Web API Verifier for IoTtalk and Its Applications

Wen Yu Lin, Min Zheng Shieh*, Yi-Bing Lin

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

With the vigorous development of Internet of Things (IoT) applications, many IoT applications based on IoTtalk, such as EduTalk, ScratchTalk, and other X-Talk systems, have been created in recent years. Most of these IoT applications are developed using Web application programming interface (API) and thus enable web browsers to transfer data to applications. But in the development stage, unknown errors or unexpected results may occur. It is hard to manually design test cases to detect such flaws efficiently, and automatic testing tools often require much domain knowledge. This work combines Fuzzing technology to develop a graphical user interface (GUI) test system, Web API Verifier (WAV), for IoTtalk and X-Talk developers to automatically test their applications easily. WAV integrates Swagger Editor and RESTler-fuzzer. According to the uploaded source codes, it generates the corresponding drafts of OpenAPI documents. By filling the several fields in WAV GUI, developers can quickly describe the Web API specification of their applications and build the settings required for the RESTler-fuzzer test. After the test, WAV provides a GUI displaying the file location and row number for each buggy function. With WAV, users can write API documents and test their IoT applications conveniently.

Original languageEnglish
Title of host publicationMobile Internet Security - 6th International Symposium, MobiSec 2022, Revised Selected Papers
EditorsIlsun You, Hwankuk Kim, Pelin Angin
PublisherSpringer Science and Business Media Deutschland GmbH
Pages323-337
Number of pages15
ISBN (Print)9789819944293
DOIs
StatePublished - 2023
EventProceedings of the 6th International Symposium on Mobile Internet Security, MobiSec 2022 - Jeju, Korea, Republic of
Duration: 15 Dec 202217 Dec 2022

Publication series

NameCommunications in Computer and Information Science
Volume1644 CCIS
ISSN (Print)1865-0929
ISSN (Electronic)1865-0937

Conference

ConferenceProceedings of the 6th International Symposium on Mobile Internet Security, MobiSec 2022
Country/TerritoryKorea, Republic of
CityJeju
Period15/12/2217/12/22

Keywords

  • Fuzz Testing
  • Internet of Things
  • IoTtalk

Fingerprint

Dive into the research topics of 'Web API Verifier for IoTtalk and Its Applications'. Together they form a unique fingerprint.

Cite this