Web Application Scanners: Definitions and Functions

Published: August 01, 2007


Elizabeth N. Fong, Vadim Okun


There are many commercial software security assurance tools that claim to detect and prevent vulnerabilities in application software. However, a closer look at the tools often leaves one wondering which tools find what flaws? This paper identifies a taxonomy of software security assurance tools and focuses on the definition of one type of tool: web application scanner - an automated program designed to examine web applications for security vulnerabilities. The types of functions that are generally found in a web application scanner are described.
Proceedings Title: Proceedings of Hawaii International Conference on System Sciences (HICSS) ? 40
Conference Location: HI
Conference Title: Hawaii International Conference on System Sciences (HICSS) ? 40
Pub Type: Conferences

Download Paper


Software assurance, software security, software security assurance tool, vulnerability, web application
Created August 01, 2007, Updated February 17, 2017