This paper describes a strategy to develop automated privacy testing suites to assess the correctness of consent and revocation (C&R) controls offered to users by an EnCoRe system. This strategy is based on a formal language in order to provide rigorous and unambiguous consent and revocation specifications, and comprises of two novel procedures that facilitate the process of eliciting testing requirements for privacy properties and creating automated privacy-testing suites. We demonstrate the effectiveness of the strategy by describing our application of the method to a realistic case study, although space limitations preclude a complete presentation. © 2012 IFIP International Federation for Information Processing.
CITATION STYLE
Agrafiotis, I., Creese, S., & Goldsmith, M. (2012). Developing a strategy for automated privacy testing suites. In IFIP Advances in Information and Communication Technology (Vol. 375 AICT, pp. 32–44). https://doi.org/10.1007/978-3-642-31668-5_3
Mendeley helps you to discover research relevant for your work.