Search For:

Displaying 1-15 out of 15 total
Effective Detection of SQL/XPath Injection Vulnerabilities in Web Services
Found in: Services Computing, IEEE International Conference on
By Nuno Antunes, Nuno Laranjeiro, Marco Vieira, Henrique Madeira
Issue Date:September 2009
pp. 260-267
This paper proposes a new automatic approach for the detection of SQL Injection and XPath Injection vulnerabilities, two of the most common and most critical types of vulnerabilities in web services. Although there are tools that allow testing web applicat...
 
A Technique for Deploying Robust Web Services
Found in: IEEE Transactions on Services Computing
By Nuno Laranjeiro,Marco Vieira,Henrique Madeira
Issue Date:January 2014
pp. 68-81
Developing robust web services is a difficult task. Field studies show that a large number of web services are deployed with robustness problems (i.e., presenting unexpected behaviors in the presence of invalid inputs). Although several techniques for the ...
 
Robustness Evaluation of Controllers in Self-Adaptive Software Systems
Found in: 2013 Sixth Latin-American Symposium on Dependable Computing (LADC)
By Javier Camara,Rogerio de Lemos,Nuno Laranjeiro,Rafael Ventura,Marco Vieira
Issue Date:April 2013
pp. 1-10
An increasingly important requirement for software-intensive systems is the ability to self-manage by adapting their structure and behavior at run-time in an autonomous way as a response to a variety of changes that may occur to the system, its environment...
 
A Composed Approach for Automatic Classification of Web Services Robustness
Found in: Services Computing, IEEE International Conference on
By Rui Oliveira,Nuno Laranjeiro,Marco Vieira
Issue Date:July 2011
pp. 176-183
Testing Web Services (WS) for robustness is a lengthy and arduous process. After testing a set of services, there is typically a very large quantity and variety of test results to be analyzed, which poses a challenge to the developer that has to manually p...
 
A Learning-Based Approach to Secure Web Services from SQL/XPath Injection Attacks
Found in: Pacific Rim International Symposium on Dependable Computing, IEEE
By Nuno Laranjeiro, Marco Vieira, Henrique Madeira
Issue Date:December 2010
pp. 191-198
Business critical applications are increasingly being deployed as web services that access database systems, and must provide secure operations to its clients. Although the open web environment emphasizes the need for security, several studies show that we...
 
Applying Text Classification Algorithms in Web Services Robustness Testing
Found in: Reliable Distributed Systems, IEEE Symposium on
By Nuno Laranjeiro, Rui Oliveira, Marco Vieira
Issue Date:November 2010
pp. 255-264
Testing web services for robustness is an effective way of disclosing software bugs. However, when executing robustness tests, a very large amount of service responses has to be manually classified to distinguish regular responses from responses that indic...
 
Improving Web Services Robustness
Found in: Web Services, IEEE International Conference on
By Nuno Laranjeiro, Marco Vieira, Henrique Madeira
Issue Date:July 2009
pp. 397-404
Developing robust web services is a difficult task. Field studies show that a large number of web services are deployed with robustness problems (i.e., presenting unexpected behaviors in the presence of invalid inputs). Several techniques for the identific...
 
Extending Test-Driven Development for Robust Web Services
Found in: Dependability, International Conference on
By Nuno Laranjeiro, Marco Vieira
Issue Date:June 2009
pp. 122-127
Research and practice show that a large number of web services are deployed with robustness problems (i.e., presenting unexpected behaviors in the presence of invalid inputs). Test-driven development, particularly suitable for web service environments, is ...
 
Timing Failures Detection in Web Services
Found in: Asia-Pacific Conference on Services Computing. 2006 IEEE
By Nuno Laranjeiro, Marco Vieira, Henrique Madeira
Issue Date:December 2008
pp. 554-559
Current business critical environments increasingly rely on SOA standards to execute business operations. These operations are frequently based on web service compositions that use several web services over the internet and have to fulfill specific timing ...
 
Experimental Robustness Evaluation of JMS Middleware
Found in: Services Computing, IEEE International Conference on
By Nuno Laranjeiro, Marco Vieira, Henrique Madeira
Issue Date:July 2008
pp. 119-126
The use of Java Message Service (JMS) for enterprise applications communication and integration is increasing very quickly. However, although JMS is frequently used in business-critical environments, applications are typically developed with the assumption...
 
wsrbench: An On-Line Tool for Robustness Benchmarking
Found in: Services Computing, IEEE International Conference on
By Nuno Laranjeiro, Salvador Canelas, Marco Vieira
Issue Date:July 2008
pp. 187-194
Testing web services for robustness is a difficult task. In fact, existing development support tools do not provide any practical mean to assess web services robustness in the presence of erroneous inputs. Previous works proposed that web services robustne...
 
Benchmarking the Robustness of Web Services
Found in: Pacific Rim International Symposium on Dependable Computing, IEEE
By Marco Vieira, Nuno Laranjeiro, Henrique Madeira
Issue Date:December 2007
pp. 322-329
This paper proposes an approach for the evaluation of the robustness of web services, which are complex software components that must provide a robust interface to the client applications. However, although web services are becoming business-critical compo...
 
Comparing Web Services Performance and Recovery in the Presence of Faults
Found in: Web Services, IEEE International Conference on
By Marco Vieira, Nuno Laranjeiro
Issue Date:July 2007
pp. 623-630
Web-services are supported by a complex software infrastructure that must ensure high performance and availability to the client applications. Web services industry holds a well established platform for performance benchmarking (e.g., TPC-App and SPEC jApp...
 
Assessing Robustness of Web-Services Infrastructures
Found in: Dependable Systems and Networks, International Conference on
By Marco Vieira, Nuno Laranjeiro, Henrique Madeira
Issue Date:June 2007
pp. 131-136
Web-services are supported by a complex software infrastructure that must provide a robust service to the client applications. This practical experience report presents a practical approach for the evaluation of the robustness of web-services infrastructur...
 
WSFAggressor: an extensible web service framework attacking tool
Found in: Proceedings of the Industrial Track of the 13th ACM/IFIP/USENIX International Middleware Conference (MIDDLEWARE '12)
By Marco Vieira, Nuno Laranjeiro, Rui André Oliveira
Issue Date:December 2012
pp. 1-6
This paper presents a tool for testing the security of web service frameworks. The tool implements a large set of attack types, defined based on previous security research studies, existing testing tools, and field experience. The motivation is that develo...
     
 1