کد مقاله کد نشریه سال انتشار مقاله انگلیسی نسخه تمام متن
10340117 694809 2005 23 صفحه PDF دانلود رایگان
عنوان انگلیسی مقاله ISI
A testing framework for Web application security assessment
موضوعات مرتبط
مهندسی و علوم پایه مهندسی کامپیوتر شبکه های کامپیوتری و ارتباطات
پیش نمایش صفحه اول مقاله
A testing framework for Web application security assessment
چکیده انگلیسی
The rapid development phases and extremely short turnaround time of Web applications make it difficult to eliminate their vulnerabilities. Here we study how software testing techniques such as fault injection and runtime monitoring can be applied to Web applications. We implemented our proposed mechanisms in the Web Application Vulnerability and Error Scanner (WAVES)-a black-box testing framework for automated Web application security assessment. Real-world situations are used to test WAVES and to compare it with other tools. Our results show that WAVES is a feasible platform for assessing Web application security.
ناشر
Database: Elsevier - ScienceDirect (ساینس دایرکت)
Journal: Computer Networks - Volume 48, Issue 5, 5 August 2005, Pages 739-761
نویسندگان
, , , , , ,