Papers Papers/2022 Papers Papers/2022

Research.Publish.Connect.

Paper

Authors: Sébastien Salva and Jarod Sue

Affiliation: LIMOS - UMR CNRS 6158, Clermont Auvergne University, UCA, France

Keyword(s): RESTful APIs, Security, Test Case Generation, Test Case Mutation.

Abstract: The focus of this paper is on automating the security testing of RESTful APIs. The testing stage of this specific kind of components is often performed manually, and this is yet considered as a long and difficult activity. This paper proposes an automated approach to help developers generate test cases for experimenting with each service in isolation. This approach is based upon the notion of test case mutation, which automatically generates new test cases from an original test case set. Test case mutation operators perform slight test case modifications to mimic possible failures or to test the component under test with new interactions. In this paper, we examine test case mutation operators for RESTful APIs and define 18 operators specialised in security testing. Then, we present our test case mutation algorithm. We evaluate its effectiveness and performance on four web service compositions.

CC BY-NC-ND 4.0

Sign In Guest: Register as new SciTePress user now for free.

Sign In SciTePress user: please login.

PDF ImageMy Papers

You are not signed in, therefore limits apply to your IP address 3.16.76.36

In the current month:
Recent papers: 100 available of 100 total
2+ years older papers: 200 available of 200 total

Paper citation in several formats:
Salva, S. and Sue, J. (2024). Security Testing of RESTful APIs with Test Case Mutation. In Proceedings of the 19th International Conference on Evaluation of Novel Approaches to Software Engineering - ENASE; ISBN 978-989-758-696-5; ISSN 2184-4895, SciTePress, pages 582-589. DOI: 10.5220/0012698600003687

@conference{enase24,
author={Sébastien Salva and Jarod Sue},
title={Security Testing of RESTful APIs with Test Case Mutation},
booktitle={Proceedings of the 19th International Conference on Evaluation of Novel Approaches to Software Engineering - ENASE},
year={2024},
pages={582-589},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0012698600003687},
isbn={978-989-758-696-5},
issn={2184-4895},
}

TY - CONF

JO - Proceedings of the 19th International Conference on Evaluation of Novel Approaches to Software Engineering - ENASE
TI - Security Testing of RESTful APIs with Test Case Mutation
SN - 978-989-758-696-5
IS - 2184-4895
AU - Salva, S.
AU - Sue, J.
PY - 2024
SP - 582
EP - 589
DO - 10.5220/0012698600003687
PB - SciTePress