RESEARCH AND ANALYSIS OF APPLICATION OF AUTOMATED TESTING IN WEB APPLICATIONS

The article discusses the issues of technology and methodology for automating the process of testing Web applications. Currently, developers and automation professionals are moving to popular developing development environments. In the process of developing and testing software in the team, not only developers and testers work, but also business professionals who define a set of changes when new versions of software products are released. When you update the product, an integral part of the release is the creation of automated testing. Means of providing automation is the use of an object-oriented approach to project implementation, a standard set of tools for providing processes for building and debugging programs, connecting auxiliary libraries for the programming language used (C++, C#, Java, etc.); checking the system versions, storing the automation project and the software product in one location.The main goal of this study is to identify and then analyze the weaknesses and strengths of methods for automating the testing of web applications, which are currently in the stage of rapid development. To carry out the research itself, information work was carried out (articles, reports, automation tools themselves) of the development stages of this topic. As a result, the authors made conclusions about further directions in the development of web application testing, identified the merits of existing solutions and identified areas that are not sufficiently developed.

Download Full-text

Developing Web-Application’s Automated Testing Technique

Vestnik NSU Series Information Technologies ◽

10.25205/1818-7900-2019-17-3-93-110 ◽

2019 ◽

Vol 17 (3) ◽

pp. 93-110

Author(s):

A. V. Tkachev ◽

D. V. Irtegov

Keyword(s):

Web Application ◽

Development Process ◽

Web Applications ◽

Assessment System ◽

Automated Testing ◽

Automatic Assessment ◽

Testing Technique ◽

Code Coverage ◽

Client Side ◽

User Actions

The article is devoted to the technique of automated testing of NSUts – automatic assessment system for programming tasks developed at NSU. The main priority for this technique is to test both the old and the new versions of the application, so that the same or minimally modified tests could be executed on two versions of the system with different architectures. This could be useful while organizing the development process for other applications with a long life cycle. To test not only the server but also the client side of the web application, we suggest using tools like Selenium WebDriver to simulate user actions by sending commands to real browsers. We use the well-known Page Object design pattern to handle differences in HTML layout and functionality, and describe a number of ways to make developed tests less fragile and easily adapt those to work with the new version of the system. The article also describes the use of this technique to organize automated testing of the NSUts system and analyzes its effectiveness. The analysis shows that the estimated code coverage by these tests is quite high, and therefore the technique can be considered effective and applied to other similar web applications.

Download Full-text

Mashup Service Recommendation Based on Usage History and Service Network

International Journal of Web Services Research ◽

10.4018/ijwsr.2013100104 ◽

2013 ◽

Vol 10 (4) ◽

pp. 82-101 ◽

Cited By ~ 9

Author(s):

Buqing Cao ◽

Jianxun Liu ◽

Mingdong Tang ◽

Zibin Zheng ◽

Guangrong Wang

Keyword(s):

Web Application ◽

Large Scale ◽

Web Applications ◽

Rapid Development ◽

Prototype System ◽

Service Recommendation ◽

Service Usage ◽

Service Network ◽

Application Programming ◽

Programming Interfaces

With the rapid development of Web2.0 and its related technologies, Mashup services (i.e., Web applications created by combining two or more Web APIs) are becoming a hot research topic. The explosion of Mashup services, especially the functionally similar or equivalent services, however, make services discovery more difficult than ever. In this paper, we present an approach to recommend Mashup services to users based on usage history and service network. This approach firstly extracts users' interests from their Mashup service usage history and builds a service network based on social relationships information among Mashup services, Web application programming interfaces (APIs) and their tags. The approach then leverages the target user's interest and the service social relationship to perform Mashup service recommendation. Large-scale experiments based on a real-world Mashup service dataset show that the authors' proposed approach can effectively recommend Mashup services to users with excellent performance. Moreover, a Mashup service recommendation prototype system is developed.

Download Full-text

Using web2py Python framework for creating data-driven web applications in the academic library

Library Hi Tech ◽

10.1108/lht-08-2015-0082 ◽

2016 ◽

Vol 34 (1) ◽

pp. 164-171 ◽

Cited By ~ 1

Author(s):

Mathew Miles

Keyword(s):

Open Source ◽

Web Application ◽

Web Applications ◽

Rapid Development ◽

Academic Library ◽

Ease Of Use ◽

Data Driven ◽

Application Framework ◽

Content Type ◽

Open Source Framework

Purpose – Many libraries have a need to develop their own data-driven web applications, but their technical staff often lacks the required specialized training – which includes knowledge of SQL, a web application language like PHP, JavaScript, CSS, and jQuery. The web2py framework greatly reduces the learning curve for creating data-driven websites by focussing on three main goals: ease of use; rapid development; and security. web2py follows a strict MVC framework where the controls and web templates are all written in pure Python. No additional templating language is required. The paper aims to discuss these issues. Design/methodology/approach – There are many frameworks available for creating database-driven web applications. The author had used ColdFusion for many years but wanted to move to a more complete web framework which was also open source. Findings – After evaluating a number of Python frameworks, web2py was found to provide the best combination of functionality and ease of use. This paper focusses on the strengths of web2py and not the specifics of evaluating the different frameworks. Practical implications – Librarians who feel that they do not have the skills to create data-driven websites in other frameworks might find that they can develop them in web2py. It is a good web application framework to start with, which might also provide a gateway to other frameworks. Originality/value – web2py is an open source framework that could have great benefit for those who may have struggled to create database-driven websites in other frameworks or languages.

Download Full-text

Web Application Penetration Testing Using SQL Injection Attack

JOIV International Journal on Informatics Visualization ◽

10.30630/joiv.5.3.470 ◽

2021 ◽

Vol 5 (3) ◽

pp. 320

Author(s):

Alde Alanda ◽

Deni Satria ◽

M.Isthofa Ardhana ◽

Andi Ahmad Dahlan ◽

Hanriyawan Adnan Mooduto

Keyword(s):

Web Application ◽

Web Applications ◽

Rapid Development ◽

Security Level ◽

Sensitive Information ◽

Sql Injection ◽

Web Application Security ◽

Penetration Testing ◽

Application Security ◽

Sql Injection Attack

A web application is a very important requirement in the information and digitalization era. With the increasing use of the internet and the growing number of web applications, every web application requires an adequate security level to store information safely and avoid cyber attacks. Web applications go through rapid development phases with short turnaround times, challenging to eliminate vulnerabilities. The vulnerability on the web application can be analyzed using the penetration testing method. This research uses penetration testing with the black-box method to test web application security based on the list of most attacks on the Open Web Application Security Project (OWASP), namely SQL Injection. SQL injection allows attackers to obtain unrestricted access to the databases and potentially collecting sensitive information from databases. This research randomly tested several websites such as government, schools, and other commercial websites with several techniques of SQL injection attack. Testing was carried out on ten websites randomly by looking for gaps to test security using the SQL injection attack. The results of testing conducted 80% of the websites tested have a weakness against SQL injection attacks. Based on this research, SQL injection is still the most prevalent threat for web applications. Further research can explain detailed information about SQL injection with specific techniques and how to prevent this attack.

Download Full-text

Reorganization of Web Site Structure Using Web Logs

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.756-759.1828 ◽

2013 ◽

Vol 756-759 ◽

pp. 1828-1834

Author(s):

Bo Song ◽

Sheng Bo Chen

Keyword(s):

Web Application ◽

Web Applications ◽

Rapid Development ◽

Site Structure ◽

Daily Work ◽

Web Logs ◽

Web Developers ◽

Existing Structure ◽

Development And Evolution ◽

The Web

With the rapid development and evolution of Internet, Web applications play a significant role in people's daily life and daily work. Usually, Web developers design the structure of the web application according to their experiences. But as the evolution of web applications, the existing structure is not enough to meet the needs of the users. This paper proposes an approach to reorganizing the structure of web applications dynamically based on Web logs. Obtained structure of the web application is more reasonable, more convenient to provide services for the users.

Download Full-text

The Solutions of SQL Injection Vulnerability in Web Application Security

International Journal of Engineering and Advanced Technology - Regular Issue ◽

10.35940/ijeat.f9395.088619 ◽

2019 ◽

Vol 8 (6) ◽

pp. 3803-3808

Keyword(s):

Web Application ◽

Web Applications ◽

Personal Information ◽

Rapid Development ◽

Research Work ◽

Healthcare Services ◽

Application Development ◽

Web Application Security ◽

Application Security ◽

Injection Risk

Web Applications are commonly using all the services made available online. The rapid development of the Internet of Things (IOT), all the organizations provides their services and controlled through an online, like online transaction of money, business transaction of buying and selling the products, healthcare services, military and GPS Systems. Web application development and maintenance is very difficult based on the security. Attacks are many forms to stealing the secure, personal information and privacy data. There is one major open source community Open Web Application Security Project (OWASP) providing information, development and validation of web application projects to make application to be secure. This research work, discussing few of the solutions, detection and prevention methods of Injection risk out of the top 10 OWASP risks. Due to the injection risk, impact on business that may lead to loss of information, unauthorized access of personal and secure information.

Download Full-text

DEVELOPMENT OF SOFTWARE FOR INTERACTIVE VISUALIZATION OF SYSTEMS AND UNITS OF TRANSPORT VEHICLES

Bulletin of Kharkov National Automobile and Highway University ◽

10.30977/bul.2219-5548.2021.92.1.45 ◽

2021 ◽

Vol 1 (92) ◽

pp. 45

Author(s):

Oleh Nikonov ◽

Diana Hlushkova ◽

Serhii Tymchenko

Keyword(s):

Augmented Reality ◽

Mobile Devices ◽

Web Application ◽

Business Processes ◽

Web Applications ◽

Interactive Visualization ◽

Human Interaction ◽

Software Products ◽

Digital World ◽

Develop Software

Problem. Constant innovations in technology lead to the development of new methods and paradigms of human interaction with the digital world. An essential requirement that determines the usefulness of visual models for solving specific problems is, in addition to the automated construction of such models, the clarity of the obtained images and the convenience of manipulating their properties. Goal. The purpose of the article is to develop software for interactive visualization of systems and units of transport vehicles. Methodology. One of the promising areas of interactive visualization is the use of augmented reality. With the advent of mass mobile devices that have the necessary characteristics to run augmented reality applications, it has become possible to solve both the main shortcomings of the systems - the lack of mobility and mass distribution. Results. When developing a web application with augmented reality technology, the mathematical and algorithmic bases of augmented reality, tools for developing web applications, developed the structure and description of the web application, developed a database that stores information about models, markers and feedback and user questions. Originality. The peculiarity of this work is the focus on the mass introduction of augmented reality in the fields of learning and design. Mobile devices, tablets and computers, which should only have a camera and an Internet connection, can be used as platforms to apply the results of the study. Practical value. The developed techniques and web application can be used directly in the design of software products for use in the field of transport engineering, business processes, design, as well as in education and other fields.

Download Full-text

On web-applications usability testing

Российский технологический журнал ◽

10.32362/2500-316x-2019-7-6-9-24 ◽

2020 ◽

Vol 7 (6) ◽

pp. 9-24 ◽

Cited By ~ 1

Author(s):

Boris M. Basok ◽

Alena N. Rozhanskaya ◽

Sergey L. Frenkel

Keyword(s):

Test Data ◽

Web Application ◽

Web Applications ◽

Usability Testing ◽

Web Analytics ◽

User Data ◽

The Cost ◽

Automation Tools ◽

Technological University ◽

Test Scenarios

The paper discusses the task of organizing the usability testing of web applications that are in pilot or industrial operation. A usability testing technique is described that combines the development, debugging and execution of test scenarios, and analysis of the received test data. The development of test scenarios is based: on the use of the accumulated experience of users who have already worked with this application or with another, similar in functionality; on the use of web analytics, which can provide scenarios of the behavior of user data on the site; and on the use of statistical data on visits to specific pages. Simultaneously with this approach, a different approach is used in the construction of tests. It is based on the development of tests aimed at identifying defects in the program. Debugging and execution of test tasks is carried out in the same way as it is realized when performing functional testing of web applications using testing automation tools. In addition, the analysis of the data obtained during the operation using web analytics makes it possible to form a group of respondent testers, whose capabilities reflect the capabilities of the entire set of probable users of this web application. The approaches outlined in the work were put into practice. As an example, the article provides test data for the page of the admissions committee of MIREA – Russian Technological University – priem.mirea.ru. The obtained experimental data showed that, despite testing the usability of software at the development stages, some errors in the operation of web applications remain undetected. The cost of detecting and eliminating these errors increases significantly. Therefore, it is recommended in the work to increase the level of usability already in the early stages of development. In particular, for the operational prediction of the level of usability, it is desirable to have mathematical tools for modeling the behavior of the designed system and the user.

Download Full-text

A Real-Time Web Application Solution Based on Node.js and WebSocket

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.816-817.1111 ◽

2013 ◽

Vol 816-817 ◽

pp. 1111-1115 ◽

Cited By ~ 6

Author(s):

Shu Man Zhao ◽

Xiao Ling Xia ◽

Jia Jin Le

Keyword(s):

Real Time ◽

Web Application ◽

Web Applications ◽

Instant Messaging ◽

Rapid Development ◽

Trading System ◽

Processing Power ◽

Depth Study ◽

Real Time Information ◽

Time Information

With the rapid development of computer technology, the demand for real-time information is becoming higher, many real-time web applications such as online booking system, stock trading system, instant messaging system, are supposed to send the constant changes of the server to the client in real time. On the basis of in-depth study of WebSocket protocol in HTML5 standard, this paper proposes a new real-time web application solution based on Node.js and WebSocket, aiming to significantly enhancing real-time performance, and more efficiently using the processing power of the server. Finally, the new solution is applied in the game You draw, I guess to theoretically and practically study the viability of the solution and the advantages compared to traditional solutions.

Download Full-text

RESEARCH ON THE RECOGNITION OF CYBER ATTACKS ON THE SITE

NEWS OF THE NATIONAL ACADEMY OF SCIENCES OF THE REPUBLIC OF KAZAKHSTAN ◽

10.32014/2021.2518-1726.25 ◽

2021 ◽

Vol 2 (336) ◽

pp. 91-95

Author(s):

M. E. Raimov ◽

A. K. Mukasheva ◽

G. B. Isayeva ◽

K. Nuralbay

Keyword(s):

Information Security ◽

Web Application ◽

Web Applications ◽

Rapid Development ◽

Cyber Attacks ◽

The Internet ◽

Application Development ◽

Application Developers

The rapid development of the Internet has brought with it both positive and negative aspects. Every year, there are more and more people and methods that want to steal information and disrupt the work of the resource, to carry out other similar actions. In this regard, the issue of site resistance to various attacks becomes particularly relevant, that is, it leads to the emergence of a large number of projects that help web application developers to improve the reliability of their products. In fact, actions such as testing and polling a website, searching for web applications, allow you to determine as a good warning measure the shortcomings of application development and closed testing show that, in this way, it is possible to determine whether an application is resistant to information security.

Download Full-text