Issue No. 02 - Feb. (2014 vol. 47)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MC.2013.409
Nuno Antunes , University of Coimbra, Portugal
Marco Vieira , University of Coimbra, Portugal
Web services are often deployed with critical software security faults that open them to malicious attack. Penetration testing using commercially available automated tools can help avoid such faults, but new analysis of several popular testing tools reveals significant failings in their performance. The Web extra at http://youtu.be/COgKs9e679o is an audio interview in which authors Nuno Antunes and Marco Vieira describe how their analysis of popular testing tools revealed significant performance failures and provided important insights for future improvement.
Software testing, Computer security, Web and internet services, Runtime, Simple object access protocol, Computer viruses,Web security scanners, penetration testing, Web services, code vulnerabilities, command injection, SQL injection, vulnerability detection
Nuno Antunes, Marco Vieira, "Penetration Testing for Web Services", Computer, vol. 47, no. , pp. 30-36, Feb. 2014, doi:10.1109/MC.2013.409