Célio B. Taquary Segundo,  Luis Fernando Rust C. Carmo,  Luci Pirmez. 

The proliferation of web-based applications has increased the exposure of companies to a variety of threats. There are several stages in the life cycle of the applications that are designed to prevent or mitigate those threats. The safety tests are very useful, provided they are efficient. This work focuses on the validation of security testing of web application and proposes a methodology for validation of tools and security testing, based on attack trees, derived from known vulnerabilities disseminated by related security communities. To validate the effectiveness of tests derived from these attack trees, security vulnerabilities are inserted into applications through Mutation Code techniques.

http://www.lbd.dcc.ufmg.br/colecoes/sbseg/2010/007.pdf

Processando consulta.