{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,19]],"date-time":"2026-06-19T15:55:02Z","timestamp":1781884502108,"version":"3.54.5"},"publisher-location":"Berlin, Heidelberg","reference-count":43,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"value":"9783540494966","type":"print"},{"value":"9783540494973","type":"electronic"}],"license":[{"start":{"date-parts":[[2006,1,1]],"date-time":"2006-01-01T00:00:00Z","timestamp":1136073600000},"content-version":"tdm","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2006]]},"DOI":"10.1007\/11935308_11","type":"book-chapter","created":{"date-parts":[[2006,11,15]],"date-time":"2006-11-15T11:26:42Z","timestamp":1163590002000},"page":"139-158","source":"Crossref","is-referenced-by-count":46,"title":["Defining and Measuring Policy Coverage in Testing Access Control Policies"],"prefix":"10.1007","author":[{"given":"Evan","family":"Martin","sequence":"first","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Tao","family":"Xie","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]},{"given":"Ting","family":"Yu","sequence":"additional","affiliation":[],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"297","reference":[{"key":"11_CR1","unstructured":"OASIS eXtensible Access Control Markup Language (XACML) (2005), http:\/\/www.oasis-open.org\/committees\/xacml\/"},{"key":"11_CR2","unstructured":"Sun\u2019s XACML implementation (2005), http:\/\/sunxacml.sourceforge.net\/"},{"key":"11_CR3","unstructured":"XACML.NET (2005), http:\/\/mvpos.sourceforge.net\/"},{"key":"11_CR4","unstructured":"Amla, N., Ammann, P.: Using Z specifications in category partition testing. In: Proc. 7th Annual Conference on Computer Assurance, June 1992, pp. 3\u201310 (1992)"},{"key":"11_CR5","doi-asserted-by":"crossref","unstructured":"Ammann, P., Offutt, J.: Using formal methods to derive test frames in category-partition testing. In: Proc. 9th Annual Conference on Computer Assurance, June 1994, pp. 69\u201380 (1994)","DOI":"10.1109\/CMPASS.1994.318466"},{"key":"11_CR6","unstructured":"Anderson, A.: XACML 1.1 committee specification conformance tests (2002), http:\/\/www.oasis-open.org\/committees\/xacml\/ConformanceTests\/"},{"key":"11_CR7","doi-asserted-by":"crossref","unstructured":"Anderson, R.J.: A security policy model for clinical information systems. In: Proc. IEEE Symposium on Security and Privacy, pp. 30\u201343 (1996)","DOI":"10.1109\/SECPRI.1996.502667"},{"key":"11_CR8","doi-asserted-by":"crossref","unstructured":"Bertino, E., Buccafurri, F., Ferrari, E., Rullo, P.: A logical framework for reasoning on data access control policies. In: Proc. 12th IEEE Computer Security Foundations Workshop, pp. 175\u2013189 (1999)","DOI":"10.1109\/CSFW.1999.779772"},{"key":"11_CR9","doi-asserted-by":"crossref","unstructured":"Bertino, E., Castano, S., Ferrari, E.: On specifying security policies for web documents with an XML-based language. In: Proc. 6th ACM Symposium on Access Control Models and Technologies, Chantilly, VA, May 2001, pp. 57\u201365 (2001)","DOI":"10.1145\/373256.373264"},{"key":"11_CR10","doi-asserted-by":"crossref","unstructured":"Bonatti, P., Vimercati, S., Samarati, P.: A modular approach to composing access control policies. In: Proc. ACM Conference on Computer and Communication Security, Athens, Greece, November 2000, pp. 164\u2013173 (2000)","DOI":"10.1145\/352600.352623"},{"key":"11_CR11","doi-asserted-by":"crossref","unstructured":"Bussler, C., Jablonski, S.: Policy resolution for workflow management systems. In: Proc. Hawaii International Conference on System Science, Maui, Hawaii, January 1995, pp. 831\u2013840 (1995)","DOI":"10.1109\/HICSS.1995.375665"},{"key":"11_CR12","doi-asserted-by":"crossref","unstructured":"Chang, J., Richardson, D.J.: Structural specification-based testing: automated support and experimental evaluation. In: Proc. 7th ESEC\/FSE, pp. 285\u2013302 (1999)","DOI":"10.1007\/3-540-48166-4_18"},{"key":"11_CR13","unstructured":"Clarke, E., Fujita, M., McGeer, P., Yang, J., Zhao, X.: Multi-terminal binary decision diagrams: An efficient data structure for matrix representation. In: Proc. International Workshop on Logic Synthesis, pp. 1\u201315 (1993)"},{"key":"11_CR14","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"18","DOI":"10.1007\/3-540-44569-2_2","volume-title":"Policies for Distributed Systems and Networks","author":"N. Damianou","year":"2001","unstructured":"Damianou, N., Dulay, N., Lupu, E., Sloman, M.: The Ponder policy specification language. In: Sloman, M., Lobo, J., Lupu, E.C. (eds.) POLICY 2001. LNCS, vol.\u00a01995, pp. 18\u201338. Springer, Heidelberg (2001)"},{"issue":"4","key":"11_CR15","doi-asserted-by":"crossref","first-page":"34","DOI":"10.1109\/C-M.1978.218136","volume":"11","author":"R.A. DeMillo","year":"1978","unstructured":"DeMillo, R.A., Lipton, R.J., Sayward, F.G.: Hints on test data selection: Help for the practicing programmer. IEEE Computer\u00a011(4), 34\u201341 (1978)","journal-title":"IEEE Computer"},{"key":"11_CR16","doi-asserted-by":"crossref","unstructured":"Fisler, K., Krishnamurthi, S., Meyerovich, L.A., Tschantz, M.C.: Verification and change-impact analysis of access-control policies. In: Proc. 27th International Conference on Software Engineering, pp. 196\u2013205 (2005)","DOI":"10.1145\/1062455.1062502"},{"issue":"5","key":"11_CR17","doi-asserted-by":"publisher","first-page":"550","DOI":"10.1109\/12.142681","volume":"41","author":"R. Geist","year":"1992","unstructured":"Geist, R., Offutt, A.J., Harris, F.: Estimation and enhancement of real-time software reliability through mutation analysis. IEEE Transactions on Computers\u00a041(5), 550\u2013558 (1992)","journal-title":"IEEE Transactions on Computers"},{"key":"11_CR18","unstructured":"Greenberg, M.M., Marks, C., Meyerovich, L.A., Tschantz, M.C.: The soundness and completeness of Margrave with respect to a subset of XACML. Technical Report CS-05-05, Department of Computer Science, Brown University (2005)"},{"key":"11_CR19","doi-asserted-by":"crossref","unstructured":"Griffiths, P., Wade, B.: An authorization mechanism for a relational database systems. ACM Transactions on Database Systems\u00a01(3) (1976)","DOI":"10.1145\/320473.320482"},{"issue":"3","key":"11_CR20","doi-asserted-by":"publisher","first-page":"270","DOI":"10.1145\/152388.152391","volume":"2","author":"M.J. Harrold","year":"1993","unstructured":"Harrold, M.J., Gupta, R., Soffa, M.L.: A methodology for controlling the size of a test suite. ACM Trans. Softw. Eng. Methodol.\u00a02(3), 270\u2013285 (1993)","journal-title":"ACM Trans. Softw. Eng. Methodol."},{"key":"11_CR21","doi-asserted-by":"crossref","unstructured":"Hennessy, M., Power, J.F.: An analysis of rule coverage as a criterion in generating minimal test suites for grammar-based software. In: Proc. 20th IEEE\/ACM International Conference on Automated Software Engineering, November 2005, pp. 104\u2013113 (2005)","DOI":"10.1145\/1101908.1101926"},{"key":"11_CR22","unstructured":"Hughes, G., Bultan, T.: Automated verification of access control policies. Technical Report 2004-22, Department of Computer Science, University of California, Santa Barbara (2004)"},{"key":"11_CR23","doi-asserted-by":"crossref","unstructured":"Jackson, D., Shlyakhter, I., Sridharan, M.: A micromodularity mechanism. In: Proc. 8th ESEC\/FSE, pp. 62\u201373 (2001)","DOI":"10.1145\/503209.503219"},{"key":"11_CR24","doi-asserted-by":"crossref","unstructured":"Jaeger, T., Zhang, X., Cacheda, F.: Policy management using access control spaces. ACM Transactions on Information and System Security\u00a06(3) (2003)","DOI":"10.1145\/937527.937528"},{"key":"11_CR25","doi-asserted-by":"crossref","unstructured":"Jajodia, S., Samarati, P., Subrahmanian, V.S.: A logical language for expressing authorizations. In: Proc. 1997 IEEE Symposium on Security and Privacy, pp. 31\u201342 (1997)","DOI":"10.1109\/SECPRI.1997.601312"},{"key":"11_CR26","doi-asserted-by":"crossref","unstructured":"Jajodia, S., Samarati, P., Subrahmanian, V.S., Bertino, E.: A unified framework for enforcing multiple access control policies. In: Proc. ACM SIGMOD International Conference on Management of Data, pp. 474\u2013485 (1997)","DOI":"10.1145\/253262.253364"},{"key":"11_CR27","doi-asserted-by":"publisher","first-page":"256","DOI":"10.1016\/S0022-0000(74)80044-9","volume":"9","author":"D.S. Johnson","year":"1974","unstructured":"Johnson, D.S.: Approximation algorithms for combinatorial problems. J. Comput. System Sci.\u00a09, 256\u2013278 (1974)","journal-title":"J. Comput. System Sci."},{"key":"11_CR28","doi-asserted-by":"crossref","unstructured":"Kapfhammer, G.M., Soffa, M.L.: A family of test adequacy criteria for database-driven applications. In: Proceedings of the 9th ESEC\/FSE, pp. 98\u2013107 (2003)","DOI":"10.1145\/940085.940086"},{"key":"11_CR29","doi-asserted-by":"crossref","unstructured":"Kudo, M., Hada, S.: XML document security based on provisional authorization. In: Proc. ACM Conference on Computer and Communication Security, Athens, Greece, November 2000, pp. 87\u201396 (2000)","DOI":"10.1145\/352600.352613"},{"key":"11_CR30","doi-asserted-by":"crossref","unstructured":"Lorch, M., Kafura, D., Shah, S.: An XACML-based policy management and authorization service for globus resources. In: Proc. International Workshop on Grid Computing, Phoenix, AZ, November 2003, pp. 208\u2013212 (2003)","DOI":"10.1109\/GRID.2003.1261718"},{"issue":"6","key":"11_CR31","doi-asserted-by":"publisher","first-page":"852","DOI":"10.1109\/32.824414","volume":"25","author":"E.C. Lupu","year":"1999","unstructured":"Lupu, E.C., Sloman, M.: Conflict in policy-based distributed systems management. IEEE Transaction on Software Engineering\u00a025(6), 852\u2013869 (1999)","journal-title":"IEEE Transaction on Software Engineering"},{"key":"11_CR32","unstructured":"Moses, T., Anderson, A., Proctor, S., Godik, S.: XACML Profile for Web-Services (WSPL). OASIS Working Draft (September 2003)"},{"key":"11_CR33","volume-title":"Art of Software Testing","author":"G.J. Myers","year":"1979","unstructured":"Myers, G.J.: Art of Software Testing. John Wiley & Sons, Inc., Chichester (1979)"},{"key":"11_CR34","doi-asserted-by":"crossref","unstructured":"Offutt, J., Untch, R.H.: Mutation 2000: Uniting the orthogonal. In: Mutation 2000: Mutation Testing in the Twentieth and the Twenty First Centuries, October 2000, pp. 45\u201355 (2000)","DOI":"10.1007\/978-1-4757-5939-6_7"},{"key":"11_CR35","doi-asserted-by":"crossref","unstructured":"Rothermel, G., Harrold, M.J., Ostrin, J., Hong, C.: An empirical study of the effects of minimization on the fault detection capabilities of test suites. In: Proc. International Conference on Software Maintenance, pp. 34\u201343 (1998)","DOI":"10.1109\/ICSM.1998.738487"},{"key":"11_CR36","doi-asserted-by":"crossref","unstructured":"Ryutov, T., Neuman, C.: Representation and evaluation of security policies for distributed system services. In: Proc. DARPA Information Survivability Conference and Exposition, January 2000, pp. 172\u2013183 (2000)","DOI":"10.1109\/DISCEX.2000.821518"},{"issue":"1","key":"11_CR37","doi-asserted-by":"publisher","first-page":"105","DOI":"10.1145\/300830.300839","volume":"2","author":"R. Sandhu","year":"1999","unstructured":"Sandhu, R., Bhamidipati, V., Munawer, Q.: The ARBAC97 model for role-based aministration of roles. ACM Transactions on Information and Systems Security\u00a02(1), 105\u2013135 (1999)","journal-title":"ACM Transactions on Information and Systems Security"},{"key":"11_CR38","doi-asserted-by":"crossref","unstructured":"Sirer, E., Wang, K.: An access control language for web services. In: Proc. 7th ACM Symposium on Access Control Models and Technologies, Monterey, CA, June 2002, pp. 23\u201330 (2002)","DOI":"10.1145\/507711.507715"},{"key":"11_CR39","doi-asserted-by":"crossref","unstructured":"Suarez-Cabal, M.J., Tuya, J.: Using an SQL coverage measurement for testing database applications. In: Proc. ACM SIGSOFT International Symposium on Foundations of Software Engineering, pp. 253\u2013262 (2004)","DOI":"10.1145\/1041685.1029929"},{"issue":"8","key":"11_CR40","doi-asserted-by":"publisher","first-page":"717","DOI":"10.1109\/32.153381","volume":"18","author":"J.M. Voas","year":"1992","unstructured":"Voas, J.M.: PIE: A dynamic failure-based technique. IEEE Transactions on Software Engineering\u00a018(8), 717\u2013727 (1992)","journal-title":"IEEE Transactions on Software Engineering"},{"key":"11_CR41","doi-asserted-by":"crossref","unstructured":"Zhang, N., Ryan, M., Guelev, D.P.: Synthesising verified access control systems in XACML. In: Proc. 2004 ACM workshop on Formal Methods in Security Engineering, pp. 56\u201365 (2004)","DOI":"10.1145\/1029133.1029141"},{"key":"11_CR42","doi-asserted-by":"crossref","unstructured":"Zhang, N., Ryan, M., Guelev, D.P.: Evaluating access control policies through model checking. In: Proc. 8th International Conference on Information Security, September 2005, pp. 446\u2013460 (2005)","DOI":"10.1007\/11556992_32"},{"issue":"4","key":"11_CR43","doi-asserted-by":"publisher","first-page":"366","DOI":"10.1145\/267580.267590","volume":"29","author":"H. Zhu","year":"1997","unstructured":"Zhu, H., Hall, P.A.V., May, J.H.R.: Software unit test coverage and adequacy. ACM Comput. Surv.\u00a029(4), 366\u2013427 (1997)","journal-title":"ACM Comput. Surv."}],"container-title":["Lecture Notes in Computer Science","Information and Communications Security"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/11935308_11","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,1,11]],"date-time":"2025-01-11T23:14:43Z","timestamp":1736637283000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/11935308_11"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2006]]},"ISBN":["9783540494966","9783540494973"],"references-count":43,"URL":"https:\/\/doi.org\/10.1007\/11935308_11","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"value":"0302-9743","type":"print"},{"value":"1611-3349","type":"electronic"}],"subject":[],"published":{"date-parts":[[2006]]}}}