Tailored Shielding and Bypass Testing of Web Applications

Mouelhi, Tejeddine; Traon, Yves Le; Abgrall, Erwan; Baudry, Benoit; Gombault, Sylvain

doi:10.1109/icst.2011.56

Cited by 6 publications

(1 citation statement)

References 7 publications

(9 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Authors have extensively reviewed the publications from the selected online databases and hardly found model evaluations that used more than two case studies. For example, three test cases with one tester were used by Goseva-Popstojanova & Perhinschi [121], Al-Azzani et al [122], and Mouelhi et al [123]. Therefore, to keep the evaluation framework and its results clear and readable, improve the reliability and generalization of the model evaluation framework, and reduce the criticisms of the single case study, we suggest using two case studies.…”

Section: Generalizationmentioning

confidence: 99%

Overview on Case Study Penetration Testing Models Evaluation

2023

View full text Add to dashboard Cite

Model evaluation is a cornerstone of scientific research as it represents the findings' accuracy and model performance. A case study is commonly used in evaluating software engineering models. Due to criticism in terms of generalization from a single case study and testers, deciding on the number of case studies used for evaluation and the number of testers has been one of the researchers’ challenges. Multiple case studies with multiple testers can be difficult in some domains, such as penetration testing, due to the complexity and time needed to prepare test cases. This study aims to review the literature and examine the evaluation methods used pertaining to the number of case studies and testers involved. This study is beneficial for researchers, students, and penetration testers as it provides case study design steps that are useful to determine the appropriate number of test cases and testers required. The paper's findings and novelty highlight that a single case study with a single tester is enough to evaluate a model. It also strikes a balance between what is enough for the evaluation and the need to reduce criticisms of a single case study by using two case studies with a single tester. Doi: 10.28991/ESJ-2023-07-03-025 Full Text: PDF

show abstract

Section: Generalizationmentioning

confidence: 99%