Conformance Testing of Access Control Models
Access Controls exist almost everywhere, they may have model specifications or evaluate access requests merely according to a set of predefined rules. Either way, there should be a systematic way of assessing whether and to what extent the design requirements are satisfied. In this project, I reviewed ReBAC, ABAC, RBAC, and OrBAC Access Control Models and their Conformance Testing, Test Suit Generation, and use of State Machines, Petri nets, and PrT nets for model illustration and Test Modeling.
Image source