Maximizing Test Coverage for Security Threats Using Optimal Test Data Generation-Reference-Cited by-同舟云学术

Maximizing Test Coverage for Security Threats Using Optimal Test Data Generation

Published:2023-07-16 Issue:14 Volume:13 Page:8252
ISSN:2076-3417
Container-title:Applied Sciences
language:en
Short-container-title:Applied Sciences

Author:

Hussain Talha¹^ORCID,Faiz Rizwan Bin¹,Aljaidi Mohammad²^ORCID,Khattak Adnan¹,Samara Ghassan²,Alsarhan Ayoub³^ORCID,Alazaidah Raed²

Affiliation:

1. Faculty of Computing, Riphah International University, Islamabad 46000, Pakistan

2. Department of Computer Science, Faculty of Information Technology, Zarqa University, Zarqa 13110, Jordan

3. Department of Information Technology, Faculty of Prince Al-Hussein Bin Abdallah II for Information Technology, The Hashemite University, Zarqa 13116, Jordan

Abstract

As time continues to advance, the need for robust security threat mitigation has become increasingly vital in software. It is a constant struggle to maximize test coverage through optimal data generation. We conducted explanatory research to maximize test coverage of security requirements as modeled in the structured misuse case description (SMCD). The acceptance test case is designed through the structured misuse case description for mitigation of security threats. Mal activity is designed from SMCD upon which constraints are specified in object constraint language (OCL) in order to minimize human dependency and improve consistency in the optimal test case design. The study compared two state-of-the-art test coverage maximization approaches through optimal test data generation. It was evident through the results that MC/DC generated optimal test data, i.e., n + 1 test conditions in comparison to the decision coverage approach, i.e., 2n test conditions for security threats. Thus, MC/DC resulted in a significantly lower number of test cases yet maximized test coverage of security threats. We, therefore, conclude that MC/DC maximizes test coverage through optimal test data in comparison to decision coverage at the design level for security threat mitigation.

Funder

Zarqa University

Publisher

MDPI AG

Subject

Fluid Flow and Transfer Processes,Computer Science Applications,Process Chemistry and Technology,General Engineering,Instrumentation,General Materials Science

Link

https://www.mdpi.com/2076-3417/13/14/8252/pdf

Reference36 articles.

1. Hybrid Particle Swarm and Ranked Firefly Metaheuristic Optimization-Based Software Test Case Minimization;Bharathi;Int. J. Appl. Metaheuristic Comput.,2022

2. A systematic review on search-based test suite reduction: State-of-the-art, taxonomy, and future directions;Habib;IET Softw.,2023

3. Huang, T., and Fang, C.C. (2023). Optimization of Software Test Scheduling under Development of Modular Software Systems. Symmetry, 15.

4. Black-Box Testing of Deep Neural Networks Through Test Case Diversity;Aghababaeyan;IEEE Trans. Softw. Eng.,2023

5. Mohi-Aldeen, S.M., Mohamad, R., and Deris, S. (2020). Optimal path test data generation based on hybrid negative selection algorithm and genetic algorithm. PLoS ONE, 15.

Cited by 1 articles. 订阅此论文施引文献订阅此论文施引文献，注册后可以免费订阅5篇论文的施引文献，订阅后可以查看论文全部施引文献

1. BDGSE: A Symbolic Execution Technique for High MC/DC;2023 IEEE 23rd International Conference on Software Quality, Reliability, and Security (QRS);2023-10-22