Test Cases Generation Of Access Control For Cloud Platform Based On Security Policy

With the vigorous development of cloud computing technology,it has entered a new era of information service.The efficient computing power and optimized resources of cloud computing provide high-quality service for users.With the wide application of cloud computing platform and the increasing importance of network security in the whole society,the importance of cloud computing security is becoming more and more prominent.Cloud computing currently has important development and application in commercial,medical,educational and military fields.Cloud computing is widely used,but it also faces a huge threat.Once security problems or accidents occur,it will cause great losses.Therefore,the importance of cloud platform security is self-evident.The frequent occurrence of cloud security events in recent years has caused the industry to attach importance to cloud platform security testing.Security testing is an important means to make up for the defects of the system,reduce the loss caused by the security risk,and improve the security of the system.Only security testing can guarantee the security of cloud platform.Access control is an important mechanism to ensure cloud platform security and user data security.It is imperative to test the access control of cloud platform.Therefore,the purpose of this paper is to test the access control of cloud platform.At present,many researchers at home and abroad have made some achievements in cloud computing security testing.However,most of the research results tend to be formalized,and the methods are too complex to be implemented easily.At present,there is no evaluation standard system of access control for cloud platform.In view of the above problems,this paper thinks that the testing of access control in cloud platform needs to verify the security policy of access control on the one hand,and to detect the vulnerabilities of access control on the other.Therefore,this paper proposes a test cases generation method based on security policy to test the access control of cloud platform.The main work of this paper is as follows:(1)In this paper,the security function requirements of access control are extracted from CC standard and GB/T 18336.Combining it with the characteristics of cloud platform,the access control evaluation indicators of the cloud platform are formed.(2)In this paper,an access control abstract model is established by using the general description of access control.This paper proposes the guiding ideology and general form of access control testing,that is,whether the access control authority of the cloud platform is consistent with the actual access control authority.On this basis,this paper proposes a test cases generation method of access control for cloud platform based on security policy.The method includes five stages: data collection,data combination design,policy derivation,test cases generation and execution of test cases.This method not only guarantees certain test coverage,but also verifies the access control policy of cloud platform and detects the access control vulnerabilities of cloud platform.(3)Implementation of test cases generation method based on security policy.This paper realizes the automatic generation of test cases based on security policy.And experiments show that the test cases generated by this method can effectively cover the access control policy of cloud platform and detect access control vulnerabilities.(4)This paper presents the experimental steps of cloud platform access control testing: firstly,testing the initial state of cloud platform system,then testing the transition state of cloud platform access control.The experimental results show that the testing method is effective,and the test cases are simplified while the coverage is guaranteed,which has certain theoretical significance and application value.