How secure are you web service really?Are you web services more secure going through Datapower?Do you need answers for these and many more security question then Rational AppScan is the answer.
Topology for my test: EJB running on WAS -> Web Service (wsdl) Front Side Handler through Datapower.
Import wsdl file into Rational AppScan there Datapower is the Front side handler. Click on the Run button to start the Web Service Testing. AppScan tests the web service for different, random parameters.
After the scan completed a report was generated for the errors, information or warning for specific Web Service parameters and how to fix the errors in your Java code.
This is a great way to see how you can improve web service security where Datapower is the from side handler managing web service security.
2 thoughts on “Web Service Security Testing with Rational AppScan”
The cool thing needed here are that Appscan provides a quick fix for datapower, so datapower can protect the service until the developer has time to fix the code:)
Great statement Thilesen!