Published: Sep 26, 2024
The following paper has been accepted at the IEEE Security & Privacy:
- Title: Enhancing Security Testing for Identity Management Implementations: Introducing Micro-Id-Gym Language and Micro-Id-Gym Testing Tool
- Author: Andrea Bisegna, Matteo Bitussi, Roberto Carbone, Silvio Ranise
- Abstract: We introduce MIG-L, a declarative language for the specification of security tests, and MIG-T, a testing tool, for identity management solutions based on SAML and OAuth/OpenID Connect. We verify compliance with best current practices and detect known vulnerabilities.
- DOI: 10.1109/MSEC.2024.3450277
About the journal
- Name: IEEE Security & Privacy
- Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=8013
Related Tools
- Micro-Id-Gym [documentation, code]