XML, SOAP, REST Testing for SOA and Cloud Computing

SOA Testing

Subscribe to SOA Testing: eMailAlertsEmail Alerts newslettersWeekly Newsletters
Get SOA Testing: homepageHomepage mobileMobile rssRSS facebookFacebook twitterTwitter linkedinLinkedIn


Top Stories

API Security has finally entered our security zeitgeist. OWASP Top 10 2017 - RC1 recognized API Security as a first class citizen by adding it as number 10, or A-10 on its list of web application vulnerabilities. We believe this is just the start. The attack surface area offered by API is orders or magnitude larger than any other attack surface area. Consider the fact the APIs expose cloud services, internal databases, application and even legacy mainframes over the internet. What could go wrong? API Security has been added to OWASP Top 10 2017 - RC1. This is a commendable step taken by the web application security thought leaders and is a clear indication of where the industry is heading. Security professionals have all the tools and awareness to fence in applications, databases and legacy systems through firewalls. OWASP has served the security professionals well... (more)

What Is SOA and Service-Oriented Virtualization?

Server virtualization provides an immediate reduction in hardware and configuration cost. But in focusing merely on the hardware side of virtualization, are we leaving money on the table? While organizations can reduce the number of boxes they need, and save the cost of replicating servers for virtual test beds, these servers are becoming commodities. What if we could apply the benefits of virtualization where we spend 80 percent or more of the IT budget – in the key enterprise software that runs our business and in the extensive development, support and maintenance costs of these applications? Today’s leading businesses rely on a mix of distributed technologies and new functionality, such as service-oriented architecture (SOA). Virtualization can improve the quality and time-to-market for these systems. But how can teams virtualize to improve the quality... (more)

Are AJAX, Virtualization, Cloud Computing, and SOA Related?

Server virtualization provides an immediate reduction in hardware and configuration cost. But in focusing merely on the hardware side of virtualization, are we leaving money on the table?  While organizations can reduce the number of boxes they need, and save the cost of replicating servers for virtual test beds, these servers are becoming commodities. What if we could apply the benefits of virtualization where we spend 80 percent or more of the IT budget - in the key enterprise software that runs our business and in the extensive development, support and maintenance costs of these applications? Today's leading businesses rely on a mix of distributed technologies and new functionality, such as service-oriented architecture (SOA). Virtualization can improve the quality and time-to-market for these systems. But how can teams virtualize to improve the quality and time-t... (more)

Reducing the Complexity of Application Security

Integration is the Enemy of Security and so is Flexibility - an attribute that is essential for organizations to survive.  A corporation that cannot service its customers and suppliers, establish long sticky relationships with them and build an infrastruture that enables rapid addition of both suppliers, buyers and partners for information exchange will perish and get demolished by a nimble and flexible competitor whose infrastructure has integration capabilities for rapid information exchange. Mike Vizard from CTOEdge talks about the business drivers that compel companies to integrate yet face security challenges that hamper integration efforts: Reducing the Complexity of Application Security Here's a snippet from Mike's article: "As business-to-business interactions over the Web become more pervasive, so too does the complexity associated with securing those transact... (more)

Understanding Cloud Taxonomies and Security

XML Security at Cloud Expo OWASP AppSec DC 2009 had a compelling session that defined cloud taxonomies and the security implications associated with the cloud computing. The three taxonomies that have become part of our vernacular are: Infrastructure as a Service (IaaS): Set of virtualized components that can be assembled to build a application.  Amazon EC2, Rackspace, Opsource, and GoGrid are examples of IaaS where you can rent "virtual" hardware and software as a "pay-as-you-go" services.  If you need 5 Linux servers running MySQL Database for 3 months, you'd subscribe to an IaaS provider and using their REST or Web service-based API (or command line if you're too cool) to provision, de-provision and monitor your instance. Platform as a Service (PaaS): A runtime environment for application developer to deploy their applications in their desired programming environm... (more)

Cloud Expo Bronze Sponsor Releases OLAP Engine for Performance Testing

SOASTA Session at Cloud Expo "Performance Engineering is a perfect application for the next generation of this technology." said Ken Gardner, CTO and Executive Chairman, SOASTA, "as it’s become increasingly difficult to use existing enterprise tools to uncover the issues that cause latency and unreliability in the new world of rich-media, high traffic, consumer-facing websites." Register Today and Save $550 ! Explore Sponsorship Opportunities ! Gardner, whose company SOASTA Inc. is Bronze Sponsor of Cloud Expo 2010 East being held April 19-21, 2010 at the Jacob Javits Convention Center in New York, was speaking on the occasion of SOASTA's announcement today - just one week before Cloud Expo - that it has extended its industry leading performance testing solution CloudTest with the release of CloudTest Analytics, the first real time Business Intelligence engine purpose-... (more)

Making a Case for a Test Case

For software testers to create a detailed test case during the QA process can be tricky: sometimes it's not an option; sometimes it's wasted effort. Here are ways to help make that decision. Part of the skill set required to be a good tester involves the ability to assess a software project and decide when it's worth putting in the effort to create really detailed test cases. Sometimes the software will lend itself to unstructured testing, sometimes the development methodology will dictate a specific approach, and sometimes every possible facet will need to be covered. If you plotted projects on a graph you would get a bell curve because most of them fall somewhere in between the casual and the comprehensive. How Do You Decide? There are various factors that are going to weigh on any decision. Some of them leave no room for ambiguity, for example: There are legal ... (more)

SOA Testing Framework

Service-oriented architecture (SOA) has become today's technology buzz and it's rapidly becoming a mainstream approach to enterprise systems design. Beyond the buzz of SOA, organizations face several challenges as they attempt to truly effectuate the paradigm shift towards SOA. One critical challenge is: How can we assure the quality of the business services that we build? Can the services we build withstand the test of rapid organizational change? One way to address this challenge is through the use of effective testing methodologies and tools for the services deployed under an organization's SOA fabric. A new development methodology - services-oriented development of applications (SODA) - is emerging to accompany the paradigm shift toward SOA. Today's agile software teams need effective tools to smoothen the transition. This article analyzes, designs, and demonst... (more)

Solstice Software Unveils SOA Test Solutions for TIBCO

Enhanced Platform Library for Solstice Integra Suite provides the most complete end-to-end testing of TIBCO deployments, supporting TIBCO’s focus on enterprise clients and alignment of business integration with process management. Solstice Software, specialized in SOA test solutions, announced the release of version 2.0 of the Solstice Integra TIBCO Platform Library. Available immediately, the Solstice Integra Suite, composed of the Test Automation core paired with the TIBCO Platform Library, is the only true enterprise testing solution that provides complete visibility and true process validation of business processes deployed with TIBCO’s enterprise backbone and business integration technologies. Solstice Integra Suite’s unique architecture supports scalable, secure, shared access to test assets for distributed teams across the life cycle. “T... (more)

SOA Governance and Management Issues

In today's business environment, change is the only constant, which makes speed and agility a key basis for competitive advantage. This is why so many organizations are moving toward services oriented architectures as the new basis for IT. But despite the considerable promise of SOA, it adds new complexity that can introduce IT and business risk. This is why governance has become an imperative for SOA projects today. This session will discuss the requirements for governing an SOA and the importance of a governance foundation for optimizing the value and mitigating the risks of a service orientation. It will discuss how governance enables organizations to transform the complexity inherent to SOA from a risk factor to a value generator. It will also introduce an innovative new approach for using SOA governance as the means for automating corporate governance by using ... (more)

ChoicePay: Rising above the SOA Testing Challenge

ChoicePay has embarked on a strategic Web Services-based SOA initiative as part of its ongoing effort to improve customer and partner service. To meet its service improvement objectives, ChoicePay builds reliable and robust Web Services. It continues to enhance its service objectives without compromising overall quality through short, iterative, and demanding Web Services testing cycles. Background ChoicePay handles electronic bill payments for some of America's largest companies. Starting operations in 1996, it was a pioneer in the Electronic Bill Presentment and Payment (EBPP) industry and is recognized today as providing one of the most comprehensive suites of payment channels and options in its class. ChoicePay's adoption of Service Oriented Architecture (SOA) stems from its continuous effort to improve service for its clients. One of the many SOA-based Web Se... (more)