{"id":"https://openalex.org/W2902019482","doi":"https://doi.org/10.1109/icacci.2018.8554656","title":"Vulnerability Coverage Criteria for Security Testing of Web Applications","display_name":"Vulnerability Coverage Criteria for Security Testing of Web Applications","publication_year":2018,"publication_date":"2018-09-01","ids":{"openalex":"https://openalex.org/W2902019482","doi":"https://doi.org/10.1109/icacci.2018.8554656","mag":"2902019482"},"language":"en","primary_location":{"id":"doi:10.1109/icacci.2018.8554656","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icacci.2018.8554656","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Conference on Advances in Computing, Communications and Informatics (ICACCI)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5044133962","display_name":"PVR Murthy","orcid":"https://orcid.org/0000-0001-6398-4762"},"institutions":[{"id":"https://openalex.org/I302410947","display_name":"M S Ramaiah University of Applied Sciences","ror":"https://ror.org/02anh8x74","country_code":"IN","type":"education","lineage":["https://openalex.org/I302410947"]}],"countries":["IN"],"is_corresponding":true,"raw_author_name":"P.V.R. Murthy","raw_affiliation_strings":["Department of Computer Science and Engineering, M S Ramaiah University of Applied Sciences, Bangalore, India"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, M S Ramaiah University of Applied Sciences, Bangalore, India","institution_ids":["https://openalex.org/I302410947"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5083473144","display_name":"R. G. Shilpa","orcid":null},"institutions":[{"id":"https://openalex.org/I302410947","display_name":"M S Ramaiah University of Applied Sciences","ror":"https://ror.org/02anh8x74","country_code":"IN","type":"education","lineage":["https://openalex.org/I302410947"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"R.G. Shilpa","raw_affiliation_strings":["Department of Management, M S Ramaiah University of Applied Sciences, Bangalore, India"],"affiliations":[{"raw_affiliation_string":"Department of Management, M S Ramaiah University of Applied Sciences, Bangalore, India","institution_ids":["https://openalex.org/I302410947"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5044133962"],"corresponding_institution_ids":["https://openalex.org/I302410947"],"apc_list":null,"apc_paid":null,"fwci":1.5707,"has_fulltext":false,"cited_by_count":14,"citation_normalized_percentile":{"value":0.88536155,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"489","last_page":"494"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10734","display_name":"Information and Cyber Security","score":0.9912999868392944,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9901999831199646,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7711807489395142},{"id":"https://openalex.org/keywords/vulnerability-management","display_name":"Vulnerability management","score":0.6723247766494751},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.6687290072441101},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.6188605427742004},{"id":"https://openalex.org/keywords/secure-coding","display_name":"Secure coding","score":0.6141802072525024},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.607539713382721},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6061879396438599},{"id":"https://openalex.org/keywords/security-testing","display_name":"Security testing","score":0.579256534576416},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.5414997339248657},{"id":"https://openalex.org/keywords/software-security-assurance","display_name":"Software security assurance","score":0.40799248218536377},{"id":"https://openalex.org/keywords/information-security","display_name":"Information security","score":0.3773208558559418},{"id":"https://openalex.org/keywords/web-service","display_name":"Web service","score":0.25857681035995483},{"id":"https://openalex.org/keywords/security-information-and-event-management","display_name":"Security information and event management","score":0.2338084876537323},{"id":"https://openalex.org/keywords/security-service","display_name":"Security service","score":0.22052109241485596},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.21336820721626282},{"id":"https://openalex.org/keywords/cloud-computing-security","display_name":"Cloud computing security","score":0.19932183623313904},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.12105011940002441}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7711807489395142},{"id":"https://openalex.org/C172776598","wikidata":"https://www.wikidata.org/wiki/Q7943570","display_name":"Vulnerability management","level":4,"score":0.6723247766494751},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.6687290072441101},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.6188605427742004},{"id":"https://openalex.org/C22680326","wikidata":"https://www.wikidata.org/wiki/Q7444867","display_name":"Secure coding","level":5,"score":0.6141802072525024},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.607539713382721},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6061879396438599},{"id":"https://openalex.org/C195518309","wikidata":"https://www.wikidata.org/wiki/Q13424265","display_name":"Security testing","level":5,"score":0.579256534576416},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.5414997339248657},{"id":"https://openalex.org/C62913178","wikidata":"https://www.wikidata.org/wiki/Q7554361","display_name":"Software security assurance","level":4,"score":0.40799248218536377},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.3773208558559418},{"id":"https://openalex.org/C35578498","wikidata":"https://www.wikidata.org/wiki/Q193424","display_name":"Web service","level":2,"score":0.25857681035995483},{"id":"https://openalex.org/C103377522","wikidata":"https://www.wikidata.org/wiki/Q3493999","display_name":"Security information and event management","level":4,"score":0.2338084876537323},{"id":"https://openalex.org/C29983905","wikidata":"https://www.wikidata.org/wiki/Q7445066","display_name":"Security service","level":3,"score":0.22052109241485596},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.21336820721626282},{"id":"https://openalex.org/C184842701","wikidata":"https://www.wikidata.org/wiki/Q370563","display_name":"Cloud computing security","level":3,"score":0.19932183623313904},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.12105011940002441},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0},{"id":"https://openalex.org/C79974875","wikidata":"https://www.wikidata.org/wiki/Q483639","display_name":"Cloud computing","level":2,"score":0.0},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icacci.2018.8554656","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icacci.2018.8554656","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2018 International Conference on Advances in Computing, Communications and Informatics (ICACCI)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":14,"referenced_works":["https://openalex.org/W70390820","https://openalex.org/W274543231","https://openalex.org/W1581889583","https://openalex.org/W2016613525","https://openalex.org/W2065555413","https://openalex.org/W2143072251","https://openalex.org/W2144028411","https://openalex.org/W2144611797","https://openalex.org/W2166381878","https://openalex.org/W2507472597","https://openalex.org/W2621647126","https://openalex.org/W2714550548","https://openalex.org/W4237971447","https://openalex.org/W6602854063"],"related_works":["https://openalex.org/W2383958993","https://openalex.org/W3043810321","https://openalex.org/W2155353733","https://openalex.org/W2560421591","https://openalex.org/W2062583373","https://openalex.org/W2102558121","https://openalex.org/W658105165","https://openalex.org/W2901968602","https://openalex.org/W1484111652","https://openalex.org/W4313400739"],"abstract_inverted_index":{"Security":[0],"and":[1,56,107,117],"penetration":[2,70],"testing":[3],"tasks":[4],"for":[5,43,64,126,152],"web":[6,44,82,146],"applications":[7,45],"are":[8,73,121,142],"important":[9],"as":[10,51,61,114,123,137],"they":[11],"enable":[12],"detection":[13],"of":[14,54,67,80,101],"vulnerabilities":[15,60,88],"that":[16],"attackers":[17],"may":[18,91],"exploit.":[19],"Existing":[20],"security":[21,68,109,127],"coverage":[22,120],"criteria":[23,27,42,112],"or":[24,69,130],"test":[25,40,50,110,128,132],"adequacy":[26,41,111],"do":[28],"not":[29],"have":[30],"a":[31,48,52,62,81,124,145],"systematic":[32],"basis.":[33],"An":[34],"attempt":[35],"is":[36],"made":[37],"to":[38,59],"define":[39],"by":[46],"abstracting":[47],"functional":[49,78],"sequence":[53],"events":[55,58,90],"mapping":[57],"basis":[63,125],"the":[65,149],"design":[66,129],"tests.":[71],"Tests":[72],"designed":[74],"primarily":[75],"based":[76],"on":[77,144],"specifications":[79],"application,":[83],"however,":[84],"information":[85],"about":[86],"potential":[87],"at":[89],"be":[92],"gathered":[93],"from":[94,134],"different":[95],"relevant":[96],"sources":[97],"including":[98],"vulnerable":[99],"regions":[100],"application":[102,147],"code.":[103],"A":[104],"few":[105],"interesting":[106],"effective":[108],"such":[113,136],"vulnerability-length-1,":[115],"vulnerability-length-n":[116],"vulnerability":[118],"pair-wise":[119],"proposed":[122],"automatic":[131],"generation":[133],"models":[135],"finite-state":[138],"machines.":[139],"The":[140],"concepts":[141],"applied":[143],"in":[148],"banking":[150],"domain":[151],"demonstration":[153],"purposes.":[154]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2022,"cited_by_count":6},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}