|
|
Document Details
Bypass Testing of Web Applications
Description: Web software applications are increasingly being deployed
in sensitive situations. Web applications are used
to transmit, accept and store data that is personal, company
confidential and sensitive. Input validation testing
(IVT) checks user inputs to ensure that they conform to
the program’s requirements, which is particularly important
for software that relies on user inputs, including
Web applications. A common technique in Web applications
is to perform input validation on the client
with scripting languages such as JavaScript. An insidious
problem with client-side input validation is that end
users can bypass this validation. Bypassing validation
can reveal faults in the software, and can also break the
security on Web applications, leading to unauthorized
access to data, system failures, invalid purchases and
entry of bogus data. We are developing a strategy called
bypass testing to create IVT tests. This paper describes
the strategy, defines specific rules and adequacy criteria
for tests, describes a proof-of-concept automated tool,
and presents initial empirical results from applying bypass
testing.
| Name |
Bypass Testing of Web Applications |
| Keywords |
|
| Filesize |
131.3 kB |
| Google Ads |
|
| Filetype |
pdf (Mime Type: application/pdf) |
| Creator |
Everybody |
| Created On: |
12/05/2007 00:00 |
| Viewers |
Everybody |
| Maintained by |
Zinho |
| Hits |
37 Hits |
| Last updated on |
12/31/1969 16:00 |
| Homepage |
|
| CRC Checksum |
|
| MD5 Checksum |
|
You need to login to download texts/tools. Register here, it's fast and free!
|
|
|
