Bug 777593 (SOA-101)

Summary: Security test case definition - need to implement high-priority tests for SOA-P
Product: [JBoss] JBoss Enterprise SOA Platform 4 Reporter: Len DiMaggio <ldimaggi>
Component: ToolingAssignee: Len DiMaggio <ldimaggi>
Status: CLOSED NEXTRELEASE QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: 4.2 IR4   
Target Milestone: ---   
Target Release: 4.2 GA   
Hardware: Unspecified   
OS: Unspecified   
URL: http://jira.jboss.org/jira/browse/SOA-101
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2008-02-05 20:31:34 UTC Type: Task
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Bug Depends On: 777622, 777625    
Bug Blocks:    

Description Len DiMaggio 2007-11-06 14:56:10 UTC 
Date of First Response: 2007-11-07 06:41:13
project_key: SOA

We need to identify the highest priority security risks for the initial SOA-P release. Marc Schoenefeld will perform analysis and prepare paper listing risks - and will work with/assist QE to perform tests.
Comment 5 Len DiMaggio 2007-12-13 17:24:12 UTC 
Link: Added: This issue depends SOA-131
Comment 6 Len DiMaggio 2007-12-13 17:24:39 UTC 
Link: Added: This issue depends SOA-134
Comment 7 Len DiMaggio 2007-12-13 17:28:18 UTC 
Marc also suggested:

http://findbugs.sourceforge.net/

and

http://www.neurofuzz.com/modules/software/wsfuzzer.php

but - given our release date and dependence on EAP - we can only really start this type of scanning/testing and not complete it by GA.
Comment 8 Len DiMaggio 2007-12-13 18:23:16 UTC 
Link: Added: This issue is a dependency of JBQA-1257
Comment 9 Marc Schoenefeld 2008-02-04 19:11:27 UTC 
Link: Added: This issue depends SOA-389
Comment 10 Marc Schoenefeld 2008-02-04 19:13:20 UTC 
Link: Removed: This issue depends SOA-389