PEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL
Broken access control vulnerabilities have consistently appeared in the OWASP top 10 over the last decade. The CVEDetails report also shows an increasing trend for this vulnerability over the past ten years. It shows that broken access control is crucial to mitigate. Security testing is one way...
Saved in:
| Main Author: | |
|---|---|
| Format: | Final Project |
| Language: | Indonesia |
| Online Access: | https://digilib.itb.ac.id/gdl/view/82426 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Institut Teknologi Bandung |
| Language: | Indonesia |
| id |
id-itb.:82426 |
|---|---|
| spelling |
id-itb.:824262024-07-08T11:32:03ZPEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL Faidh Muzaki, Dimas Indonesia Final Project mutation testing, broken access control, software testing INSTITUT TEKNOLOGI BANDUNG https://digilib.itb.ac.id/gdl/view/82426 Broken access control vulnerabilities have consistently appeared in the OWASP top 10 over the last decade. The CVEDetails report also shows an increasing trend for this vulnerability over the past ten years. It shows that broken access control is crucial to mitigate. Security testing is one way to mitigate broken access control. However, testing often fails to detect broken access control, and creating test cases for broken access control is not easy. A common technique used to improve test suite quality is increasing code coverage. However, some researchers state that code coverage does not reflect the quality of test cases in detecting vulnerabilities. Another potential method that can be used to improve the quality of test cases is through mutation testing. In this paper, mutation testing enhances test cases' quality for broken access control vulnerabilities. This is achieved by generating mutants through the mutation of access control policies. The results show that mutation testing performs well in improving test cases for broken access control vulnerabilities by generating 142 mutants and adding 11 new test cases. text |
| institution |
Institut Teknologi Bandung |
| building |
Institut Teknologi Bandung Library |
| continent |
Asia |
| country |
Indonesia Indonesia |
| content_provider |
Institut Teknologi Bandung |
| collection |
Digital ITB |
| language |
Indonesia |
| description |
Broken access control vulnerabilities have consistently appeared in the OWASP top
10 over the last decade. The CVEDetails report also shows an increasing trend for
this vulnerability over the past ten years. It shows that broken access control is
crucial to mitigate.
Security testing is one way to mitigate broken access control. However, testing
often fails to detect broken access control, and creating test cases for broken access
control is not easy. A common technique used to improve test suite quality is
increasing code coverage. However, some researchers state that code coverage does
not reflect the quality of test cases in detecting vulnerabilities.
Another potential method that can be used to improve the quality of test cases is
through mutation testing. In this paper, mutation testing enhances test cases' quality
for broken access control vulnerabilities. This is achieved by generating mutants
through the mutation of access control policies. The results show that mutation
testing performs well in improving test cases for broken access control
vulnerabilities by generating 142 mutants and adding 11 new test cases. |
| format |
Final Project |
| author |
Faidh Muzaki, Dimas |
| spellingShingle |
Faidh Muzaki, Dimas PEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL |
| author_facet |
Faidh Muzaki, Dimas |
| author_sort |
Faidh Muzaki, Dimas |
| title |
PEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL |
| title_short |
PEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL |
| title_full |
PEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL |
| title_fullStr |
PEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL |
| title_full_unstemmed |
PEMBANGKITAN MUTAN UNTUK TESTING KERENTANAN BROKEN ACCESS CONTROL |
| title_sort |
pembangkitan mutan untuk testing kerentanan broken access control |
| url |
https://digilib.itb.ac.id/gdl/view/82426 |
| _version_ |
1822009770158063616 |