Design decisions in the development of a graphical language for risk-driven security testing
Journal article, Peer reviewed
MetadataShow full item record
Original versionLecture Notes in Computer Science. 2017, 10224 99-114. 10.1007/978-3-319-57858-3_8
We have developed a domain-specific modeling language named CORAL that employs risk assessment to help security testers select and design test cases based on the available risk picture. In this paper, we present CORAL and then discuss why the language is designed the way it is, and what we could have done differently.