Investigating the applicability of generating test cases for web applications based on traditional graph coverage

Context: Widgets are reusable User Interfaces (UIs) components frequently delivered in Web applications.In the web application, widgets implement different interaction scenarios, such as buttons, menus, and text input.Problem: Tests are performed manually, so the cost associated with preparing and executing test cases is high.Objective: Automate the process of generating functional test cases for web applications, using intermediate artifacts of the web development process that structure widgets in the web application. The goal of this process is to ensure the quality of the software, reduce overall software lifecycle time and the costs associated with tests.Method:We elaborated a test generation strategy and implemented this strategy in a tool, Morpheus Web Testing. Morpheus Web Testing extracts widget information from Java Server Faces artifacts to generate test cases for JSF web applications. We conducted a case study for comparing Morpheus Web Testing with a state of the art tool (CrawlJax).Results: The results indicate evidence that the approach Morpheus Web Testing managed to reach greater code coverage compared to a CrawlJax.Conclusion: The achieved coverage values represent evidence that the results obtained from the proposed approach contribute to the process of automated test software engineering in the industry.

Download Full-text

Towards Automated Bypass Testing of Web Applications

Web Engineering Advancements and Trends ◽

10.4018/978-1-60566-719-5.ch012 ◽

2010 ◽

pp. 212-229 ◽

Cited By ~ 1

Author(s):

J. Miller ◽

L. Zhang ◽

E. Ofuonye ◽

M. Smith

Keyword(s):

Test Data ◽

Web Applications ◽

Test Cases ◽

Web Based ◽

Is Security ◽

Mission Critical ◽

Client Side ◽

Input Validation

The construction and testing of Web-based systems has become more complex and challenging with continual innovations in technology. One major concern particularly for the deployment of mission critical applications is security. In Web-based systems, the principal vulnerabilities revolve around deficient input validation. This chapter describes a partially automated mechanism, the tool InputValidator, which seeks to address this issue through bypassing client-side checking and sending test data directly to the server to test the robustness and security of the back-end software. The tool allows a user to construct, execute and evaluate a number of test cases through a form-filling exercise instead of writing bespoke test code.

Download Full-text

Search for Prioritized Test Cases during Web Application Testing

International Journal of Applied Metaheuristic Computing ◽

10.4018/ijamc.2019040101 ◽

2019 ◽

Vol 10 (2) ◽

pp. 1-26 ◽

Cited By ~ 1

Author(s):

Munish Khanna ◽

Naresh Chauhan ◽

Dilip Kumar Sharma

Keyword(s):

Web Application ◽

Web Applications ◽

Greedy Algorithms ◽

Regression Testing ◽

Test Sequence ◽

Test Case ◽

Test Cases ◽

Average Percentage ◽

Heuristic Approaches ◽

Better Than

Regression testing of evolving software is a critical constituent of the software development process. Due to resources constraints, test case prioritization is one of the strategies followed in regression testing during which a test case that satisfies predefined objectives the most, as the tester perceives, would be executed the earliest. In this study, all the experiments were performed on three web applications consisting of 65 to 100 pages with lines of code ranging from 5000 to 7000. Various state-of-the-art approaches such as, heuristic approaches, Greedy approaches, and meta heuristic approaches were applied so as to identify the prioritized test sequence which maximizes the value of average percentage of fault detection. Performance of these algorithms was compared using different parameters and it was concluded that the Artificial Bee Colony algorithm performs better than all. Two novel greedy algorithms are also proposed in the study, of which the goal is to smartly manage the state of a tie, where a tie exhibits the condition that all the test cases participating in the tie are of equal significance in achieving the objective. It has also been validated that the performance of these novel proposed algorithm(s) is better than that of traditionally followed greedy approach, most of the time.

Download Full-text

Automated Generation of Performance Test Cases from Functional Tests for Web Applications

Communications in Computer and Information Science - Evaluation of Novel Approaches to Software Engineering ◽

10.1007/978-3-642-54092-9_12 ◽

2013 ◽

pp. 164-173 ◽

Cited By ~ 1

Author(s):

Federico Toledo Rodríguez ◽

Matías Reina ◽

Fabián Baptista ◽

Macario Polo Usaola ◽

Beatriz Pérez Lamancha

Keyword(s):

Web Applications ◽

Performance Test ◽

Test Cases ◽

Functional Tests ◽

Automated Generation

Download Full-text

Configuring effective navigation models and abstract test cases for web applications by analysing user behaviour

Software Testing Verification and Reliability ◽

10.1002/stvr.1496 ◽

2013 ◽

Vol 23 (6) ◽

pp. 439-464 ◽

Cited By ~ 10

Author(s):

Sara E. Sprenkle ◽

Lori L. Pollock ◽

Lucy M. Simko

Keyword(s):

Web Applications ◽

Test Cases ◽

User Behaviour

Download Full-text

FlakyLoc: Flakiness Localization for Reliable Test Suites in Web Applications

Journal of Web Engineering ◽

10.13052/jwe1540-9589.1927 ◽

2020 ◽

Author(s):

Jesús Morán ◽

Cristian Augusto ◽

Antonia Bertolino ◽

Claudio De La Riva ◽

Javier Tuya

Keyword(s):

Environmental Factors ◽

Web Application ◽

Web Applications ◽

Test Case ◽

Test Cases ◽

Root Cause ◽

Test Execution ◽

Fine Grain ◽

Asynchronous Communications

Web application testing is a great challenge due to the management of complex asynchronous communications, the concurrency between the clients-servers, and the heterogeneity of resources employed. It is difficult to ensure that a test case is re-running in the same conditions because it can be executed in undesirable ways according to several environmental factors that are not easy to fine-grain control such as network bottlenecks, memory issues or screen resolution. These environmental factors can cause flakiness, which occurs when the same test case sometimes obtains one test outcome and other times another outcome in the same application due to the execution of environmental factors. The tester usually stops relying on flaky test cases because their outcome varies during the re-executions. To fix and reduce the flakiness it is very important to locate and understand which environmental factors cause the flakiness. This paper is focused on the localization of the root cause of flakiness in web applications based on the characterization of the different environmental factors that are not controlled during testing. The root cause of flakiness is located by means of spectrum-based localization techniques that analyse the test execution under different combinations of the environmental factors that can trigger the flakiness. This technique is evaluated with an educational web platform called FullTeaching. As a result, our technique was able to locate automatically the root cause of flakiness and provide enough information to both understand it and fix it.

Download Full-text

Failure Detection Algorithm for Testing Dynamic Web Applications

International Journal of Computer and Communication Technology ◽

10.47893/ijcct.2017.1396 ◽

2017 ◽

pp. 37-41

Author(s):

J. Vijaya Sagar Reddy ◽

G. Ramesh

Keyword(s):

Web Sites ◽

Experimental Evaluation ◽

Web Application ◽

Web Applications ◽

Failure Detection ◽

Detection Algorithm ◽

The Internet ◽

Test Cases ◽

Dynamic Web ◽

The Web

Web applications are the most widely used software in the internet. When a web application is developed and deployed in the real environment, It is very severe if any bug found by the attacker or the customer or the owner of the web application. It is the very important to do the proper pre-analysis testing before the release. It is very costly thing if the proper testing of web application is not done at the development location and any bug found at the customer location. For web application testing the existing systems such as DART, Cute and EXE are available. These tools generate test cases by executing the web application on concrete user inputs. These tools are best suitable for testing static web sites and are not suitable for dynamic web applications. The existing systems needs user inputs for generating the test cases. It is most difficult thing for the human being to provide dynamic inputs for all the possible cases. This paper presents algorithms and implementation, and an experimental evaluation that revealed HTML Failures, Execution Failures, Includes in PHP Web applications.

Download Full-text

LDAP Vulnerability Detection in Web Applications

International Journal of Secure Software Engineering ◽

10.4018/ijsse.2017100102 ◽

2017 ◽

Vol 8 (4) ◽

pp. 31-50

Author(s):

Hossain Shahriar ◽

Hisham Haddad ◽

Pranahita Bulusu

Keyword(s):

Web Applications ◽

Fault Injection ◽

Test Case Generation ◽

Test Case ◽

Test Cases ◽

Vulnerability Detection ◽

Access Protocol ◽

Security Breaches ◽

Injection Attacks ◽

Level Information

Lightweight Directory Access Protocol (LDAP) is commonly used in web applications to provide lookup information and enforcing authentication. Web applications may suffer from LDAP injection vulnerabilities that can lead to security breaches such as login bypass and privilege escalation. This paper1 proposes OCL fault injection-based detection of LDAP injection attacks. The authors extract design-level information and constraints expressed in OCL and then randomly alter them to generate test cases that have the capability to uncover LDAP injection vulnerabilities. The authors proposed approaches to implement test case generation, and they used one open source PHP application and one custom application to evaluate the proposed approach. The analysis shows that this approach can detect LDAP injection vulnerabilities.

Download Full-text

Fault-Based Testing

Verification, Validation and Testing in Software Engineering ◽

10.4018/978-1-59140-851-2.ch001 ◽

2007 ◽

pp. 1-27

Author(s):

Marisa Analía Sanchez

Keyword(s):

Web Applications ◽

Fault Tree Analysis ◽

Test Cases ◽

System Behavior ◽

Tree Analysis ◽

Testing Model ◽

Duration Calculus ◽

Comprehensive Method ◽

State Chart ◽

Testing Approach

In this chapter, we review the state of the art and practice in fault-based testing. Based on the analysis and the reviews, we propose a comprehensive method for testing and present its main elements. Traditional fault-based testing is concerned with syntactic errors. These errors represent only a small portion of possible errors. Our testing approach is not restricted to these errors. We propose to use fault-tree analysis to determine how certain undesirable states can occur in a system. The results of the analysis expressed in terms of duration calculus formulas are integrated with state chart-based specifications. As a result, we obtain a testing model that provides a representation of the way the system behavior can be compromised by failures or abnormal conditions or interactions. In this way, we can automatically derive fault-based test cases. The example presented in this work illustrates the kinds of problems that arise in Web applications.

Download Full-text

Image-Based Approach to Determining Regression Test Results of Dynamic Web Applications

International Journal of Software Engineering and Knowledge Engineering ◽

10.1142/s0218194018500286 ◽

2018 ◽

Vol 28 (07) ◽

pp. 1001-1025 ◽

Cited By ~ 1

Author(s):

Akihiro Hori ◽

Shingo Takada ◽

Toshiyuki Kurabayashi ◽

Haruto Tanno

Keyword(s):

Web Application ◽

Web Applications ◽

Regression Testing ◽

Test Case ◽

Test Cases ◽

Test Results ◽

Test Execution ◽

Dynamic Web ◽

Regression Test ◽

Post Modification

Much work has been done on automating regression testing for applications. But most of them focus on test execution. Little work has been done on automatically determining if a test case passes or fails. This decision is often made by comparing the results of executing test cases on a base version of the application and post-modification version of the application. If the two results match, the test case passes, otherwise fails. However, to the best of our knowledge, there is no regression testing method for automatically deciding pass/fail of dynamic Web applications which use JavaScript or CSS. We propose a method that automatically decides if a dynamic Web application passes a regression test case. The basic idea is to obtain a screenshot each time the GUI of the Web application (i.e. Web page) changes its state, and then compare each corresponding screenshot to see if they match. The evaluation results showed that the accuracy rate of our approach is high and our approach can be considered as fast enough for practical use.

Download Full-text