Download the full-sized PDF of Testing the Internet state management mechanismDownload the full-sized PDF



Permanent link (DOI):


Export to: EndNote  |  Zotero  |  Mendeley


This file is in the following communities:

Graduate Studies and Research, Faculty of


This file is in the following collections:

Theses and Dissertations

Testing the Internet state management mechanism Open Access


Other title
Adaptive Random Testing
Web Engineering
Web Testing Oracles
Automated Testing
Internet Technologies
Web Application Testing
Software Testing
Evolutionary Computing
Type of item
Degree grantor
University of Alberta
Author or creator
Tappenden, Andrew
Supervisor and department
Miller, James (Electrical and Computer Engineering)
Examining committee member and department
Maurer, Frank (Computer Science, University of Calgary)
Mandal, Mrinal (Electrical and Computer Engineering)
Stroulia, Eleni (Computer Science)
Zhao, Vicky (Electrical and Computer Engineering)
Department of Electrical and Computer Engineering

Date accepted
Graduation date
Doctor of Philosophy
Degree level
This thesis presents an extensive survey of 100,000 websites as the basis for understanding the deployment of cookies across the Internet. The survey indicates cookie deployment on the Internet is approaching universal levels. The survey identifies the presence of P3P policies and dynamic web technologies as major predictors of cookie usage, and a number of significant relationships are established between the origin of the web application and cookie deployment. Large associations are identified between third-party persistent cookie usage and a country’s e-business environment. Cookie collection testing (CCT), a strategy for testing web applications, is presented. Cookies maintained in a browser are explored in light of anti random testing techniques, culminating in the definition of seeding vectors as the basis for a scalable test suite. Essentially CCT seeks to verify web application robustness against the modification—intentional or otherwise—of an application's internal state variables. Automation of CCT is outlined through the definition of test oracles and evaluation criterion. Evolutionary adaptive random (eAR) testing is proposed for application to the cookie collection testing strategy. A simulation study is undertaken to evaluate eAR against the current state-of-the-art in adaptive random testing—fixed size candidate set, restricted random testing, quasi-random testing, and random testing. eAR is demonstrated to be superior to the other techniques for block pattern simulations. For fault patterns of increased complexity, eAR is shown to be comparable to the other methods. An empirical investigation of CCT is undertaken. CCT is demonstrated to reveal defects within web applications, and is found to have a substantial fault-triggering rate. Furthermore, CCT is demonstrated to interact with the underlying application, not just the technological platform upon which an application is implemented. Both seeding and generated vectors are found to be useful in triggering defects. A synergetic relationship is found to exist between the seeding and generated vectors with respect to distinct fault detection. Finally, a large significant relationship is established between structural and content similarity measures of web application responses, with a composite of the two similarity measures observed to be superior in the detection of faults.
License granted by Andrew Tappenden ( on 2010-04-07T16:57:50Z (GMT): Permission is hereby granted to the University of Alberta Libraries to reproduce single copies of this thesis and to lend or sell such copies for private, scholarly or scientific research purposes only. Where the thesis is converted to, or otherwise made available in digital form, the University of Alberta will advise potential users of the thesis of the above terms. The author reserves all other publication and other rights in association with the copyright in the thesis, and except as herein provided, neither the thesis nor any substantial portion thereof may be printed or otherwise reproduced in any material form whatsoever without the author's prior written permission.
Citation for previous publication

File Details

Date Uploaded
Date Modified
Audit Status
Audits have not yet been run on this file.
File format: pdf (Portable Document Format)
Mime type: application/pdf
File size: 10772990
Last modified: 2015:10:12 12:59:46-06:00
Filename: Tappenden_Andrew_Spring 2010.pdf
Original checksum: 4bd958a658d231c78da91fcba156c34d
Well formed: true
Valid: true
Status message: File header gives version as 1.4, but catalog dictionary gives version as 1.3
Status message: Too many fonts to report; some fonts omitted. Total fonts = 1651
File title: Testing the Internet State Management Mechanism
File title: Microsoft Word - Testing the Internet State Management Mechanism.docx
File author: Andrew Tappenden
Page count: 268
Activity of users you follow
User Activity Date