Although web services are becoming business-critical components, they are often deployed with critical software bugs that can be maliciously explored. Web vulnerability scanners allow detecting security vulnerabilities in web services by stressing the service from the point of view of an attacker. However, research and practice show that different scanners have different performance on vulnerabilities detection. In this paper we present an experimental evaluation of security vulnerabilities in 300 publicly available web services. Four well known vulnerability scanners have been used to identify security flaws in web services implementations. A large number of vulnerabilities has been observed, which confirms that many services are deployed without proper security testing. Additionally, the differences in the vulnerabilities detected and the high number of false-positives (35% and 40% in two cases) and low coverage (less than 20% for two of the scanners) observed highlight the limitations of web vulnerability scanners on detecting security vulnerabilities in web services.
[1]
Marco Vieira,et al.
Testing and Comparing Web Vulnerability Scanning Tools for SQL Injection and XSS Attacks
,
2007
.
[2]
Toshinori Sato,et al.
Power-Performance Trade-Off of a Dependable Multicore Processor
,
2007
.
[3]
David A. Chappell,et al.
Java web services - using Java in service-oriented architectures
,
2002
.
[4]
Marco Vieira,et al.
Benchmarking Vulnerability Detection Tools for Web Services
,
2010,
2010 IEEE International Conference on Web Services.
[5]
Dafydd Stuttard,et al.
The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws
,
2007
.