and are used to manage a large amount of sensitive data.

Detecting differences between policy specifications and their intended function is a key point because proper execution and enforcement of policies by applications is based on the premise that the policy specifications are correct.

In such a way, policy specifications must undergo strict verification and validation through systematic testing to assure the policy specifications truly encapsulate the desires of the policy authors.

Software testing aims at efficiently identifying and fixing defects in software through dynamic implementation.

Defects in policy specifications may also be found by leveraging existing techniques for software testing and applying them to policy testing.

Mutation testing has historically been applied to general purpose programming languages in measuring the quality of a test suite.

Knowledge Center

*- required fields