An Approach for automated verification of web applications using model checking and replaying the scenarios of counterexamples

Paçin, Yudum
The increase in the use of web applications in various domains, raised the importance of the methodologies for verification of web applications. We propose a framework for the verification of web applications with respect to access control, link consistency and reachability properties using model checking. In this approach, users define the properties by explanatory guidance of user interface. The execution traces that lead to a property violation is translated to a script that automates the replaying of the counterexample scenarios on a web browser. This facility enables the user to observe incorrect behaviors of the web application with respect to specified properties so that the user is released from the tedious task of understanding and interpreting the counterexamples generated by the model checker. In addition, to automate this verification process, we need to automate the model extraction of a web application to be given to the model checker as an input. To this purpose, we use two dynamic web application crawlers and automatically transform their models to an intermediate web model we have developed. This intermediate web model both enables model extraction tool independence and gives the user to edit the model manually to increase precision of verification process. In order to evaluate the tool we developed for this purpose, we conducted a user study and the participants reported our tool to be useful for detecting and visualizing errors. We also evaluated the effectiveness on real web applications and observed that the tool can reveal real faults.


Web market analysis : static, dynamic, and content evaluation
Erdal, Feride; Arifoğlu, Ali; Department of Information Systems (2012)
Importance of web services increases as the technology improves and the need for the challenging e-commerce strategies increases. This thesis focuses on web market analysis of web sites by evaluating from the perspectives of static, dynamic and content. Firstly, web site evaluation methods and web analytic tools are introduced. Then evaluation methodology is described from three perspectives. Finally, results obtained from the evaluation of 113 web sites are presented as well as their correlations.
Query interface and query language for domain specific web service discovery system
Özdil, Hilal; Karagöz, Pınar; Department of Computer Engineering (2011)
As the number of the published web services increase, discovery of the web services with the desired functionality and quality is becoming a challenging process. Selecting the appropriate web services among the ones that o er the same functionality is also a challenging task. The web service repositories like UDDI (Universal Description Discovery and Integration) support only the syntactic searchs. Quality of service parameters for the published web services can not be queried over these repositories. We ha...
An Information security framework for web services in enterprise networks
Sarıkoz, Bahadır Gökhan; Günel Kılıç, Banu; Department of Information Systems (2015)
Web Service, an open standard based on existing Internet protocols, provides a flexible solution to web application integration. It provides faster, more practical and more effective way of solutions for the organizational structures. Online shopping, billing, reservation and other way of standards provided to people mostly depend on web services. On the other hand, it provides corporate identity and functionality of an organization. Since the importance and the necessity of the web services increase day by...
Automated test code generation and execution system for Web
İşler, Süleyman Fatih; Betin Can, Aysu; Department of Information Systems (2015)
With the development of Web 2.0, the trend in application development has moved from desktop applications towards to web applications. Although there are different ways of testing web applications such as record/replay systems and manual testing, the common practice of web testing is accomplished by manually implementing test script codes from test cases written in software test documents and then run them on test automation tools. Implementation of test script codes is time-consuming process and also requi...
Web service testing for domain specific web service discovery framework
Utku, Selma; Karagöz, Pınar; Department of Computer Engineering (2012)
The reliability of web services is important for both users and other service providers, with which they are in interaction. Thus, to guarantee reliability of the web services that are invoked and integrated at runtime, automatic testing of web services is needed. In web service testing, different test cases for web services are generated. The most important issue is to generate the most appropriate value for input parameters of web services at runtime. In this thesis, we developed a method for automatic we...
Citation Formats
Y. Paçin, “An Approach for automated verification of web applications using model checking and replaying the scenarios of counterexamples,” M.S. - Master of Science, Middle East Technical University, 2015.