Web Application Scanners: Definitions and Functions

Published: August 01, 2007

Author(s)

Elizabeth N. Fong, Vadim Okun

Abstract

There are many commercial software security assurance tools that claim to detect and prevent vulnerabilities in application software. However, a closer look at the tools often leaves one wondering which tools find what flaws? This paper identifies a taxonomy of software security assurance tools and focuses on the definition of one type of tool: web application scanner - an automated program designed to examine web applications for security vulnerabilities. The types of functions that are generally found in a web application scanner are described.
Proceedings Title: Proceedings of Hawaii International Conference on System Sciences (HICSS) ? 40
Conference Location: HI
Conference Title: Hawaii International Conference on System Sciences (HICSS) ? 40
Pub Type: Conferences

Download Paper

Keywords

Software assurance, software security, software security assurance tool, vulnerability, web application
Created August 01, 2007, Updated February 17, 2017