Sánchez, G., Olayinka, O. orcid.org/0000-0003-2449-3690 and Pasikhani, A. (Accepted: 2024) Web application penetration testing with artificial intelligence: a systematic review. In: 2024 22nd International Symposium on Network Computing and Applications (NCA 2024). 2024 IEEE 22nd International Symposium on Network Computing and Applications (NCA 2024), 24-26 Oct 2024, Bertinoro, Italy. Institute of Electrical and Electronics Engineers (IEEE) (In Press)
Abstract
Penetration testing is an intricate activity, yet vital for the security of web applications and the protection of user data. Due to its time-consuming nature, recent developments have emphasized the use of artificial intelligence to enhance efficiency, shorten testing times, and substantially improve penetration testing results. By combining artificial intelligence with conventional penetration testing techniques, researchers aim to improve the processes, providing organizations with the means to create stronger web applications. This paper presents a thorough review of research conducted between 2013 and 2024 on the application of artificial intelligence in web application penetration testing. We highlight advancements and challenges in employing learningbased methods to enhance penetration testing, providing a comprehensive overview of the current state and future directions in the field. Our results show that leveraging artificial intelligence has proven to be more efficient than traditional approaches, but they still face significant challenges.
Metadata
Item Type: | Proceedings Paper |
---|---|
Authors/Creators: |
|
Copyright, Publisher and Additional Information: | © 2024 The Author(s). |
Keywords: | Machine learning; security; web applications |
Dates: |
|
Institution: | The University of Sheffield |
Academic Units: | The University of Sheffield > Faculty of Engineering (Sheffield) > Department of Computer Science (Sheffield) |
Depositing User: | Symplectic Sheffield |
Date Deposited: | 08 Nov 2024 12:31 |
Last Modified: | 08 Nov 2024 12:31 |
Status: | In Press |
Publisher: | Institute of Electrical and Electronics Engineers (IEEE) |
Refereed: | Yes |
Related URLs: | |
Open Archives Initiative ID (OAI ID): | oai:eprints.whiterose.ac.uk:219328 |
Download
Filename: Web_Application_Penetration_Testing_with_Artificial_Intelligence__A_Systematic_Review__NCA_24__ (4).pdf
