Downloads: 119
Survey Paper | Computer Science & Engineering | India | Volume 5 Issue 1, January 2016
Survey on a Novel Approach for Web Service - Security Testing to Improve Web Service Robustness
Vina M. Lomte [11] | Jaydeep Mangle
Abstract: To have flexibility of providing services available (in service oriented architecture) across various platform, we need to expose web services due to its open nature in the system. The use of web services in todays industry has been widely grown, which causes to the new security challenges. Increasing demand has increased challenges on information security, it becomes important to provide robustness to the web services. The various web services attacks such as XML injection, XPath Injection, Cross-site scripting (XSS), that corrupts web services requests to maliciously harm web service which may in turn provide unwanted information, which harmful to the organization. Studies has shown that current different testing available techniques such as penetration testing and fuzzy scanning- generates several false results i. e. positive and negative indications. However, fault injection technique improves robustness of web service application, through greater flexibility to modify the test cases and find software bugs. This work describes the fault injection technique with WS-Security (UsernameToken) to evaluate robustness of web services and development of set of rules to determine vulnerability analysis, resulting on the improvement of vulnerability detector accuracy.
Keywords: Web services, cross-site scripting, XSS attack, penetration testing, fault injection, WS-Security, WSS, Security Token, soapUI, WSInject
Edition: Volume 5 Issue 1, January 2016,
Pages: 325 - 329
Similar Articles with Keyword 'Web services'
Downloads: 3 | Weekly Hits: ⮙1 | Monthly Hits: ⮙1
Research Paper, Computer Science & Engineering, India, Volume 11 Issue 8, August 2022
Pages: 132 - 137Deep Learning Model for Image Classification Using Convolutional Neural Network
Downloads: 103
Survey Paper, Computer Science & Engineering, India, Volume 3 Issue 5, May 2014
Pages: 1628 - 1631A Survey On XML-Injection Attack Detection Systems
Swati Ramesh Kesharwani | Aarti Deshpande [2]