The Experts below are selected from a list of 7338 Experts worldwide ranked by ideXlab platform
Chien-hung Liu - One of the best experts on this subject based on the ideXlab platform.
-
Data flow analysis and testing of JSP-based Web applications
Information and Software Technology, 2006Co-Authors: Chien-hung LiuAbstract:Web applications often rely on Server-Side Scripts to handle HTTP requests, to generate dynamic contents, and to interact with other components. The Server-Side Scripts are usually not checked by any compiler and, hence, can be error-prone. In this paper, we adapt traditional data flow testing techniques into the context of Java Server Pages (JSP), a very popular Server-Side Script for developing Web applications with Java Technology. We point out that the JSP implicit objects and action tags can introduce several unique data flow test artifacts which need to be addressed. A test model is presented to capture the data flow information of JSP pages with considerations of various implicit objects and action tags. Based on the test model, we describe an approach to compute the intraprocedural, interprocedural, and sessional data flow test paths for uncovering the data anomalies of JSP pages.
-
COMPSAC Workshops - Data flow analysis and testing of Java Server Pages
Proceedings of the 28th Annual International Computer Software and Applications Conference 2004. COMPSAC 2004., 1Co-Authors: Chien-hung LiuAbstract:Web applications often rely on Server-Side Scripts to handle HTTP requests, to generate dynamic contents, and to interact with other components. The Server-Side Scripts usually mix with HTML statements and are difficult to understand and test. In particular, these Scripts do not have any compiling check and could be error-prone. Thus, it becomes critical to test the Server-Side Scripts for ensuring the quality and reliability of Web applications. We adapt traditional dataflow testing techniques into the context of Java Server Pages (JSP), a very popular Server-Side Script for developing Web applications with Java technology. We point out that the JSP implicit objects and action tags can introduce several unique dataflow test artifacts which need to be addressed. A test model is presented to capture the dataflow information of JSP pages with considerations of various implicit objects and action tags. Based on the test model, we describe an approach to compute the intraprocedural and interprocedural data flow test paths for uncovering the data anomalies of JSP pages.
C. Craioveanu - One of the best experts on this subject based on the ideXlab platform.
-
MALWARE - Server-Side Script polumorphism: Techniques of analysis and defense
2008 3rd International Conference on Malicious and Unwanted Software (MALWARE), 2008Co-Authors: C. CraioveanuAbstract:It is said that more than 50% of web-based malware originates in malicious IFRAME injection attacks. But what is behind those pesky URLs? A while back, it was an easy task to find out - the code behind it was plain or just slightly obfuscated. Lately though, Script encryption routines have become more and more elegant and sophisticated. As attackers deploy exploits for a wide range of vulnerable components, it becomes not only an issue of evading security products, but also a way of protecting intellectual property (0-day vulnerabilities are a ldquovaluablerdquo asset).
Klaus Berberich - One of the best experts on this subject based on the ideXlab platform.
-
WISE - Unstoppable stateful PHP web services
Web Information Systems – WISE 2006, 2006Co-Authors: German Shegalov, Gerhard Weikum, Klaus BerberichAbstract:This paper presents the architecture and implementation of the EOS2 failure-masking framework for composite Web Services. EOS2 is based on the recently proposed notion of interaction contracts (IC), and provides exactly-once execution semantics for general, arbitrarily distributed Web Services in the presence of message losses and component crashes without requiring explicit coding effort by the application programmer. The EOS2 implementation masks failures by adding a recovery layer to popular Web technology products: (i) the Server-Side Script language PHP run on Apache Web server, and (ii) Internet browsers like IE to deliver recovery guarantees to the end-user.
Robert Barone - One of the best experts on this subject based on the ideXlab platform.
-
Client and Server Side Programming Concepts Incorporating Macromedia Flash
Computer Graphics and Multimedia, 1Co-Authors: Robert BaroneAbstract:This chapter demonstrates the usefulness of Macromedia Flash MX as a medium for providing interactive content. The motivation for using Flash is presented first. This is followed by an overview of Flash, a brief illustration of Flash’s animation ability, and a straightforward example of data communication from a Flash movie to an external Server-Side Script. Furthermore, basic concepts of object-oriented programming are introduced within the context of the application. The similarity of Flash’s ActionScript to other object-oriented Scripting languages is mentioned, and the important non-linear aspect of program development using Flash is pointed out. It is intended that an understanding of Flash’s underlying principles make it more accessible to a larger audience of web designers and developers.
German Shegalov - One of the best experts on this subject based on the ideXlab platform.
-
WISE - Unstoppable stateful PHP web services
Web Information Systems – WISE 2006, 2006Co-Authors: German Shegalov, Gerhard Weikum, Klaus BerberichAbstract:This paper presents the architecture and implementation of the EOS2 failure-masking framework for composite Web Services. EOS2 is based on the recently proposed notion of interaction contracts (IC), and provides exactly-once execution semantics for general, arbitrarily distributed Web Services in the presence of message losses and component crashes without requiring explicit coding effort by the application programmer. The EOS2 implementation masks failures by adding a recovery layer to popular Web technology products: (i) the Server-Side Script language PHP run on Apache Web server, and (ii) Internet browsers like IE to deliver recovery guarantees to the end-user.
