oward Security Test Automation for Event Driven GUI Web Contents

Izzat Alsmadi, Ahmed AlEroud
2012 International Journal of Computer Network and Information Security  
The web is taking recently a large percentage of software products. The evolving nature of web applications put a serious challenge on testing, if we consider the dynamic nature of the current web. More precisely, testing both blocked contents and AJAX interfaces, might create new challenges in terms of test coverage and completeness. In this paper, we proposed enhancements and extensions of the current test automation activities. In the proposed framework, user interaction with AJAX interfaces
more » ... is used to collect DOM violation states. A blocked content is accessed through multiple forms' submission with dynamic contents, and in each iteration the vulnerability events databases are modified. Next, the test cases database of possible vulnerable inputs for both AJAX and blocked contents is built. Finally, Coverage assessment is evaluated after executing those test cases based on several possible coverage aspects.
doi:10.5815/ijcnis.2012.06.03 fatcat:i75c4dui6zgshhuere2l72cx5u