Web Application Vulnerability Detection Using Taint Analysis and Black-box Testing

Purpose This study aims to support an institution to hold an online meeting or conference in the middle of social distancing, which is currently in effect. Design/methodology/approach In developing this application, rapid application design methodology is used. The implementation used HTML5 and PHP for the Web and MySQL for the database and Agora Software Development Kit. To evaluate the application, the authors had a black box testing method. Findings This application will support the participant registration process, validation, payment, providing a link to the workshop to the participant, token and room name to be able to join an online meeting or conference up to the process of giving a digital attendance certificate to participants or members participating in it. Originality/value An integrated Web application provides full services, starting from the registration process, payment, the conference meeting itself and certificate of attendance.

Download Full-text

Research on Combine White-Box Testing and Black-Box Testing of Web Applications Security

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.989-994.4542 ◽

2014 ◽

Vol 989-994 ◽

pp. 4542-4546 ◽

Cited By ~ 2

Author(s):

Jie Fan ◽

Peng Gao ◽

Cong Cong Shi ◽

Ni Ge Li

Keyword(s):

Web Application ◽

Web Applications ◽

New Technology ◽

Black Box ◽

Web Application Security ◽

Testing Tools ◽

Black Box Testing ◽

Code Security ◽

White Box Testing ◽

Test Result

Contrary to high false positives rate of use White-box testing tools for Web application source code security and unable to locate vulnerabilities of use Black-box testing tools for Web application security, propose an effective method for combine White-box and Black-box testing tools of Web applications. This method will put the new technology of “Associated Files Matching Engine” into White-box testing tools, this test result and Black-box test result will be statistical analyzed and combined. Argumentation show, this method reduce the positives rate of White-box test result and be able to locate vulnerabilities where it is in file.

Download Full-text

Black-box testing based on colorful taint analysis

Science China Information Sciences ◽

10.1007/s11432-011-4291-y ◽

2011 ◽

Vol 55 (1) ◽

pp. 171-183 ◽

Cited By ~ 5

Author(s):

Kai Chen ◽

DengGuo Feng ◽

PuRui Su ◽

YingJun Zhang

Keyword(s):

Black Box ◽

Taint Analysis ◽

Black Box Testing

Download Full-text

Web-Gis Application Of Agricultural And Food Crop Management

Journal of Engineering and Scientific Research ◽

10.23960/jesr.v2i1.39 ◽

2020 ◽

Vol 2 (1) ◽

Author(s):

Salahuddin , Husaini, Anwar, Zulfan

Keyword(s):

Local Governments ◽

Web Application ◽

Local Community ◽

Crop Management ◽

Black Box ◽

Food Crops ◽

Food Crop ◽

Web Based ◽

Black Box Testing ◽

Agriculture And Food

This paper discusses web-based applications in the agricultural and food crops sectors in North Aceh district, Aceh Province, Indonesia. The agricultural and food crops sector is a mainstay sector of the people of North Aceh and local governments to move the economy and income of the local community. There are several superior agricultural products and food crops including rice, corn, sweet potatoes, green beans, long beans, cassava and potatoes. The North Aceh Government does not have sufficient applications to manage agricultural sector products. The research objective is to realize the independence of local food in order to support the national food security program. The mechanism used to design and make agricultural and food crop web applications starts from application design, application construction/coding, application testing and implementation system. After testing the web application by doing black box testing-white box and GUI testing to find out the side of the application display, application behavior and application durability. The results showed the application accuracy, stability and durability of the application reached 97.4%. The application web-based of agriculture and food crop management has been running as it should for mapping/GIS of superior agricultural commodities and GIS potential locations of agriculture and food crops in North Aceh. Keywords: Applicaton, GUI, Black Box Testing, GIS

Download Full-text

A BLOCKCHAIN-BASED ONLINE REVIEW SYSTEM OF TOURISM PRODUCTS USING ETHEREUM

Jurnal Techno Nusa Mandiri ◽

10.33480/techno.v18i1.2162 ◽

2021 ◽

Vol 18 (1) ◽

pp. 33-38

Author(s):

Mohamad Rafi Raihan Rizal

Keyword(s):

System Performance ◽

Web Application ◽

Black Box ◽

Online Review ◽

Unit Testing ◽

Review System ◽

Blockchain Technology ◽

Technological Advances ◽

Black Box Testing ◽

Digital Money

Rapid technological advances have made blockchain technology applicable not only to digital money, but in various fields. One of the areas that can be implemented by blockchain is digital tourism, specifically in the online review system of tourism products. The current online review system has several problems due to its centralized nature. The problem faced is the manipulation of review data which can be in the form of review deletion by a centralized party. This research proposes a decentralized online review system using the Ethereum blockchain technology, Smart Contracts, and IPFS to provide a secure, transparent, and trustworthy online review system platform. The purpose of this research is to implement a permission-less blockchain as a storage for reviews (review forms and log notes) and develop a web application as a user interface. The data used is data from travel sites which contain details about hotels and restaurants in Bukhara. The results displayed are the development of a web application that implements a permission-less blockchain using Ethereum and the system performance is displayed based on system testing, which comprised of unit testing and Black-Box testing.

Download Full-text

The SQL Injection Vulnerability Detection of the Web Application

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.198-199.1457 ◽

2012 ◽

Vol 198-199 ◽

pp. 1457-1461 ◽

Cited By ~ 1

Author(s):

You Chan Zhu ◽

Hui Li Liang

Keyword(s):

Web Application ◽

Black Box ◽

Vulnerability Detection ◽

Security Vulnerabilities ◽

Sql Injection ◽

Application System ◽

User Input ◽

Web Application System ◽

The Common ◽

The Web

the SQL injection is one of the common security vulnerabilities of the Web application. This paper studies how to find out the possible SQL injection vulnerabilities. The scheme this paper put forward is the technology of black-box test. The main steps are that firstly construct specific user input in the test period of the Web application system, and inject it into the application system, then get the vulnerability detection report according to the analysis of the test logs.

Download Full-text

Pengujian pada Aplikasi Penggajian Pegawai dengan menggunakan Metode Blackbox

Jurnal Informatika Universitas Pamulang ◽

10.32493/informatika.v5i1.4340 ◽

2020 ◽

Vol 5 (1) ◽

pp. 61

Author(s):

Vadlan Febrian ◽

Muhamad Rizki Ramadhan ◽

Muhammad Faisal ◽

Aries Saifudin

Keyword(s):

Data Entry ◽

Black Box ◽

Application Form ◽

Value Analysis ◽

Test Function ◽

Testing Method ◽

Black Box Testing ◽

Sample Testing ◽

Testing Techniques ◽

Program Error

In this employee payroll application, if there is an error program there will be a loss for employees and the company. Losses for employees, if this application program error occurs then the salary reduction will experience delays due to the difficulty in the process of calculating employee salaries and employees will be late in receiving salaries. Losses for the company, if there is an error program in this application, the company will suffer losses if the employee wants a salary reduction quickly but the company cannot calculate quickly and accurately. In solving this problem, the authors use the black box testing method. Black box testing method is a test that sees the results of execution through test data and ensures the function of the software. Black box testing method has several testing techniques, namely Sample Testing, Boundary Value Analysis, Equivalence Partitions and others. From the testing techniques that have been mentioned, we use the Equivalence Partitions testing technique. Equivalence Partitions are tests that refer to data entry on the employee payroll application form, input will be tested and then put together based on the test function, both valid and invalid values. The expected results of this test are a payroll system for employees who are computerized, have standard rules in the process of developing the program so that it is easy to develop and maintain, and can minimize errors in processing salary calculations for employees.

Download Full-text

Pengujian Sistem Informasi Inventory Pada Perusahaan Distributor Farmasi Menggunakan Metode Black Box Testing

Techno Xplore : Jurnal Ilmu Komputer dan Teknologi Informasi ◽

10.36805/technoxplore.v3i2.801 ◽

2018 ◽

Vol 3 (2) ◽

pp. 77-84

Author(s):

Lila Setiyani

Keyword(s):

Black Box ◽

End User ◽

Purchase Order ◽

Black Box Testing ◽

Unified Process

Pengelolaan dan pengontrolan produk sangat dibutuhkan oleh perusahaan yang bergerak di bidang distribusi farmasi, karena perusahaan distribusi farmasi membutuhkan perencanaan dan pengendalian persediaan dalam hal ini produk farmasi terkait dengan tanggal expired dan batch. Pada tahap analisis kebutuhan sistem terdapat beberapa prosedur yang terkait dengan inventory perusahaan distributor produk farmasi diantaranya adalah pengelolaan qoutation, sales order purchase order, penerimaan barang, retur barang, surat jalan, invoice, pembayaran, barang rusak dan pemusnahan barang. Sistem inventory untuk perusahaan distributor produk farmasi telah berhasil dibangun menggunakan metode Agile Unified Process dengan empat tahapan yaitu inception, elaboration, construction, dan transition. Pada tahapan transition dilakukan pengujian sistem inventory dengan menggunakan metode black box testing. Pengujian menggunakan black box testing ini bertujuan untuk mengetahui error yang terjadi ketika sistem digunakan oleh end user dengan pengujian data normal dan data tidak normal

Download Full-text

Efficient adaptation and high reusability of test suites in a black box testing environment

2015 23rd Telecommunications Forum Telfor (TELFOR) ◽

10.1109/telfor.2015.7377634 ◽

2015 ◽

Author(s):

M. Drazic Vignjevic ◽

M. Vucicevic ◽

M. Djukic ◽

B. Radin

Keyword(s):

Black Box ◽

Testing Environment ◽

Black Box Testing ◽

Test Suites

Download Full-text

Sistem Pendukung Keputusan untuk Menentukan Penerima Bantuan Beasiswa dengan Metode AHP dan TOPSIS

Sainteks ◽

10.30595/sainteks.v18i1.9613 ◽

2021 ◽

Vol 18 (1) ◽

pp. 65

Author(s):

Rima Dwi Mainingsih ◽

Muhammad Hamka

Keyword(s):

Analytical Hierarchy Process ◽

Black Box ◽

Ideal Solution ◽

Order Preference ◽

Black Box Testing ◽

Hierarchy Process

Salah satu program LAZISMU Banyumas adalah beasiswa. Beasiswa merupakan pemberian bantuan keuangan yang diberikan kepada perorangan yang bertujuan untuk meningkatkan kapasitas SDM atau Sumber Daya Manusia melalui pendidikan. Permasalahan di LAZISMU, sistem bantuan beasiswa masih bersifat manual maka diperlukan suatu sistem pendukung keputusan (SPK) untuk memperhitungkan segala kriteria yang mendukung pengambilan keputusan guna membantu, mempercepat dan mempermudah proses pengambilan keputusan. Metode yang digunakan pada sistem pendukung keputusan adalah metode Analytical Hierarchy Process (AHP) dan metode TOPSIS. Analytical Hierarchy Process (AHP) yang digunakan untuk memperbaiki nilai bobot dari kriteria. Nilai bobot yang dihasilkan dari metode AHP selanjutnya digunakan untuk menentukan proses peranking calon penerima bantuan beasiswa menggunakan metode Technique For Order Preference By Similarity To Ideal Solution (TOPSIS). Metode AHP dan TOPSIS digunakan untuk meningkatkan hasil rekomendasi calon penerima bantuan beasiswa. Hasil klasifikasi kemudian dievaluasi menggunakan Black Box Testing untuk mengetahui apakah fungsi, masukan dan keluaran dari perangkat lunak sesuai dengan spesifikasi yang dibutuhkan. Dengan demikian dapat disimpulkan bahwa sistem aplikasi telah berjalan sesuai dengan tujuan yang diharapkan, karena tidak ditemukan adanya kesalahan pada interface serta sistem yang dirancang dan dibangun mampu mengatasi kelemahan-kelemahan yang terdapat pada sistem yang lama dan memberikan hasil rekomendasi calon penerima bantuan beasiswa.Kata-kata Kunci: sistem pendukung keputusan, penerima beasiswa, AHP, TOPSIS, black box testing

Download Full-text