公开(公告)号：GB2503696A

公开(公告)日：2014-01-08

申请号：GB201211872

申请日：2012-07-04

Applicant: IBM

Inventor： BESKROVNY EVGENY ,  WURTH EMMANUEL ,  TRIPP OMER

IPC: G06F17/30

Abstract: A method (400) of searching a service registry system (200) comprising a plurality of services (120) identified by respective service names is disclosed in which at least some of said service names are associated with a set of client identifiers. The method at least comprises receiving (410) a search request (250) at said service registry system, said request including a service name (121) and a further set of client identifiers (251); searching (420) the service registry system for a match between the requested service name and a service name of one of said services in the service registry system; and in the absence of such a match, searching (250) the service registry system for services that have an association with at least some of the client identifiers in said further set; and returning a search result (260).

公开(公告)号：DE102012216597A1

公开(公告)日：2013-04-11

申请号：DE102012216597

申请日：2012-09-18

Applicant: IBM

Inventor： BESKROVNY EVGENY ,  TRIPP OMER

IPC: G06F11/36

Abstract: Es kann ein Berechtigungsalgorithmus einer Software-Komponente ausgewählt werden. Eine statische Codeanalyse kann durchgeführt werden, um eine bedingte Anweisung innerhalb eines Algorithmus der Software-Komponente zu ermitteln. Das Ergebnis der bedingten Anweisung kann auf der Grundlage einer Eingabe und eines Kriteriums mithilfe einer dynamischen Codeanalyse ermittelt werden. Bei der Eingabe kann es sich um einen Wert handeln, der einem Anspruchssatz einer Berechtigungsprüfungsrichtlinie auf der Grundlage von Ansprüchen zugehörig ist. Bei dem Kriterium kann es sich um ein Berechtigungsprüfungskriterium handeln, das innerhalb des Algorithmus angegeben ist. In Reaktion auf das Ergebnis kann ein Ausführungspfad ermittelt werden, der dem Ergebnis zugehörig ist, und ein Codeabdeckungskriterium kann für die bedingte Anweisung erfüllt werden.

公开(公告)号：GB2511047A

公开(公告)日：2014-08-27

申请号：GB201302971

申请日：2013-02-20

Applicant: IBM

Inventor： WURTH EMMANUEL ,  BESKROVNY EVGENY ,  TRIPP OMER

IPC: G06F11/36

Abstract: Providing context in functional testing of web services by using semantic analysis of web method names to categorise them into predefine categories defining interaction flows on the web and creating a context for a web method according to its category in the form of a sequence of methods providing appropriate contexts for testing the web method. Categorising method names may include receiving a file having a plurality of methods, grouping the methods according to their suffixes. Semantically analysing the prefixes to classify them in one of the predefined categories defining interaction flows on the web may include determining a confidence score for the classifying of each prefix and removing the category with low confidence scores. The methods may be grouped according to their suffixes to optimise a minimal number of groups with the similarity between suffixes of each method being maximal.

公开(公告)号：GB2502099A

公开(公告)日：2013-11-20

申请号：GB201208598

申请日：2012-05-16

Applicant: IBM

Inventor： BESKROVNY EVGENY ,  TRIPP OMER ,  WURTH EMMANUEL ,  CORMIER BERTRAND ,  GOUT JEROME

IPC: G06F11/36

Abstract: Method and system are provided for performance testing of web components using identity information. The method begins by providing a web component for testing having business logic code and an associated authorisation layer code 601. Next branches are located in the authorisation layer code and business logic code which are dependent on identity information 602. Symbolic identities with claims or attributes having values corresponding to the branch options (true or false) of the located branches are created at step 603. At step 604 the symbolic identities are propagated downstream from the branch locations through the authorisation layer code and the business logic code which may be carried out by static program analysis. Performance related facts may be collected 605 and the performance of each symbolic identity is analysed 607. The analysis may involve the use of a cost model and/or statistical analysis to determine which aspects of identity affect the performance of the web components.

公开(公告)号：GB2511329A

公开(公告)日：2014-09-03

申请号：GB201303562

申请日：2013-02-28

Applicant: IBM

Inventor： TRIPP OMER ,  BESKROVNY EVGENY ,  WURTH EMMANUEL

IPC: G06F11/36

Abstract: Synthesizing tests from a web service document comprising a function call identifier for locating at least one parameter for at least one client to server function call in a web service document, discovering client validation constraints 302 for the at least one parameter, discovering server validation constraints 303 for the at least one parameter in the web service document, calculating the difference 304 between the constraints and discovering at least one range for the at least one parameter that will be accepted by the server and not accepted by the client and building tests 305 using values in the identified rang. These values are used for inputs for black box testing so the input payload reaches the Web service business logic and the Web service is driven into an illegal state thereby returning an error message as the values are incompatible with the client side constraints, the error message being useful for black box validation.

公开(公告)号：GB2509723A

公开(公告)日：2014-07-16

申请号：GB201300415

申请日：2013-01-10

Applicant: IBM

Inventor： WURTH EMMANUEL ,  BESKROVNY EVGENY ,  TRIPP OMER

IPC: G06F9/54 ,  H04L29/08

Abstract: A method of invoking a web service in a software application comprises providing a software application comprising a machine-readable description of a functionality 105 to be supported by a web service to be invoked and a machine-readable description of an execution instruction 110 for the web service to be invoked, and determining a web service 115 that supports the function to be supported and the execution instruction. Determining a web service may comprise analyzing the description of a functionality to be supported so as to determine search parameters, and using these in conjunction with a web service search application (Figure 2). If several web services are identified as suitable, one may be selected in accordance with predetermined selection criteria such as age, version, cost, domain, processing requirements or historical use. The method provides for dynamic run-time resolution of a required web service, which reduces coupling to a specific web service during program development.

公开(公告)号：GB2495377A

公开(公告)日：2013-04-10

申请号：GB201216847

申请日：2012-09-21

Applicant: IBM

Inventor： TRIPP OMER ,  BESKROVNY EVGENY

IPC: G06F11/36 ,  G06F21/33

Abstract: A non-functional assessment of the authentication layer of a software component, where the authentication policy is claims-based and the component may be a web application, comprises: selecting an authorization algorithm of the component 205 and performing a static code analysis to identify and select a conditional statement within the algorithm 210; evaluating the statement using a value associated with a claim set of the policy and an authentication criteria specified within the algorithm using dynamic code analysis 225, and deriving the outcome 230; and, based on the outcome, determining an execution path associated with the outcome 245 and meeting a code coverage criterion for the statement. This may be repeated for each value in the statement 235, and each statement in the algorithm 240. The assessment may also generate a decision tree for the algorithm and display it to a user 245. This allows the system to perform a complete test of the algorithm without having to calculate every possible value.