Utilize este identificador para referenciar este registo:
https://hdl.handle.net/10316/100830
Título: | A Black Box Tool for Robustness Testing of REST Services | Autor: | Laranjeiro, Nuno Agnelo, João Bernardino, Jorge |
Palavras-chave: | REST; RESTful; web API; web services; robustness testing | Data: | 2021 | Projeto: | FCT project CISUC - UID/CEC/00326/2020 European Social Fund, through the Regional Operational Program Centro 2020 European Union's Horizon 2020 research and innovation program under the Marie Sklodowska-Curie grant agreement No 823788 (project ADVANCE project MobiWise P2020SAICTPAC/0011/2015 co-financed by COMPETE 2020, Portugal 2020 FEDER Regional Operational Programme of Lisbon (POR LISBOA 2020 Project 5G with Nr.024539 (POCI-01-0247-FEDER-024539) project ``Voice Architecture over Distributed Network'' (reference:POCI-01-0247-FEDER-039676) |
Título da revista, periódico, livro ou evento: | IEEE Access | Volume: | 9 | Resumo: | REST services are nowadays being used to support many businesses, with most major companies exposing their services via REST interfaces (e.g., Google, Amazon, Instagram, and Slack). In this type of scenarios, heterogeneity is prevalent and software is sometimes exposed to unexpected conditions that may activate residual bugs, leading service operations to fail. Such failures may lead to nancial or reputation losses (e.g., information disclosure). Although techniques and tools for assessing robustness have been thoroughly studied and applied to a large diversity of domains, REST services still lack practical approaches that specialize in robustness evaluation. In this paper, we present a tool (named bBOXRT) for performing robustness tests over REST services, solely based on minimal information expressed in their interface descriptions.We used bBOXRT to evaluate an heterogeneous set of 52 REST services that comprise 1,351 operations and t in distinct categories (e.g., public, private, in-house).We were able to disclose several different types of robustness problems, including issues in services with strong reliability requirements and also a few security vulnerabilities. The results show that REST services are being deployed preserving software defects that harm service integration, and also carrying security vulnerabilities that can be exploited by malicious users. | URI: | https://hdl.handle.net/10316/100830 | ISSN: | 2169-3536 | DOI: | 10.1109/ACCESS.2021.3056505 | Direitos: | openAccess |
Aparece nas coleções: | I&D CISUC - Artigos em Revistas Internacionais |
Ficheiros deste registo:
Ficheiro | Descrição | Tamanho | Formato | |
---|---|---|---|---|
A_Black_Box_Tool_for_Robustness_Testing_of_REST_Services.pdf | 5.48 MB | Adobe PDF | Ver/Abrir |
Citações SCOPUSTM
28
Visto em 15/abr/2024
Citações WEB OF SCIENCETM
23
Visto em 2/abr/2024
Visualizações de página
79
Visto em 23/abr/2024
Downloads
94
Visto em 23/abr/2024
Google ScholarTM
Verificar
Altmetric
Altmetric
Este registo está protegido por Licença Creative Commons