XML, SOAP, REST Testing for SOA and Cloud Computing

SOA Testing

Subscribe to SOA Testing: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get SOA Testing: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories

API Security has finally entered our security zeitgeist. OWASP Top 10 2017 - RC1 recognized API Security as a first class citizen by adding it as number 10, or A-10 on its list of web application vulnerabilities. We believe this is just the start. The attack surface area offered by API is orders or magnitude larger than any other attack surface area. Consider the fact the APIs expose cloud services, internal databases, application and even legacy mainframes over the internet. What could go wrong? API Security has been added to OWASP Top 10 2017 - RC1. This is a commendable step taken by the web application security thought leaders and is a clear indication of where the industry is heading. Security professionals have all the tools and awareness to fence in applications, databases and legacy systems through firewalls. OWASP has served the security professionals well... (more)

"Swamp Computing" a.k.a. Cloud Computing

Secure Cloud Computing on Ulitzer Security in the Ether, by David Talbot MIT Technology review recently published a great article titled: Security in the Ether addressing security, privacy and reliability issues resulting from cloud computing. Some of the interesting points in this article include: The cloud security threat is across two related dimensions: i) cloud resident data may be lost due to equipment/software failure or stolen by a hacker because of the shared resouce nature of cloud computing and ii) cloud data may be mishandled by the cloud provider because of technology gaps, but more importantly, such information can be extracted through a court issued subpoena.  Whether the data resident in the cloud versus on-premise makes it more or less likely to a subpoena being exercised is yet to be seen.  Bit and bytes lost accidentally or intentionally have a st... (more)

What Does Google Think SOA Is?

A view into the Hive Mind - here's what you see when you type "SOA is" into Google: ... (more)

The Evolution of SOA and Cloud Computing

SOA at Cloud Expo For many years SOA Governance was the industry buzzword that virtually every company employed to indicate that they played in the SOA arena. The term "SOA Governance" was used to describe everything from design time management of test and design artifacts, monitoring, enforcement, UDDI registry storage, SLA expectations, etc. Many of the industry analysts latched onto UDDI as the central technology that would drive the governance initiatives. The reality of successful SOA deployment turned out to be a different story. Successful SOA was measured on a project by project basis. Feedback from the CIO and CFO level as to the benefits of each project then reinforced the technology decision to invest further in SOA. It is the individual advantages first that lead to the higher level advantages later of investing in SOA. Due to the fractured nature of SOA ... (more)

Applying Maslow’s Pyramid to Application Performance

This time I take an a bit of an unconventional approach towards defining performance management. The idea for this article came through a number of customer engagements, where the same question came up over and over again: “How do we start with Application Performance Management and what should we do?” Over time I developed a simple model which I called the performance management pyramid. The basic idea is to assign performance management activities to several levels. Each level serves a specific need and builds on top of the lower ones. Just like a building it starts with the basement and then moves up further until we reach the roof. However, without a solid basement the best roof is not worth anything. Conversely, you do not start building a house from the roof. In a recent conversation Michael – a member of my team – brought up the idea of combining activities... (more)

Using SQL Azure for SOA Quality Testing

I. INTRODUCTION Throwing its hat in the Platform as a Service (PaaS) ring, Microsoft has joined the likes for Salesforce.com and Google with its annoucement of Microsoft Azure Platform. Microsoft Windows Azure Platform provides three primary components: Windows Azure: A cloud services operating system that serves as the development, service hosting and service management environment for the Windows Azure platform. SQL Azure: A cloud hosted relational database that removes the burdens of RDBMS installation, patching, upgrades and overall software management for relational databases. AppFabric: A platform that enables users to build and manage applications easily both on-premises and in the cloud. To better understand the components offered by MS Azure, we registered for MS Azure Platform and browsed through the three components. SQL Azure turned out to be the easies... (more)

How Internet Outages Can Affect Your Application

Complexity is the new reality of web and mobile applications with almost no new release going out without the addition of services and applications spread across many different companies. But the reality of this new interrelationship is still the same: If a third-party Internet outage or issue occurs, your brand is the one that is affected. With up to 1,500 distinct third-party services available to choose from around the world, it is sometimes difficult to even identify what a service does when it appears in your applications. This forces your team to not only be fully aware of the components you control, but also to be able to follow the trail of services that extends far outside the code and systems your company manages when issues appear. Using Compuware Outage Analyzer data, it is now easier to open a window to these services, seeing data collected across all c... (more)

SOA Testing Framework

Service-oriented architecture (SOA) has become today's technology buzz and it's rapidly becoming a mainstream approach to enterprise systems design. Beyond the buzz of SOA, organizations face several challenges as they attempt to truly effectuate the paradigm shift towards SOA. One critical challenge is: How can we assure the quality of the business services that we build? Can the services we build withstand the test of rapid organizational change? One way to address this challenge is through the use of effective testing methodologies and tools for the services deployed under an organization's SOA fabric. A new development methodology - services-oriented development of applications (SODA) - is emerging to accompany the paradigm shift toward SOA. Today's agile software teams need effective tools to smoothen the transition. This article analyzes, designs, and demonst... (more)

SYS-CON.TV: SOA Testing with Wayne Ariola of Parasoft

... (more)

SOA Testing Software Supports Complex WSDLs and Schemas

Crosscheck Networks announced the availability of SOAPSonar v.3.5. This release enables QA and Development teams to test and validate the most complex data structures that are being generated in the most demanding of the SOA deployments. "Enterprise customers are increasingly generating complex data sets that are being represented in XML," said Mamoon Yunus, Chief Technology Officer at Forum Systems and advisor to Crosscheck Networks. "The latest SOAPSonar release provides unique capabilities for testing highly complex data sets in jumbo WSDLs in an optimal fashion without sacrificing functionality." The following features enable testers to easily validate ever increasing sophisticated SOA web services deployments: Direct Database Integration for End-to-End SOA Testing Dynamic On-Demand Binding for abstract types Setting of Global Policies that can assigned to Custom ... (more)

Are AJAX, Virtualization, Cloud Computing, and SOA Related?

Server virtualization provides an immediate reduction in hardware and configuration cost. But in focusing merely on the hardware side of virtualization, are we leaving money on the table?  While organizations can reduce the number of boxes they need, and save the cost of replicating servers for virtual test beds, these servers are becoming commodities. What if we could apply the benefits of virtualization where we spend 80 percent or more of the IT budget - in the key enterprise software that runs our business and in the extensive development, support and maintenance costs of these applications? Today's leading businesses rely on a mix of distributed technologies and new functionality, such as service-oriented architecture (SOA). Virtualization can improve the quality and time-to-market for these systems. But how can teams virtualize to improve the quality and time-t... (more)