AbstractDue to its distributed and open nature, Web Services give rise to new security challenges. This technology is susceptible to Cross-site Scripting (XSS) attack, which takes advantage of existing vulnerabilities. The proposed approach makes use of two Security Testing techniques, namely Penetration Testing and Fault Injection, in order to emulate XSS attack against Web Services. This technology, combined with WS-Security (WSS) and Security Tokens, can identify the sender and guarantee the legitimate access control to the SOAP messages exchanged. We use the vulnerability scanner soapUI that is one of the most recognized tools of Penetration Testing. In contrast, WSInject is a new fault injection tool, which introduces faults or errors ...
The thesis discusses the issues of penetration testing of web applications, focusing on the Cross-Si...
Cross Site Scripting (XSS) is a vulnerability of a Web Application that is essentially caused by the...
The growing popularity and application of Web services have led to an increase in attention to the v...
AbstractDue to its distributed and open nature, Web Services give rise to new security challenges. T...
Web services work over dynamic connections among distributed systems. This technology was specifical...
Abstract—XML-based SOAP Web Services are a widely used technology, which allows the users to execute...
In this paper we proposed a system prototype tool to evaluate web application security mechanisms. T...
Web Services (WS) Technology during the past few years for heterogeneous systems integration, has be...
Web services have become a common tool for transfering data and accessing remote functions. They hel...
Web applications are needed as a solution to the use of internet technology that can be accessed glo...
In this technological era, many of the applications are taking the utilization of services of intern...
Proceeding of: 2010 International Conference for Internet Technology and Secured Transactions (ICITS...
Most of the people in the industrial world are using several web applications every day. Many of tho...
Nowaday, there is so many vulnerabilities in web application layer. This is because of security is...
The increasing number of user-oriented applications uploading all their information to the web is ca...
The thesis discusses the issues of penetration testing of web applications, focusing on the Cross-Si...
Cross Site Scripting (XSS) is a vulnerability of a Web Application that is essentially caused by the...
The growing popularity and application of Web services have led to an increase in attention to the v...
AbstractDue to its distributed and open nature, Web Services give rise to new security challenges. T...
Web services work over dynamic connections among distributed systems. This technology was specifical...
Abstract—XML-based SOAP Web Services are a widely used technology, which allows the users to execute...
In this paper we proposed a system prototype tool to evaluate web application security mechanisms. T...
Web Services (WS) Technology during the past few years for heterogeneous systems integration, has be...
Web services have become a common tool for transfering data and accessing remote functions. They hel...
Web applications are needed as a solution to the use of internet technology that can be accessed glo...
In this technological era, many of the applications are taking the utilization of services of intern...
Proceeding of: 2010 International Conference for Internet Technology and Secured Transactions (ICITS...
Most of the people in the industrial world are using several web applications every day. Many of tho...
Nowaday, there is so many vulnerabilities in web application layer. This is because of security is...
The increasing number of user-oriented applications uploading all their information to the web is ca...
The thesis discusses the issues of penetration testing of web applications, focusing on the Cross-Si...
Cross Site Scripting (XSS) is a vulnerability of a Web Application that is essentially caused by the...
The growing popularity and application of Web services have led to an increase in attention to the v...