Dissertations / Theses on the topic 'Test Web'
To see the other types of publications on this topic, follow the link: Test Web.
Create a spot-on reference in APA, MLA, Chicago, Harvard, and other styles
Consult the top 50 dissertations / theses for your research on the topic 'Test Web.'
Next to every source in the list of references, there is an 'Add to bibliography' button. Press on it, and we will generate automatically the bibliographic reference to the chosen work in the citation style you need: APA, MLA, Harvard, Chicago, Vancouver, etc.
You can also download the full text of the academic publication as pdf and read online its abstract whenever available in the metadata.
Browse dissertations / theses on a wide variety of disciplines and organise your bibliography correctly.
1
Petrenko, V. "Test automation for web applications." Thesis, Видавництво СумДУ, 2012. http://essuir.sumdu.edu.ua/handle/123456789/26056.
Full textAbstract:
Most software applications today are written as web-based applications to be run in Internet browser. The effectiveness of these applications testing varies widely among companies and organiza-tions. In the era of highly interactive and responsible software processes when a lot of organizations use some forms of Agile methodology, test automation is becoming a current requirement for software projects. Test automation often gives the answer. This process means using a software tool to run repeatable tests against the application to be tested. It provides quality of regression testing.
When you are citing the document, use the following link http://essuir.sumdu.edu.ua/handle/123456789/26056
2
Rabhi, Issam. "Testabilité des services Web." Phd thesis, Université Blaise Pascal - Clermont-Ferrand II, 2012. http://tel.archives-ouvertes.fr/tel-00738936.
Full textAbstract:
Cette thèse s'est attaquée sous diverses formes au test automatique des services Web : une première partie est consacrée au test fonctionnel à travers le test de robustesse. La seconde partie étend les travaux précédents pour le test de propriétés non fonctionnelles, telles que les propriétés de testabilité et de sécurité. Nous avons abordé ces problématiques à la fois d'un point de vue théorique et pratique. Nous avons pour cela proposé une nouvelle méthode de test automatique de robustesse des services Web non composés, à savoir les services Web persistants (stateful) et ceux non persistants. Cette méthode consiste à évaluer la robustesse d'un service Web par rapport aux opérations déclarées dans sa description WSDL, en examinant les réponses reçues lorsque ces opérations sont invoquées avec des aléas et en prenant en compte l'environnement SOAP. Les services Web persistants sont modélisés grâce aux systèmes symboliques. Notre méthode de test de robustesse dédiée aux services Web persistants consiste à compléter la spécification du service Web afin de décrire l'ensemble des comportements corrects et incorrects. Puis, en utilisant cette spécification complétée, les services Web sont testés en y intégrant des aléas. Un verdict est ensuite rendu. Nous avons aussi réalisé une étude sur la testabilité des services Web composés avec le langage BPEL. Nous avons décrit précisément les problèmes liés à l'observabilité qui réduisent la faisabilité du test de services Web. Par conséquent, nous avons évalué des facteurs de la testabilité et proposé des solutions afin d'améliorer cette dernière. Pour cela, nous avons proposé une approche permettant, en premier lieu, de transformer la spécification ABPEL en STS. Cette transformation consiste à convertir successivement et de façon récursive chaque activité structurée en un graphe de sous-activités. Ensuite, nous avons proposé des algorithmes d'améliorations permettant de réduire ces problèmes de testabilité. Finalement, nous avons présenté une méthode de test de sécurité des services Web persistants. Cette dernière consiste à évaluer quelques propriétés de sécurité, tel que l'authentification, l'autorisation et la disponibilité, grâce à un ensemble de règles. Ces règles ont été crée, avec le langage formel Nomad. Cette méthodologie de test consiste d'abord à transformer ces règles en objectifs de test en se basant sur la description WSDL, ensuite à compléter, en parallèle, la spécification du service Web persistant et enfin à effectuer le produit synchronisé afin de générer les cas de test.
3
Bentakouk, Lina. "Test symbolique de services web composite." Phd thesis, Université Paris Sud - Paris XI, 2011. http://tel.archives-ouvertes.fr/tel-00675918.
Full textAbstract:
L'acceptation et l'utilisation des services Web en industrie se développent de par leursupport au développement d'application distribuées comme compositions d'entitéslogicielles plus simples appelées services. En complément à la vérification, le testpermet de vérifier la correction d'une implémentation binaire (code source nondisponible) par rapport à une spécification. Dans cette thèse, nous proposons uneapproche boîte-noire du test de conformité de compositions de services centralisées(orchestrations). Par rapport à l'état de l'art, nous développons une approchesymbolique de façon à éviter des problèmes d'explosion d'espace d'état dus à la largeutilisation de données XML dans les services Web. Cette approche est basée sur desmodèles symboliques (STS), l'exécution symbolique de ces modèles et l'utilisationd'un solveur SMT. De plus, nous proposons une approche de bout en bout, quiva de la spécification à l'aide d'un langage normalisé d'orchestration (ABPEL) etde la possible description d'objectifs de tests à la concrétisation et l'exécution enligne de cas de tests symboliques. Un point important est notre transformation demodèle entre ABPEL et les STS qui prend en compte les spécifications sémantiquesd'ABPEL. L'automatisation de notre approche est supportée par un ensemble d'outilsque nous avons développés.
4
Sequeira, Sheldon. "Understanding web application test assertion failures." Thesis, University of British Columbia, 2014. http://hdl.handle.net/2429/50814.
Full textAbstract:
Developers often write test cases that assert the behaviour of a web application from an end-user’s perspective. However, when such test cases fail, it is difficult to relate the assertion failure to the faulty line of code. The challenges mainly stem from the existing disconnect between front-end test cases that assert the DOM and the application’s underlying JavaScript code. We propose an automated technique to help developers localize the fault related to a test failure. Through a combination of selective code instrumentation and dynamic backward slicing, our technique bridges the gap between test cases and program code. Through an interactive visualization, our approach, implemented in a tool called Camellia, allows developers to easily understand the dynamic behaviour of their application and its relation to the test cases. The results of our controlled experiment show that Camellia improves the fault localization accuracy of developers by a factor of two. Moreover, the implemented approach incurs a low performance overhead.Applied Science, Faculty of
Electrical and Computer Engineering, Department of
Graduate
5
Cao, Tien Dung. "Test and Validation of Web Services." Thesis, Bordeaux 1, 2010. http://www.theses.fr/2010BOR14122/document.
Full textAbstract:
Nous proposons dans cette thèse les approches de test pour la composition de services web. Nous nous intéressons aux test unitaire et d’intégration d’une orchestration de services web. L’aspect de vérification d’exécution en-ligne est aussi consideré. Nous définissons une plateforme de test unitaire pour l’orchestration de services web qui compose une architecture de test, une relation de conformité et deux approches de test basés sur le modèle de machine à l’états finis étendues temporisés: l’approche offline où les activités de test comme la génération de cas de test temporisé, l’exécution de test et l’assignement de verdict sont appliquées en séquentielle tandis que ces activités sont appliquées en parallèle dans l’approche online. Pour le test d’intégration d’une orchestration, nous combinons deux approches: active et passive.Au debut, l’approche active est utilisée pour activer une nouvelle session d’orchestration par l’envoi d’un message de requête SOAP. Après, tous les messages d’entré et de sortie de l’orchestration sont collectés et analysés par l’approche passive.Pour l’aspect de vérification d’exécution en-ligne, nous nous intéressons à la vérification d’une trace qui respecte un ensemble des constraintes, noté règles, ou pas. Nous avons proposé extendre le langage Nomad en définissant des constraintes sur chaque action atomique et un ensemble de corrélation de données entre les actions pour définir des règles pour le service web. Ce langage nous permet de définir des règles avec le temps futur et passé, et d’utiliser des opérations NOT, AND, OR pour combiner quelque conditions dans le contexte de la règle. Ensuite, nous proposons un algorithme pour vérifier l’exactitude d’une séquence des messages en parallèle avec le moteur de collecte de traceIn this thesis, we propose the testing approaches for web service composition. We focus on unit, integrated testing of an orchestration of web services and also the runtime verification aspect. We defined an unit testing framework for an orchestration that is composed of a test architecture, a conformance relation and two proposed testing approaches based on Timed Extended Finite State Machine (TEFSM) model: offline which test activities as timed test case generation, test execution and verdict assignment are applied in sequential, and online which test activities are applied in parallel. For integrated testing of an orchestration, we combines of two approaches: active and passive. Firstly, active approach is used to start a new session of the orchestration by sending a SOAP request. Then all communicating messages among services are collected and analyzed by a passive approach. On the runtime verification aspect, we are interested in the correctness of an execution trace with a set of defined constraints, called rules. We have proposed to extend the Nomad language, by defining the constraints on each atomic action (fixed conditions) and a set of data correlations between the actions to define the rules for web services. This language allows us to define a rule with future and past time, and to use the operations: NOT, AND, OR to combines some conditions into a context of the rule. Afterwards, we proposed an algorithm to check correctness of a message sequence in parallel with the trace collection engine. Specifically, this algorithm verifies message by message without storing them
6
Baek, Okbun. "Web based entry level mathematics test." CSUSB ScholarWorks, 2007. https://scholarworks.lib.csusb.edu/etd-project/3148.
Full text
7
Oh, Se Hun. "High-Level Test-Driven Learning Using Web Application and Web Service." ScholarWorks@UNO, 2010. http://scholarworks.uno.edu/td/1124.
Full textAbstract:
In order to introduce learning cases with real-world contexts to the Computer Science students in their early stage of learning, a set of Web applications that utilize Web services are simplified and customized to demonstrate the core concept of high-level test-driven learning methodology. Four e-commerce Web applications were implemented for this project. These applications show how real-world Web services work and interact with each other. By systematically planting a number of errors into the services, we created a learning environment for the students to understand the system structure and basic programming through their critical thinking. A goal is to keep students' interest in computer science. In doing so, a set of features that help students observe the systems' behavior are designed, and collectively formed a pattern of user interface "the Learner's Corner."
8
Arantes, Alessandro Oliveira. "WEB-PerformCharts: a web-based test case generator from statecharts modeling." Instituto Nacional de Pesquisas Espaciais (INPE), 2008. http://urlib.net/sid.inpe.br/mtc-m18@80/2008/07.14.19.42.
Full textAbstract:
O desenvolvimento distribuído de software é uma realidade cada vez mais comum onde equipes espalhadas por um país ou mesmo pelo mundo podem trabalhar juntas no desenvolvimento de um produto. Nesse sentido, a utilização da internet é o recurso o qual possibilita o trabalho cooperativo entre profissionais geograficamente distantes. A presente dissertação propõe uma ferramenta acessível pela internet, WEB-PerformCharts, que adapta as rotinas da ferramenta PerformCharts possibilitando a geração e armazenamento de casos de teste remotamente via internet pelos testadores de software. O funcionamento da ferramenta proposta se baseia na especificação de sistemas reativos utilizando a técnica Statecharts e na geração de casos de teste para a mesma de acordo com alguns métodos disponíveis. A maior contribuição deste trabalho diz respeito ao estudo de métodos apropriados para a geração de casos de teste aplicados a software embarcado, além de propiciar a utilização da WEB-PerformCharts remotamente com o objetivo de dar suporte aos processos de testes em um ambiente de desenvolvimento distribuído.Distributed development of software is an increasing approach where teams spread over a country or even over the world can work together in order to develop the product. Web appears as a valuable resource enabling the cooperative development of software by professionals geographically distant from each other. This dissertation proposes a web-based tool, WEBPerformCharts, which implements PerformCharts tool by adapting it to enable test designers to achieve generation of test sequences remotely via Internet. The goal of this proposed tool is to specify a reactive system in Statecharts, using the Web, and to generate test sequences according to a test case generation method. The main contribution of this dissertation is to investigate a test case generation method appropriate for space software specifications, besides enabling the use of WEB-PerformCharts through remote access with the objective of supporting the test process in a distributed development environment.
9
Shah, Anuj Ramesh. "Web-CAT: A Web-based Center for Automated Testing." Thesis, Virginia Tech, 2003. http://hdl.handle.net/10919/33109.
Full textAbstract:
The fundamentals of software testing and related activities are often elusive in undergraduate curricula. A direct consequence of the lack of software testing efforts during education is the huge losses suffered by the software industry when applications are not sufficiently tested. Software practitioners have exhorted faculty members and institutions to teach more software testing in universities.
The purpose of this research is to provide answers to the needs of such practitioners and introduce software-testing activities throughout the curriculum. The most important goal is to introduce software-testing education without requiring a significant amount of extra effort on behalf of faculty members or teaching assistants.
The approach taken comprises the development of the Web-based Center for Automated Testing (Web-CAT) and the introduction of test-driven development (TDD) in courses. Web-CAT serves as a learning environment for software testing tasks and helps automatically assess student assignments.
A comparison of student programs developed using Web-CAT with historical records indicated a significant decrease in the number of bugs in submitted programs. Undergraduate students also received exposure to the principles of software testing and were able to write test cases that were on an average better than those generated by an automated test case generator designed specifically for the assignment.Master of Science
10
Hayes, Kevin R. "Creation of PAIR test online application /." [Denver, Colo.] : Regis University, 2006. http://165.236.235.140/lib/KHayes2006.pdf.
Full text
11
Mahnke, Wolfgang. "World Wide Web basiertes Testen." [S.l.] : Universität Stuttgart , Fakultät Informatik, 1998. http://www.bsz-bw.de/cgi-bin/xvms.cgi?SWB6783556.
Full text
12
Ruth, Michael Edward. "Automating Regression Test Selection for Web Services." ScholarWorks@UNO, 2007. http://scholarworks.uno.edu/td/587.
Full textAbstract:
As Web services grow in maturity and use, so do the methods which are being used to test and maintain them. Regression Testing is a major component of most major testing systems but has only begun to be applied to Web services. The majority of the tools and techniques applying regression test to Web services are focused on test-case generation, thus ignoring the potential savings of regression test selection. Regression test selection optimizes the regression testing process by selecting a subset of all tests, while still maintaining some level of confidence about the system performing no worse than the unmodified system. A safe regression test selection technique implies that after selection, the level of confidence is as high as it would be if no tests were removed. Since safe regression test selection techniques generally involve code-based (white-box) testing, they cannot be directly applied to Web services due to their loosely-coupled, standards-based, and distributed nature. A framework which automates both the regression test selection and regression testing processes for Web services in a decentralized, end-to-end manner is proposed. As part of this approach, special consideration is given to the concurrency issues which may occur in an autonomous and decentralized system. The resulting synchronization method will be presented along with a set of algorithms which manage the regression testing and regression test selection processes throughout the system. A set of empirical results demonstrate the feasibility and benefit of the approach.
13
Kettunen, A. (Atte). "Test harness for web browser fuzz testing." Master's thesis, University of Oulu, 2015. http://urn.fi/URN:NBN:fi:oulu-201504161396.
Full textAbstract:
Modern web browsers are feature rich software applications available for different platforms ranging from home computers to mobile phones and modern TVs. Because of this variety, the security testing of web browsers is a diverse field of research. Typical publicly available tools for browser security testing are fuzz test case generators designed to target a single feature of a browser on a single platform. This work introduces a cross-platform testing harness for browser fuzz testing, called NodeFuzz. In the design of NodeFuzz, test case generators and instrumentation are separated from the core into separate modules. This allows the user to implement feature specific test case generators and platform specific instrumentations, and to execute those in different combinations. During development, NodeFuzz was tested with ten different test case generators and six different instrumentation modules. Over 50 vulnerabilities were uncovered from the tested web browsers during the development and testing of NodeFuzz.
14
Klang, Oskar. "Network Test Capability of Modern Web Browsers." Thesis, Luleå tekniska universitet, Institutionen för system- och rymdteknik, 2019. http://urn.kb.se/resolve?urn=urn:nbn:se:ltu:diva-75226.
Full textAbstract:
Web browsers are being used for network diagnostics. Users commonly verify their Internet speed by using a website, Bredbandskollen.se or speedtest.net for example. These test often need third party software, Flash or Java applets. This thesis aims at prototyping an application that pushes the boundaries of what the modern web browser is capable of producing regarding network measurements, without any third party software. The contributions of this thesis are a set of suggested tests that the modern browser should be capable of performing without third party software. These tests can potentially replace some of network technicians dedicated test equipment with web browser capable deceives such as mobile phones or laptops. There exist both TCP and UDP tests that can be combined for verifying some Quality of Service (QoS) metrics. The TCP tests can saturate a gigabit connection and is partially compliant with RFC 6349, which means the traditional Internet speed test sites can obtain more metrics from a gigabit throughput test then they do today.
15
Morales, Gerardo. "A testing methodology for the validation of web applications." Thesis, Evry, Institut national des télécommunications, 2010. http://www.theses.fr/2010TELE0014/document.
Full textAbstract:
L'objectif de cette thèse est d'assurer le bon comportement des aspects fonctionnels des systèmes basés sur le web. Pour atteindre cet objectif, nous nous basons dans ce manuscrit, sur deux approches différentes de test: l'approche active et l'approche passive. Le principe du test actif consiste à générer automatiquement une suite de scénarios de tests qui sera appliquée sur un système sous test pour en étudier sa conformité par rapport à ses besoins fonctionnels. Quant au test passif, il consiste à observer passivement le système sous test, sans interrompre le flux normal de ses opérations. Pour l'approche active, nous proposons une méthodologie qui permet de générer automatiquement des séquences de test afin de valider la conformité d'un système par rapport à la description formel du comportement du système. Le comportement est spécifié en utilisant un modèle formel basé sur des machines à états finis étendues temporisées (TEFSM). La génération automatique des tests est ensuite effectuée en utilisant des outils développés dans notre laboratoire et permet d'obtenir des cas de test exécutables qui permettent au moteur de test d'interagir avec une application web réel. Dans l’approche passive, nous spécifions des propriétés fonctionnelles à tester sous la forme d'invariants temporisés.Nous analysons ensuite les traces d’exécution d’un Web service composé afin d’élaborer un verdict sur sa conformité par rapport au comportement souhaité du système. Plusieurs algorithmes et outils sont fournis dans ce manuscrit pour effectuer le test actif et passif des systèmes Web. Nous avons appliqué nos méthodologies à divers systèmes (le Mission Handler et le Travel Reservation Service) pour illustrer les approches proposées sur des systèmes réelsThe objective of this thesis is to ensure the proper behaviour of the functional aspects of web based systems. To achieve this goal, we proposed two different test approaches: the active approach and the passive approach. Our goal is to automatically generate a suite of active test scenarios that will be applied on a system under test to examine its compliance with respect to its functional specification, and, when interrupting the normal flow of operation is problematic, to observe the system under test with passive testing. The goal of this work is developing a method and a set of tools to test web based systems using the active and passive testing approaches. Concerning the active testing approach, we present a methodology to cover the end-to-end testing process (from building the model until the test execution). This work tackles the gap between, on the one hand, generating abstract test cases from abstract models and, on the other hand, developing methods allowing concretizing these tests and automatically applying them on a real applications. Then, concerning the passive test approach, we present a methodology and a new tool for observing the behaviour of the communications of the web applications with external web services (for SOA based web applications) in order to check whether the observed behaviour is correct. All the methodologies and tools presented in this work are applied on two industrial case studies, Mission Handler and Travel Reservation Service, in order to validate our contributions in active and passive testing respectively
16
Milani, Fard Amin. "Directed test generation and analysis for web applications." Thesis, University of British Columbia, 2017. http://hdl.handle.net/2429/60439.
Full textAbstract:
The advent of web technologies has led to the proliferation of modern web applications with enhanced user interaction and client-side execution. JavaScript (the most widely used programming language) is extensively used to build responsive modern web applications. The event-driven and dynamic nature of JavaScript, and its interaction with the Document Object Model (DOM), make it challenging to understand and test effectively. The ultimate goal of this thesis is to improve the quality of web applications through automated testing and maintenance. The work presented in this dissertation has focused on advancing the state-of-the-art in testing and maintaining web applications by proposing a new set of techniques and tools. We proposed (1) a feedback-directed exploration technique and a tool to cover a subset of the state-space of a given web application; the exploration is guided towards achieving higher functionality, navigational, and page structural coverage while reducing the test model size, (2) a technique and a tool to generate UI tests using existing tests; it mines the existing test suite to infer a model of the covered DOM states and event-based transitions including input values and assertions; it then expands the inferred model by exploring alternative paths and generates assertions for the new states; finally it generates a new test suite from the extended model, (3) the first empirical study on JavaScript tests to characterize their prevalence and quality metrics, and to find out root causes for the uncovered (missed) parts of the code under test, (4) a DOM-based JavaScript test fixture generation technique and a tool, which is based on dynamic symbolic execution; it guides the executing through different branches of a function by producing expected DOM instances, (5) a technique and a tool to detect JavaScript code smells using static and dynamic analysis. We evaluated the presented techniques by conducting various empirical studies and comparisons. The evaluation results point to the effectiveness of the proposed techniques in terms of fault detection capability and code coverage for test generation, and in terms of accuracy for code smell detection.Applied Science, Faculty of
Electrical and Computer Engineering, Department of
Graduate
17
BIAGIOLA, MATTEO. "Test Generation and Dependency Analysis for Web Applications." Doctoral thesis, Università degli studi di Genova, 2020. http://hdl.handle.net/11567/991607.
Full textAbstract:
In web application testing existing model based web test generators derive test paths from a navigation model of the web application, completed with either manually or randomly generated inputs. Test paths extraction and input generation are handled separately, ignoring the fact that generating inputs for test paths is difficult or even impossible if such paths are infeasible. In this thesis, we propose three directions to mitigate the path infeasibility problem. The first direction uses a search based approach defining novel set of genetic operators that support the joint generation of test inputs and feasible test paths. Results show that such search based approach can achieve higher level of model coverage than existing approaches. Secondly, we propose a novel web test generation algorithm that pre-selects the most promising candidate test cases based on their diversity from previously generated tests. Results of our empirical evaluation show that promoting diversity is beneficial not only to a thorough exploration of the web application behaviours, but also to the feasibility of automatically generated test cases. Moreover, the diversity based approach achieves higher coverage of the navigation model significantly faster than crawling based and search based approaches. The third approach we propose uses a web crawler as a test generator. As such, the generated tests are concrete, hence their navigations among the web application states are feasible by construction. However, the crawling trace cannot be easily turned into a minimal test suite that achieves the same coverage due to test dependencies. Indeed, test dependencies are undesirable in the context of regression testing, preventing the adoption of testing optimization techniques that assume tests to be independent. In this thesis, we propose the first approach to detect test dependencies in a given web test suite by leveraging the information available both in the web test code and on the client side of the web application. Results of our empirical validation show that our approach can effectively and efficiently detect test dependencies and it enables dependency aware formulations of test parallelization and test minimization.
18
Feller, Nadjia Jandt. "Geração de testes de aceitação a partir de modelos U2TP para sistemas web." reponame:Biblioteca Digital de Teses e Dissertações da UFRGS, 2015. http://hdl.handle.net/10183/115214.
Full textAbstract:
A utilização desta abordagem no ciclo de desenvolvimento de uma aplicação web traz algumas vantagens, como ser necessário gerar manualmente apenas o modelo de comportamento de cada funcionalidade da aplicação, (pois os demais artefatos são gerados automaticamente), consumindo menos tempo e estando menos sujeitos a erros, além de prevenir diferentes interpretações dos requisitos pelos stakeholders, desenvolvedores e testadores. O tempo despendido na especificação dos modelos é compensado pelo tempo economizado com a geração dos cenários e do código de testes.The testing activity throughout software development is fundamental to the pursuit of software quality and reliability, finding faults to be removed. However, despite its importance, software testing is often an underutilized phase in software development. Moreover, tests are proved to be expensive, difficult and problematic when not done in the appropriate way. A new paradigm for software testing is model-driven testing (MDT), which can be defined as software testing where test cases are derived from a model that describes some aspects of the system being tested, such as behavior, for example. This description, often using UML diagrams and/or its profiles, can be processed to produce a set of test cases. Software specifications based on usage scenarios expressed by appropriate UML diagrams are considered significant and effective, because they describe the system’s requirements from an intuitive and visual perspective. Thus, they can be used for the description of acceptance tests, which validate that the system meets user requirements. These specifications also facilitate the automation of this kind of test. Test automation can decrease time spent on testing, thereby reducing the cost of this activity. Thus, this work proposes an approach for automated generation of acceptance tests from U2TP (the UML 2.0 test profile) diagrams for web applications, based on behavior driven development (BDD) paradigm, obtaining acceptance scenarios and executable test code supported by an acceptance testing automation framework. This approach was applied on an actual development environment, by means of an experiment. Using this approach in an web application development cycle has some advantages, such as being required only to manually generate the model of behavior of each application functionality (because other artifacts are generated automatically), thus being less time consuming and less prone to errors, and preventing different interpretations of requirements by stakeholders, developers and testers. The time spent at the models’ specification is compensated by the time saved with the generation of scenarios and test code.
19
Xiong, Pulei. "A Model-driven Penetration Test Framework for Web Applications." Thesis, Université d'Ottawa / University of Ottawa, 2012. http://hdl.handle.net/10393/20552.
Full textAbstract:
Penetration testing is widely used in industry as a test method for web application security assessment. However, penetration testing is often performed late in a software development life cycle as an isolated task and usually requires specialized security experts. There is no well-defined test framework providing guidance and support to general testers who usually do not have in-depth security expertise to perform a systematic and cost-efficient penetration test campaign throughout a security-oriented software development life cycle.
In this thesis, we propose a model-driven penetration test framework for web applications that consists of a penetration test methodology, a grey-box test architecture, a web security knowledge base, a test campaign model, and a knowledge-based PenTest workbench. The test framework enables general testers to perform a penetration test campaign in a model-driven approach that is fully integrated into a security-oriented software development life cycle. Security experts are still required to build up and maintain a web security knowledgebase for test campaigns, but the general testers are capable of developing and executing penetration test campaigns with reduced complexity and increased reusability in a systematic and cost-efficient approach.
A prototype of the framework has been implemented and applied to three web applications: the benchmark WebGoat web application, a hospital adverse event management system (AEMS), and a palliative pain and symptom management system (PAL-IS). An evaluation of the test framework prototype based on the case studies indicates the potential of the proposed test framework to improve how penetration test campaigns are performed and integrated into a security-oriented software development life cycle.
20
Lallali, Mounir. "Modélisation et Test Fonctionnel de l'Orchestration de Services Web." Phd thesis, Institut National des Télécommunications, 2009. http://tel.archives-ouvertes.fr/tel-00732511.
Full textAbstract:
Ces dernières années ont vu l'émergence d'architectures orientées services (SOA) conçues pour faciliter la création, l'exposition, l'interconnexion et la réutilisation d'applications à base de services. Les services Web sont la réalisation la plus importante de cette architecture SOA. Ce sont des applications auto descriptives et modulaires fournissant un modèle simple de programmation et de déploiement d'applications. La composition de services Web, en particulier l'orchestration, est au coeur de l'ingénierie à base de services (SOC pour Service Oriented Computing) puisque elle supporte la construction de nouveaux services composés à partir de services de base. De son côté, WS-BPEL (ou BPEL) s'est imposé depuis 2005 comme le langage standard d'orchestration de services Web. Cette thèse de Doctorat s'articule autour du test fonctionnel de l'orchestration de services décrite en langage BPEL, qui consiste à établir la conformité de l'implantation d'un service composé par rapport à sa spécification. Nos activités de recherche ont été motivées par les caractéristiques spécifiques de la composition de services surtout celle décrite en BPEL, et par la nécessité d'automatisation des tests. L'objectif de cette thèse est double : d'une part, proposer une modélisation formelle de l'orchestration de services, et d'autre part, proposer une méthode de test complète de l'orchestration de services, allant de la modélisation formelle de l'orchestration à l'exécution des tests, incluant la génération automatique de cas de test. Notre modèle formel (appelé WS-TEFSM) permet de décrire une grande partie de BPEL et prend en considération les propriétés temporelles de la composition de service. La modélisation formelle est la première phase de notre approche de test. Par conséquent, nous utilisons le modèle formel résultant pour la génération de cas de test satisfaisant un ensemble d'objectifs de test. L'automatisation de la génération de cas de test a été mise en oeuvre par l'implémentation d'une stratégie efficace d'exploration partielle de l'espace d'états (i.e. Hit-Or-Jump) dans le simulateur IF. Pour se focaliser seulement sur les erreurs potentielles du service orchestrateur (service composé), nous proposons une approche de test boîte grise consistant à simuler les services partenaires de cet orchestrateur. Nous avons abordé ces problématiques à la fois d'un point de vue théorique et pratique. En plus de la proposition d'une modélisation formelle de l'orchestration de services et d'un algorithme de génération de cas de test temporisés, nous avons implémenté ces deux concepts en développant deux prototypes. BPEL2IF permet de transformer une orchestration de services décrite en BPEL en une spécification formelle à base d'automates temporisés (spécification IF). TestGen-IF permet de dériver automatiquement des cas de test temporisés. Enfin, pour valider notre démarche, nous avons appliqué notre approche de test à des cas d'études de taille réelle.
21
Zheng, Yongyan. "An automatic test framework for BPEL-based Web Services." Thesis, University of Surrey, 2007. http://epubs.surrey.ac.uk/797502/.
Full textAbstract:
Recent years have seen·a rapid growth in the development of web services technology. BPEL (Business Process Execution Language) as a de-facto standard for web service orchestration has drawn particularly attention from researchers and industries. BPEL is a semi-formal flow language with complex features, so it is essential to apply automated validation tools in finding the interaction inconsistencies ofBPEL processes. In addition to validating the model properties by verification, it is desirable to test the correctness with respect to the functional requirements. To test a model thoroughly, we need to cover different execution scenarios. As is well known, it is tedious, time-consuming, and error prone to design test cases manually, especially for complex modelling languages. Hence, it is desirable to apply existing model-based-testing techniques in the domain of web services. This thesis proposes a web service automaton as the operational semantics for BPEL, and presents an automatic test framework to verify and test BPEL processes. From the testing point of view, we show the suitability of using web service automaton formalism for BPEL by modelling various BPEL features. Based on the web service automata, we provide a model checking based test framework to verify the general properties and generate test cases for BPEL processes. The framework supports both control-flow and data-flow testing of BPEL. Two levels of test cases can be generated to check the behavioural and interface conformance for web services. To our knowledge, none of the prior research studies the verification and testing for BPEL control and data flows in a unified approach.
22
Schröder, R. "Stabilität und Sicherheit im Web - Der Test webbasierter Anwendungen." Saechsische Landesbibliothek- Staats- und Universitaetsbibliothek Dresden, 2016. http://nbn-resolving.de/urn:nbn:de:bsz:14-qucosa-209320.
Full textAbstract:
Zusdammenfassung:
"Dieser Artikel zeigt auf der Basis von Beispielen aus der Beratungspraxis die Auswirkungen webbasierter Systeme auf den Softwareentwicklungsprozeß im Allgemeinen und den Test im Besonderen. Er stellt praktische Lösungsmöglichkeiten für die neuen Anforderungen dar. Der Artikel stützt sich auf die praktischen Erfahrungen, die in der Beratungspraxis des Autors gesammelt wurden.
Dr. Roland Schröder ist einer der Geschäftsführer der Bode Management Consultants aus Hamburg. Das 1996 gegründete Unternehmen hat sich auf die Organisations- und Technologieberatung von Versicherungsunternehmen spezialisiert und erzielte 1998 bereits einen Umsatz von 2,3 Mio. DM."
23
Schröder, R. "Stabilität und Sicherheit im Web - Der Test webbasierter Anwendungen." Josef Eul Verlag GmbH, 1999. https://tud.qucosa.de/id/qucosa%3A29758.
Full textAbstract:
Zusdammenfassung:
'Dieser Artikel zeigt auf der Basis von Beispielen aus der Beratungspraxis die Auswirkungen webbasierter Systeme auf den Softwareentwicklungsprozeß im Allgemeinen und den Test im Besonderen. Er stellt praktische Lösungsmöglichkeiten für die neuen Anforderungen dar. Der Artikel stützt sich auf die praktischen Erfahrungen, die in der Beratungspraxis des Autors gesammelt wurden.
Dr. Roland Schröder ist einer der Geschäftsführer der Bode Management Consultants aus Hamburg. Das 1996 gegründete Unternehmen hat sich auf die Organisations- und Technologieberatung von Versicherungsunternehmen spezialisiert und erzielte 1998 bereits einen Umsatz von 2,3 Mio. DM.
24
Shelly, David Andrew. "Using a Web Server Test Bed to Analyze the Limitations of Web Application Vulnerability Scanners." Thesis, Virginia Tech, 2010. http://hdl.handle.net/10919/34464.
Full textAbstract:
The threat of cyber attacks due to improper security is a real and evolving danger. Corporate and personal data is breached and lost because of web application vulnerabilities thousands of times every year. The large number of cyber attacks can partially be attributed to the fact that web application vulnerability scanners are not used by web site administrators to scan for flaws. Web application vulnerability scanners are tools that can be used by network administrators and security experts to help prevent and detect vulnerabilities such as SQL injection, buffer overflows, cross-site scripting, malicious file execution, and session hijacking.
However, these tools have been found to have flaws and limitations as well. Research has shown that web application vulnerability scanners are not capable of always detecting vulnerabilities and attack vectors, and do not give effective measurements of web application security. This research presents a method to analyze the flaws and limitations of several of the most popular commercial and free/open-source web application scanners by using a secure and insecure version of a custom-built web application. Using this described method, key improvements that should be made to web application scanner techniques to reduce the number of false-positive and false-negative results are proposed.Master of Science
25
Ghannem, Adnane. "Test des applications WEB : modélisation et génération de séquences de test basées sur le contrôle /." Trois-Rivières : Université du Québec à Trois-Rivières, 2006. http://www.uqtr.ca/biblio/notice/resume/24784448R.pdf.
Full text
26
Ghannem, Adnane. "Test des applications WEB : modélisation et génération de séquences de test basées sur le contrôle." Thèse, Université du Québec à Trois-Rivières, 2006. http://depot-e.uqtr.ca/1973/1/000135081.pdf.
Full text
27
Rintamaa, Rauno. "Single specimen fracture toughness determination procedure using instrumented impact test /." Espoo [Finland] : Technical Research Centre of Finland, 1993. http://bibpurl.oclc.org/web/30658.
Full text
28
McCool, Jon-Paul P. "PRAGIS: a test case for a web-based archaeological GIS." University of Cincinnati / OhioLINK, 2012. http://rave.ohiolink.edu/etdc/view?acc_num=ucin1342716096.
Full text
29
Strålfors, Annika. "Making test automation sharable: The design of a generic test automation framework for web based applications." Thesis, KTH, Skolan för datavetenskap och kommunikation (CSC), 2017. http://urn.kb.se/resolve?urn=urn:nbn:se:kth:diva-240981.
Full textAbstract:
The validation approach for assuring quality of software does often include the conduction of tests. Software testing includes a wide range of methodology depending on the system level and the component under test. Graphical user interface (GUI) testing consists of high level tests that assert that functions and design element in user interfaces work as expected. The research conducted in this paper focused on GUI testing of web based applications and the movement towards automated testing within the software industry. The question which formed the basis for the study was the following: How should a generic test automation framework be designed in order to allow maintenance between developers and non-developers? The study was conducted on a Swedish consultant company that provides e-commerce web solutions. A work strategy approach for automated testing was identified and an automation framework prototype was produced. The framework was evaluated through a pilot study where testers participated through the creation of a test suite for a specific GUI testing area. Time estimations were collected as well as qualitative measurements through a follow up survey. This paper presents a work strategy proposal for automated tests together with description of the framework system design. The results are presented with a subsequent discussion about the benefits and complexity of creating and introducing automated tests within large scale systems. Future work suggestions are also addressed together with accountancy of the frameworks usefulness for other testing areas besides GUI testing.
30
Silva, Delcio Nonato Araujo da. "WebTestManager : ferramenta de apoio ao processo de teste de aplicações web." reponame:Biblioteca Digital de Teses e Dissertações da UFRGS, 2003. http://hdl.handle.net/10183/115194.
Full textAbstract:
Este trabalho apresenta uma ferramenta para o gerenciamento do processo de teste de aplicações baseadas na Web, priorizando as fases de planejamento e execução através da integração com os resultados de ferramentas automatizadas. Nos últimos anos a World Wide Web apresentou um crescimento extraordinário com novas aplicações em diversas áreas, como por exemplo, comércio eletrônico, serviços governamentais, educação, entretenimento, entre outras, necessitando assim um maior controle de qualidade das aplicações baseadas na Web. A Engenharia para Web é uma nova disciplina cujo objetivo é a utilização de processos, abordagens sistemáticas, princípios de gerenciamento e de engenharia com a finalidade de projetar, implementar, testar e manter sistemas e aplicações baseados na Web com alta qualidade. A qualidade e a confiabilidade das aplicações Web devem ser controladas como em todo produto de software. Porém, algumas características particulares mostram que as aplicações Web devem exigir uma maior preocupação, em função da heterogeneidade de plataformas de hardware e de software, e do grande número de usuários. O teste de aplicações web deve abranger diversas áreas como validação de códigos, navegação, desempenho, usabilidade, segurança, compatibilidade, funcionalidade, interoperabilidade, confiabilidade e integridade dos dados. A ferramenta proposta neste trabalho, chamada de WebTestManager, realiza o planejamento do processo de teste voltado para aplicações Web, na qual casos de testes são introduzidos de acordo com os requisitos de cada área de teste. Esta ferramenta permite o armazenamento de informações de teste e seus resultados, possibilitando uma avaliação através de métricas de teste. Como estudo de caso, a ferramenta é exemplificada no planejamento do teste de uma aplicação de bancária desenvolvida para a Web e de uma aplicação de reserva e compra de passagens aéreas.This work presents a tool for the managing the testing process of Web based applications, which prioritizes the planning and execution phases with the integration of testing results from automated tools. In the last years, the World Wide Web has presented an extraordinary growth related to new applications on several areas, such as electronic trade, government services, education, and entertainment among others, needing though a larger quality control of applications based on that plataform. Web Engineering is a new discipline whose objective is the use of processes, systematic approaches, administration and engineering principles with the purpose of designing, implementing, testing and maintaining high quality systems based on the Web. The quality and reliability of Web applications should be controlled on every software product. However, some inherent characteristics show that the Web applications all demand a larger concern because of the heterogeneity of both hardware and software platforms, and the great number of users. The testing of Web applications all include several approaches such as validation of code, navigation, usability, safety, compatibility, functionality, interoperability, and integrity of data. The tool proposed in this work, called WebTestManager, accomplishes the planning of the testing process for Web applications. Through it, test cases can be introduced in agreement with requirements for each testing type. This tool shall allow the storage of testing information and its results, intented, for metric evaluation of the performed test. That information can be obtained through the execution of automated tools for each testing type. As case studies, the tool is exemplified through a test planning for both a bank application and a flight ticket reservation application on the Web.
31
Suwala, Pawel. "Challenges with modern web testing." Thesis, Linköpings universitet, Institutionen för datavetenskap, 2015. http://urn.kb.se/resolve?urn=urn:nbn:se:liu:diva-118268.
Full textAbstract:
The number of web applications continues to grow rapidly. Many applications that were traditionally desktop-based such as word processors, email clients or even file managers have now their web alternatives that often have bigger user base. While the software world is shifting from providing desktop-based applications to offering cloud-based services, challenges arise to provide high quality software in this radically different environment. Web-based applications are different in many aspects to their desktop equivalents. Web-based and desktop-based applications have radically dissimilar architecture, user interface, execution environment, requirements and limitations. To mention a few specific differences: the web application is executed in the context of a web browser, not operating system; code is executed in two separate places: on the server and in the web browser; code for the server is written in a different language than code for the client. Because of these differences, the traditional software testing techniques are only of limited use. To properly test a web application one needs to take into account numerous differences in Web-Browsers such as Internet Explorer, Mozilla Firefox, Google Chrome or Apple Safari. Simple input-output testing is useful only to limited degree, because output cannot be just compared to the predefined value but must be compared within the context of all the environments and operating systems the application supports. The fact that an application works in one browser does not guarantee that it will work at all in other browsers. The entire complexity of the problem makes testing web applications a very time consuming and difficult task. Often it takes significantly longer time to test the application than it is to implement it. Because of these difficulties, web applications are often tested exclusively manually by humans, and only to a limited degree. New techniques and technologies are necessary to approach the problem of web application testing. This paper includes a case study carried out during author’s work on a web-based application. It examines the current state-of-the-art of web application testing and suggests useful techniques in tackling the problem.
32
Hogenkamp, Peter. "Web-Usability : Modellentwicklung, Operationalisierung, Überprüfung /." Table on contents, 2008. http://aleph.unisg.ch/hsgscan/hm00231780.pdf.
Full text
33
Mirshokraie, Shabnam. "Effective test generation and adequacy assessment for Javascript-based web applications." Thesis, University of British Columbia, 2015. http://hdl.handle.net/2429/55127.
Full textAbstract:
Today's modern Web applications rely heavily on JavaScript and client-side run-time manipulation of the DOM (Document Object Model) tree. One way to provide assurance about the correctness of such highly evolving and dynamic applications is through testing. However, JavaScript is loosely typed, dynamic, and notoriously challenging to analyze and test. The work presented in this dissertation has focused on advancing the state-of-the-art in testing JavaScript-based web applications by proposing a new set of techniques and tools. We proposed (1) a new automated technique for JavaScript regression testing, which is based on inferring invariant assertions, (2) the first JavaScript mutation testing tool, capable of guiding the mutation generation towards behaviour-affecting mutants in error-prone portions of the code, (3) an automatic technique to generate test cases for JavaScript functions and events; Mutation analysis is used to generate test oracles, capable of detecting regression JavaScript and DOM-level faults, and (4) utilizing existing DOM-dependent assertions as well as useful execution information inferred from a DOM-based test suite to automatically generate assertions for unit-level testing of JavaScript functions. To measure the effectiveness of the proposed approaches, we evaluated each method presented in this thesis by conducting various empirical studies and comparisons with existing testing techniques. The evaluation results point to the effectiveness of the proposed test generation and test assessment techniques in terms of accuracy and fault detection capability.Applied Science, Faculty of
Electrical and Computer Engineering, Department of
Graduate
34
Kurin, Erik, and Adam Melin. "Data-driven test automation : augmenting GUI testing in a web application." Thesis, Linköpings universitet, Programvara och system, 2013. http://urn.kb.se/resolve?urn=urn:nbn:se:liu:diva-96380.
Full textAbstract:
For many companies today, it is highly valuable to collect and analyse data in order to support decision making and functions of various sorts. However, this kind of data-driven approach is seldomly applied to software testing and there is often a lack of verification that the testing performed is relevant to how the system under test is used. Therefore, the aim of this thesis is to investigate the possibility of introducing a data-driven approach to test automation by extracting user behaviour data and curating it to form input for testing. A prestudy was initially conducted in order to collect and assess different data sources for augmenting the testing. After suitable data sources were identified, the required data, including data about user activity in the system, was extracted. This data was then processed and three prototypes where built on top of this data. The first prototype augments the model-based testing by automatically creating models of the most common user behaviour by utilising data mining algorithms. The second prototype tests the most frequent occurring client actions. The last prototype visualises which features of the system are not covered by automated regression testing. The data extracted and analysed in this thesis facilitates the understanding of the behaviour of the users in the system under test. The three prototypes implemented with this data as their foundation can be used to assist other testing methods by visualising test coverage and executing regression tests.
35
Kudari, Sheetal. "An Ontology-based Automated Test Oracle Comparator for Testing Web Applications." Thesis, Malmö högskola, Fakulteten för teknik och samhälle (TS), 2011. http://urn.kb.se/resolve?urn=urn:nbn:se:mau:diva-20586.
Full textAbstract:
Traditional test oracles have two problems. Firstly, several test oracles are needed for a single software program to perform different functions and maintaining a large number of test oracles is tedious and might be prone to errors. Secondly, testers usually test only the important criteria of a web application, since its time consuming to check with all the possible criteria. Ontologies have been used in a wide variety of domains and they have also been used in software testing. However, they have not been used for test oracle automation. The main idea of this thesis is to define a procedure for how ontology-based test oracle automation can be achieved for testing web applications and minimize the problems of traditional test oracles. The proposed procedure consists of the following steps: first, the expected results are stored in ontology A by running previous working version of the web application; second, the actual results are stored in ontology B by running the web application under test at runtime; and finally, the results of both ontology A and B are compared. This results in an automated test oracle comparator. Evaluation includes how the proposed procedure minimizes the traditional test oracle problems and by identifying the benefits of the defined procedure.
36
Maughan, Chad. "Test Case Generation Using Combinatorial Based Coverage for Rich Web Applications." DigitalCommons@USU, 2012. https://digitalcommons.usu.edu/etd/1405.
Full textAbstract:
Web applications are increasingly moving business and processing logic from the server to the browser. Traditional, multiple-page request/response applications are quickly being replaced by single-page applications where complex application logic is downloaded on the initial page load and data is then subsequently fetched asynchronously via the browser's native XMLHttpRequest (XHR) object.
These new generation web applications are called Rich Web Applications (RWA). Frameworks such as the Google Web Toolkit (GWT), and JavaScript model-view-controller (MVC) frameworks such as Backbone.js are facilitating this move. With this migration, testing frameworks need to follow the logic by moving analysis and test generation from the server to the client. One problem hindering the movement of testing in this domain is the adoption of semantic URLs. This paper introduces a novel approach to systematically identify variables in semantic URLs and use them as part of the test generation process.
Using a sample RWA seeded with various JavaScript faults, I demonstrate in this thesis, as an empirical study, that combinatorial testing algorithms and reduction strategies also apply to new RWAs.
37
Fan, Haiyan. "Web personalization - a typology, instrument, and a test of a predictive model." Thesis, [College Station, Tex. : Texas A&M University, 2007. http://hdl.handle.net/1969.1/ETD-TAMU-1581.
Full text
38
Mallery, Christopher Jerry. "On the feasibility of using FSM approaches to test large web applications." Online access for everyone, 2005. http://www.dissertations.wsu.edu/Thesis/Spring2005/c%5Fmallery%5F041805.pdf.
Full text
39
Escobedo, Del Cid José Pablo. "Symbolic test case generation for testing orchestrators in context." Phd thesis, Institut National des Télécommunications, 2010. http://tel.archives-ouvertes.fr/tel-00625319.
Full textAbstract:
Web services are pieces of software offering functionalities to other (remote) machines over the Internet that work based on the Service-Oriented Architecture (SOA). They can be invoked by means of Web related standards (usually, SOAP, UDDI, XML, HTTP, WSDL. In the recent years, the usage of Web services has increased due to the flexibility and interoperability among heterogeneous platforms and operative systems that they provide. SOA adds value in terms of low coupling, re-usability of services and sharing; it makes the systems flexible and adaptive in case of changes in the business process and improves the integration of heterogeneous systems. Besides, new ways of using Web services have emerged, by combining them in order to create more complete (and complex) services. This process of re-using and combining Web services is called Web service composition, and its main objective is to allow the re-usability of the functionalities proposed by the Web services. This is why this architecture has been widely accepted by the companies all over the world: it helps reducing the cost and time to create business processes, and this is the type of systems we work with in this thesis, more specifically, we aim at ensuring their correct behavior by using testing techniques in order to detect possible errors.
40
Wong, Kwok-Leung, and Fredrik Nilsson. "Intelligent resource handling scheduling of automated test execution." Thesis, Department of Science and Technology, 2009. http://urn.kb.se/resolve?urn=urn:nbn:se:liu:diva-19768.
Full textAbstract:
The unit RTH, Radio Access Network Transmission and Home at Ericsson site in Linkoping uses today different test tool which are divided between different projects. Today they do not have any optimal solution for in an easy way execute the test cases from different projects concurrently, and share the test tools between the these projects.
All the execution of test cases which a test tool is needed needs to be configured and started manually which cost both time and money. Since the test tools are very expensive to use, it is desirable to increase the utilization. The purpose of this thesis is to provide RTH a working prototype which can in an intelligent way schedule and then automatically execute the test cases. The prototype shall consist of a web user interface and a scheduler part. The web user interface is going to be that part which the user works in, and the scheduler handles the prioritization and make sure that the test cases are executed.
To reach the goal with a working prototype, PHP and Java were picked as framework for the prototype. The theory behind these programming languages and more can be read in the theory chapter, and all the different methods which were used. The result of the working process can be read in the Result chapter.
The end prototype fulfills the customer’s requirement. Improvement and new functionalities are given as suggestion at the end of this thesis, where we also discuss the working process.
41
Mohsin, Farrukh. "A web based decision support system for status assessment in advanced parkinson." Thesis, Högskolan Dalarna, Datateknik, 2006. http://urn.kb.se/resolve?urn=urn:nbn:se:du-2483.
Full textAbstract:
The purpose of this work is to develop a web based decision support system, based onfuzzy logic, to assess the motor state of Parkinson patients on their performance in onscreenmotor tests in a test battery on a hand computer. A set of well defined rules, basedon an expert’s knowledge, were made to diagnose the current state of the patient. At theend of a period, an overall score is calculated which represents the overall state of thepatient during the period. Acceptability of the rules is based on the absolute differencebetween patient’s own assessment of his condition and the diagnosed state. Anyinconsistency can be tracked by highlighted as an alert in the system. Graphicalpresentation of data aims at enhanced analysis of patient’s state and performancemonitoring by the clinic staff. In general, the system is beneficial for the clinic staff,patients, project managers and researchers.
42
Gattucci, Sofia. "Analisi delle tecniche di test automatici del front-end di applicazioni web e loro implementazione in un progetto che utilizza React." Bachelor's thesis, Alma Mater Studiorum - Università di Bologna, 2019.
Find full textAbstract:
Svolgere diversi test durante lo sviluppo di un software e fondamentale per individuare
eventuali anomalie nel comportamento che esso adotta. E molto utile agli sviluppatori
riuscire a capire, tramite questo strumento, dove si colloca l'errore individuato e quale
anomalia produce, in modo da correggere tempestivamente gli errori. Infatti al rilascio
del software e importante che non siano presenti gravi errori sintattici e che esso sia
funzionale e corretto.
Svolgere test automatici, rispetto a quelli manuali, permette di velocizzare il processo
di test, di verificare una maggior quantità di codice e di ridurre i possibili sbagli commessi
da chi si occupa di svolgere i test manualmente.
In questo documento verrà trattato il tema dei test automatici sul front-end di applicazioni
web scritte con React, una libreria JavaScript sviluppata da Facebook, ampiamente
utilizzata per scrivere il front-end di complesse applicazioni web in modo intuitivo
e semplice.
Ho svolto la fase di studio e realizzazione dei test presso Antreem, un'azienda di
Imola che progetta e sviluppa soluzioni digitali per medie e grandi imprese. Sono stata
affiancata da un tutor aziendale il quale mi ha guidata e mi ha proposto il progetto sul
quale ho potuto svolgere i test automatici e su cui l'azienda sta tutt'ora lavorando.
Nel Capitolo 1 verrà introdotto in linea teorica il tema del test sul front-end di
applicazioni web, spiegando i pattern diffusi, le tipologie e le classifficazioni dei test e la
differenza tra test automatici e manuali.
Nel Capitolo 2 si parlerà di React e di come possono essere svolti test su applicazioni
che utilizzano questa libreria, presentando anche alcuni tra gli strumenti più diffusi per
scrivere test automatici su tali applicazioni.
Nel Capitolo 3 verrà presentato un progetto sul quale ho potuto svolgere i test automatici,
iniziando dalla fase di analisi, passando per la ricerca e lo studio dei framework
da utilizzare e implementando infine i test automatici.
43
Wilhelm, Daniel B. "Pre-Test eines Modells zur Erklärung der Nutzerakzeptanz von web-basierten “sozialen” Unternehmensanwendungen." Technische Universität Dresden, 2010. https://tud.qucosa.de/id/qucosa%3A28033.
Full text
44
Kuchimanchi, Sriram. "Towards a regression test selection technique for message-based software integration." ScholarWorks@UNO, 2004. http://louisdl.louislibraries.org/u?/NOD,164.
Full textAbstract:
Thesis (M.S.)--University of New Orleans, 2004.Title from electronic submission form. "A thesis ... in partial fulfillment of the requirements for the degree of Master of Science in the Department of Computer Science."--Thesis t.p. Vita. Includes bibliographical references.
45
Sjöquist, Joakim. "Building a suitable testing-platform to measure impact of typographic effects on web pages." Thesis, Mittuniversitetet, Institutionen för informationssystem och –teknologi, 2020. http://urn.kb.se/resolve?urn=urn:nbn:se:miun:diva-39333.
Full textAbstract:
The purpose of this study was to create a testing-platform that mea- sures the impact of typographic effects on web pages. This study chose to focus on highlighted text (text with high contrast background- color) as a typographic tool. The platform is a website, consisting of three (3) pages; (1) the first gathers test user information; (2) the sec- ond (subject-section) records time read and applies an authentication function; (3) the final page provides a multiple-choice questionnaire that records time tested, test score with same authentication method as page two. To test the platform, forty-nine participants were gathered, twenty-five participants (named Group Highlight Text) performed the test with highlight effects turned on and visible in page two (2), the remaining twenty-four (named Group Regular Text) read same page with no effects toggled or visible. Both groups were tested on page three (3) with six questions. The testing-platform fulfilled all expected requirements, with some sections requiring further development. The participation test data revealed some interesting results that could be analyzed further with assistance from social science research. In con- clusion, the test platform successfully recorded viable data that could be used in many fields, but will need additional technical work before being adopted in real-world applications. Further study could be im- plemented in collaboration with researchers from the social sciences to analyze the effects of different typographic effects. Additionally, cre- ate platforms to extract, organize and visualize gathered data would be advantageous.
46
Vernotte, Alexandre. "A pattern-driven and model-based vulnerability testing for Web applications." Thesis, Besançon, 2015. http://www.theses.fr/2015BESA2024/document.
Full textAbstract:
Cette thèse propose une approche originale de test de vulnérabilité Web à partir de modèles etdirigée par des patterns de tests, nommée PMVT. Son objectif est d’améliorer la capacité de détectionde quatre types de vulnérabilité majeurs, Cross-Site Scripting, Injections SQL, Cross-Site RequestForgery, et Privilege Escalation. PMVT repose sur l’utilisation d’un modèle comportemental del’application Web, capturant ses aspects fonctionnels, et sur un ensemble de patterns de test devulnérabilité qui adressent un type de vulnérabilité de manière générique, quelque soit le type del’application Web sous test.Par l’adaptation de technologies MBT existantes, nous avons développé une chaîne outillée complèteautomatisant la détection des quatre types de vulnérabilité. Ce prototype a été exprimenté et évaluésur deux applications réelles, actuellement utiliseés par plusieurs dizaines de milliers d’utilisateurs.Les résultats d’expérimentation démontrent la pertinence et de l’efficience de PMVT, notamment enaméliorant de façon significative la capacité de détection de vulnérabilités vis à vis des scannersautomatiques d’applications Web existantsThis thesis proposes an original approach, dubbed PMVT for Pattern-driven and Model-basedVulnerability Testing, which aims to improve the capability for detecting four high-profile vulnerabilitytypes, Cross-Site Scripting, SQL Injections, CSRF and Privilege Escalations, and reduce falsepositives and false negatives verdicts. PMVT relies on the use of a behavioral model of theapplication, capturing its functional aspects, and a set of vulnerability test patterns that addressvulnerabilities in a generic way. By adapting existing MBT technologies, an integrated toolchain that supports PMVT automates thedetection of the four vulnerability types in Web applications. This prototype has been experimentedand evaluated on two real-life Web applications that are currently used by tens of thousandsusers. Experiments have highlighted the effectiveness and efficiency of PMVT and shown astrong improvement of vulnerability detection capabilities w.r.t. available automated Web applicationscanners for these kind of vulnerabilities
47
Krpec, Ondřej. "Remote API Web Reference for Java Enterprise Applications." Master's thesis, Vysoké učení technické v Brně. Fakulta informačních technologií, 2018. http://www.nusl.cz/ntk/nusl-385946.
Full textAbstract:
Tato diplomová práce popisuje testování REST API rozhraní aplikací. Výsledkem práce je aplikace Restty, založená na použití nástroje Swagger, která umožňuje testovat jednotlivé části API aplikací, i vytvářet a spouštět komplexní testovací scénáře nad daným rozhraním. Teoretická část práce vysvětluje principy webových služeb, vzdálených rozhraní a představuje nástroj Swagger i technologie použité k implementaci. V následující kapitole jsou v práci prezentovány designové návrhy aplikace, na které plynule navazuje kapitola o implementaci a testování, pro které je zvoleno rozhraní nástroje Red Hat JBoss BPM Suite. V závěru práce jsou vyhodnoceny přínosy aplikace Restty a navrženy případné budoucí rozšíření.
48
Li, Sichun. "A Web-based User Experience Testing Environment for Small Design Firms." University of Cincinnati / OhioLINK, 2012. http://rave.ohiolink.edu/etdc/view?acc_num=ucin1353089196.
Full text
49
Padilla, Mondragon Rody, Gil Juan Daniel Cortez, Gil Juan Daniel Cortez, and Mondragon Rody Padilla. "Sistema experto web basado en reglas utilizando una batería de test psicológicos para apoyar al proceso de selección de intereses profesionales y ocupacionales de los estudiantes de 5to grado de secundaria de la Institución Educativa Particular Eliel School." Bachelor's thesis, Universidad Católica Santo Toribio de Mogrovejo, 2015. http://tesis.usat.edu.pe/handle/usat/538.
Full textAbstract:
La investigación alcanzó la mejora del proceso de orientación vocacional mediante la construcción de un sistema experto web aplicando una batería de 3 Test Psicológicos (Inventario de Intereses Profesionales y Ocupacionales (CASM–83), Inventario de Habilidades y Estrategias de Aprendizaje (HEA) y el Cuestionario Caracterológico de Gastón Berger (CCGB)). Cada uno de los instrumentos tiene un objetivo específico y a la vez se complementan para brindar un diagnóstico clínico acertado a los estudiantes de 5to grado de secundaria de la Institución Educativa Particular Eliel School. El tipo de investigación es cuasi experimental porque se formó al azar un grupo piloto y otro de prueba para elaborar los resultados y tecnológica aplicada porque a través del procesamiento de las reglas y mediante el motor de inferencia se identificó las carreras profesionales de los estudiantes. La construcción del sistema experto web resulta de la fusión de dos metodologías, la metodología IWEB para aplicación e IDEAL para sistema experto, realizando una serie de pruebas para asegurar que se descubran los errores de contenido, arquitectura, interface y navegación. El grado de confiabilidad del sistema experto web es de 97.51% permitiendo la entrega confiable y rápida del diagnóstico clínico por paciente, la información gráfica e histórica para la Psicóloga, reducción del índice de error en la revisión de los test de orientación vocacional. La aplicación permite registrar y actualizar las carreras profesionales, modificar o registrar nuevas reglas que generan el proceso de aprendizaje del sistema.Tesis
50
Svanemark, Carl-Henrik, and Jong Joakim de. "Definition av säkerhetsevaluering." Thesis, Karlstad University, Faculty of Economic Sciences, Communication and IT, 2009. http://urn.kb.se/resolve?urn=urn:nbn:se:kau:diva-4162.
Full textAbstract:
Detta examensarbete har gjorts på uppdrag av Compare Testlab på Sätterstrand, Hammarö. Målet med arbetet var att definera en uppsättning frågor och punkter som ska vara med i ett lättviktstest med inriktning på säkerhet. Efter mycket studier av böcker och webbsidor kom vi fram till att det inte var så lätt som vi trodde att definera ett allmänt säkerhetstest för mjukvaror eller applikationer. Efter samtal med uppdragsgivaren bestämdes det att arbetet skulle begränsas till webbapplikationer.Internet används mer och mer för varje år som går och det dyker upp nya webbapplikationer i snabbare takt än gamla försvinner. Många företag är beroende av webbapplikationer för att kunna bedriva versamhet. Även andra företag och organisationer, som inte är helt beroende av webbapplikationer, har ofta nytta av dem. Denna rapport behandlar vissapunkter och aspekter som man bör tänka på vid ett sådant test. Dessa punkter inkluderar till exempel autentisering, säker kommunikation och attacker mot webbapplikationer.
This work has been done on behalf of Compare Testlab that is located on Sätterstrand, Hammarö. The purpose of the work was to define a set of questions to be considered in a light-weight test with a focus on security. After a study of literature found in different books and at web pages we came to the conclusion that it is not as easy to define a general security test for software or applications as we thought from the beginning. Hence, after talking to the employer it was decided that the work should be limited to web applications.Internet is used more and more for every passing year and new web applications appear faster than old applications disappear. Many companies are dependant of web applications to be able to conduct business. Also, other companies or organisations that are not totally dependant of web applications often have good use of them. This report investigates some points and aspects to be considered in such a test. These points include for example authentication, secure communication and attacks on web applications.