A Black Box Tool for Robustness Testing of REST Services

REST services are nowadays being used to support many businesses, with most major companies exposing their via interfaces (e.g., Google, Amazon, Instagram, and Slack). In this type of scenarios, heterogeneity is prevalent software sometimes exposed unexpected conditions that may activate residual bugs, leading service operations fail. Such failures lead financial or reputation losses information disclosure). Although techniques tools for assessing robustness have been thoroughly studied applied a large diversity domains, still lack practical approaches specialize in evaluation. paper, we present tool (named bBOXRT) performing tests over services, solely based on minimal expressed interface descriptions. We bBOXRT evaluate an heterogeneous set 52 comprise 1,351 fit distinct categories public, private, in-house). were able disclose several different types problems, including issues strong reliability requirements also few security vulnerabilities. The results show deployed preserving defects harm integration, carrying vulnerabilities can be exploited by malicious users.