Title :
Solving Some Modeling Challenges when Testing Rich Internet Applications for Security
Author :
Choudhary, Suryakant ; Dincturk, Mustafa Emre ; Bochmann, Gregor V. ; Jourdan, Guy-Vincent ; Onut, Iosif Viorel ; Ionescu, Paul
Author_Institution :
EECS, Univ. of Ottawa, Ottawa, ON, Canada
Abstract :
Crawling is a necessary step for testing web applications for security. An important concept that impacts the efficiency of crawling is state equivalence. This paper proposes two techniques to improve any state equivalence mechanism. The first technique detects parts of the pages that are unimportant for crawling. The second technique helps identifying session parameters. We also present a summary of our research on crawling techniques for the new generation of web applications, so-called Rich Internet Applications (RIAs). RIAs present new security and crawling challenges that cannot be addressed by traditional techniques. Solving these issues is a must if we want to continue benefitting from automated tools for testing web applications.
Keywords :
Internet; security of data; RIA; Web applications; automated tools; crawling techniques; rich Internet applications testing; session parameters identification; state equivalence mechanism; Browsers; Crawlers; Internet; Security; Servers; Testing; Web pages; Automated Crawling; Rich Internet Applications; Security Testing; State Equivalence;
Conference_Titel :
Software Testing, Verification and Validation (ICST), 2012 IEEE Fifth International Conference on
Conference_Location :
Montreal, QC
Print_ISBN :
978-1-4577-1906-6
DOI :
10.1109/ICST.2012.186
