Active testing of access control policy

The invention claimed is: 1. A method, comprising: introducing a probing logic into a software target, actively testing the access control policy of the software target using the probing logic, and determining whether an intrusion in the software target has occurred based on monitored side effects, wherein the probing logic is to execute at least one operation that is forbidden by the access control policy, and to create at least one predetermined observable side effect based on the successful execution of the operation. 2. The method of claim 1 , wherein the software target is one of a main logic and an execution environment of the main logic. 3. The method of claim 2 , wherein the execution environment is one of a virtual machine, a container and a process. 4. The method of claim 1 , wherein the probing logic is to create a number of predetermined side effects comprising at least one of accessing a file or directory, creating or writing to a file, deleting a specific file or directory, deleting a specific piece of data or code in the software target or in another execution environment, creating network traffic, executing a system call, or blocking or unblocking one of an IP address, a protocol or a port. 5. The method of claim 1 , wherein a monitoring policy specifies the at least one observable side effect. 6. The method of claim 5 , wherein the monitoring policy further specifies at least one responsive action to take when it is determined that an intrusion has occurred. 7. The method of claim 1 , wherein a probing policy specifies the at least one operation that is to be executed by the probing logic. 8. A system, comprising: a software target having an access control policy, a monitor having a monitoring policy, and a probing logic to actively test the access control policy, wherein the probing logic is introduced into the software target, wherein the probing logic is to execute at least one operation that is forbidden by the access control policy, and to create at least one predetermined observable side effect based on the successful execution of the operation, and wherein the system is to determine whether an intrusion in the software target has occurred based on monitored side effects. 9. The system of claim 8 , wherein the software target is one of a main logic and an execution environment of the main logic. 10. The system of claim 9 , wherein the execution environment is one of a virtual machine, a container and a process. 11. The system of claim 8 , wherein the probing logic is to create a number of predetermined side effects comprising at least one of accessing a file or directory, creating a file, deleting a specific piece of data or code in the software target or in another execution environment, creating network traffic, executing a system call, or blocking one of an IP address, a protocol or a port. 12. The system of claim 8 , wherein the monitoring policy specifies the at least one observable side effect. 13. The system of claim 8 , wherein the monitoring policy further specifies at least one responsive action to take when it is determined that an intrusion has occurred. 14. The system of claim 8 , further comprising a probing policy which specifies the at least one operation that is to be executed by the probing logic. 15. A non-transitory program product having computer readable code stored thereon that, when executed by a computing device, causes the computing device to: introduce a probing logic into a software target, and determine whether an access control policy of the software target has been compromised using the probing logic, wherein the probing logic is to execute at least one operation that is forbidden by the access control policy, and to create at least one predetermined observable side effect based on the successful execution of the operation, and wherein the computing device determines whether the access control policy has been compromised based on monitored side effects.