In this chapter, we will cover the following topics:
Testing basic HTTP-authenticated RESTful web services
Testing HTTP Digest-authenticated RESTful web services
Testing HTTP form-authenticated RESTful web services
Creating and using X.509 certificates to test web services over HTTPS
Testing client certificate authenticated web services
Securing mock services using X.509 certificates
Testing WS-Security UsernameToken, Timestamp, and TransportBinding
Scanning web service security vulnerabilities