Cloud federation is an emergent cloud-computing paradigm where partner organisations
share data and services hosted on their own cloud platforms. In this context, it is crucial to …

Software testing encompasses a variety of activities along the software development
process and may consume a large part of the effort required for producing software. It …

Access control systems are widely used means for the protection of computing systems.
They are defined in terms of access control policies regulating the access to system …

The trustworthiness of sensitive data needs to be guaranteed and testing is a common
activity among privacy protection solutions, even if quite expensive. Accesses to data and …

Attribute-based access control (ABAC) with obligations is a new technique for achieving fine-
grained access control and accountability. An obligatory ABAC system can be implemented …

While the standard language XACML is very expressive for specifying fine-grained access
control policies, defects can get into XACML policies for various reasons, such as …

While the existing methods for testing XACML policies have varying levels of effectiveness,
none of them can reveal the majority of policy faults. The undisclosed faults may lead to …

We introduce a UML-based notation for graphically modeling systems' security aspects in a
simple and intuitive way and a model-driven process that transforms graphical specifications …

In this paper, the authors propose a new data flow based unit testing method. The authors
involved the coverage selection approach with a decision inheritance tree, which can …

Evaluates some software design metrics, based on the information flow metrics of S. Henry
and D. Kafura (1981, 1984), using data from a communications system. The ability of the …