TY - GEN
T1 - MCP
T2 - 41st IEEE/ACM International Conference on Software Engineering: Companion, ICSE-Companion 2019
AU - Mai, Phu X.
AU - Pastore, Fabrizio
AU - Goknil, Arda
AU - Briand, Lionel C.
N1 - Publisher Copyright:
© 2019 IEEE.
PY - 2019/5
Y1 - 2019/5
N2 - We present MCP, a tool for automatically generating executable security test cases from misuse case specifications in natural language (i.e., use case specifications capturing the behavior of malicious users). MCP relies on Natural Language Processing (NLP), a restricted form of misuse case specifications, and a test driver API implementing basic utility functions for security testing. NLP is used to identify the activities performed by the malicious user and the control flow of misuse case specifications. MCP matches the malicious user's activities to the methods of the provided test driver API in order to generate executable security test cases that perform the activities described in the misuse case specifications. MCP has been successfully evaluated on an industrial case study.
AB - We present MCP, a tool for automatically generating executable security test cases from misuse case specifications in natural language (i.e., use case specifications capturing the behavior of malicious users). MCP relies on Natural Language Processing (NLP), a restricted form of misuse case specifications, and a test driver API implementing basic utility functions for security testing. NLP is used to identify the activities performed by the malicious user and the control flow of misuse case specifications. MCP matches the malicious user's activities to the methods of the provided test driver API in order to generate executable security test cases that perform the activities described in the misuse case specifications. MCP has been successfully evaluated on an industrial case study.
KW - Natural Language Processing
KW - Natural Language Requirements
KW - System Security Testing
UR - http://www.scopus.com/inward/record.url?scp=85071886927&partnerID=8YFLogxK
U2 - 10.1109/ICSE-Companion.2019.00037
DO - 10.1109/ICSE-Companion.2019.00037
M3 - Conference contribution
AN - SCOPUS:85071886927
T3 - Proceedings - 2019 IEEE/ACM 41st International Conference on Software Engineering: Companion, ICSE-Companion 2019
SP - 55
EP - 58
BT - Proceedings - 2019 IEEE/ACM 41st International Conference on Software Engineering
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 25 May 2019 through 31 May 2019
ER -