A Study of major secure SDLC processes in web based  applications

Web applications have become important but there are different types of security problems which could lead to tampering with details. The most common are cookies poisoning, structured query language, cross-site scripting and parameter tempering. This is the reason why most of the web companies today are verifying the type of content they receive and most importantly, from where the contents are originated. It has been thus noted from the above deduction that the major security threat has nothing to do with the Secure Socket Layer rather other layers in the web development program. In order to avoid such threats and other vulnerabilities, initial stages of the web development cycle need to be taken care of.Thus, the main focus of this research paper is to come up with a framework that would help to strengthen the security of the various stages in the web development cycle. For the same, various modules and life cycles have been used.

Download Full-text

A Sign of Things to Come: Predicting the Perception of Above-the-Fold Time in Web Browsing

Future Internet ◽

10.3390/fi13020050 ◽

2021 ◽

Vol 13 (2) ◽

pp. 50

Author(s):

Hamed Z. Jahromi ◽

Declan Delaney ◽

Andrew Hines

Keyword(s):

Web Application ◽

Web Applications ◽

State Of The Art ◽

Influencing Factor ◽

The State ◽

Experimental Result ◽

Web Page ◽

To Come ◽

Web Quality ◽

The Web

Content is a key influencing factor in Web Quality of Experience (QoE) estimation. A web user’s satisfaction can be influenced by how long it takes to render and visualize the visible parts of the web page in the browser. This is referred to as the Above-the-fold (ATF) time. SpeedIndex (SI) has been widely used to estimate perceived web page loading speed of ATF content and a proxy metric for Web QoE estimation. Web application developers have been actively introducing innovative interactive features, such as animated and multimedia content, aiming to capture the users’ attention and improve the functionality and utility of the web applications. However, the literature shows that, for the websites with animated content, the estimated ATF time using the state-of-the-art metrics may not accurately match completed ATF time as perceived by users. This study introduces a new metric, Plausibly Complete Time (PCT), that estimates ATF time for a user’s perception of websites with and without animations. PCT can be integrated with SI and web QoE models. The accuracy of the proposed metric is evaluated based on two publicly available datasets. The proposed metric holds a high positive Spearman’s correlation (rs=0.89) with the Perceived ATF reported by the users for websites with and without animated content. This study demonstrates that using PCT as a KPI in QoE estimation models can improve the robustness of QoE estimation in comparison to using the state-of-the-art ATF time metric. Furthermore, experimental result showed that the estimation of SI using PCT improves the robustness of SI for websites with animated content. The PCT estimation allows web application designers to identify where poor design has significantly increased ATF time and refactor their implementation before it impacts end-user experience.

Download Full-text

Web Authoring

Web Portfolio Design and Applications ◽

10.4018/978-1-59140-854-3.ch007 ◽

2011 ◽

pp. 122-156

Author(s):

John DiMarco

Keyword(s):

Web Applications ◽

The Internet ◽

Web Pages ◽

Web Development ◽

Web Page ◽

Web Based ◽

Content Creation ◽

Microsoft Word ◽

Software Skills ◽

The Web

Web authoring is the process of developing Web pages. The Web development process requires you to use software to create functional pages that will work on the Internet. Adding Web functionality is creating specific components within a Web page that do something. Adding links, rollover graphics, and interactive multimedia items to a Web page creates are examples of enhanced functionality. This chapter demonstrates Web based authoring techniques using Macromedia Dreamweaver. The focus is on adding Web functions to pages generated from Macromedia Fireworks and to overview creating Web pages from scratch using Dreamweaver. Dreamweaver and Fireworks are professional Web applications. Using professional Web software will benefit you tremendously. There are other ways to create Web pages using applications not specifically made to create Web pages. These applications include Microsoft Word and Microsoft PowerPoint. The use of Microsoft applications for Web page development is not covered in this chapter. However, I do provide steps on how to use these applications for Web page authoring within the appendix of this text. If you feel that you are more comfortable using the Microsoft applications or the Macromedia applications simply aren’t available to you yet, follow the same process for Web page conceptualization and content creation and use the programs available to you. You should try to get Web page development skills using Macromedia Dreamweaver because it helps you expand your software skills outside of basic office applications. The ability to create a Web page using professional Web development software is important to building a high-end computer skills set. The main objectives of this chapter are to get you involved in some technical processes that you’ll need to create the Web portfolio. Focus will be on guiding you through opening your sliced pages, adding links, using tables, creating pop up windows for content and using layers and timelines for dynamic HTML. The coverage will not try to provide a complete tutorial set for Macromedia Dreamweaver, but will highlight essential techniques. Along the way you will get pieces of hand coded action scripts and JavaScripts. You can decide which pieces you want to use in your own Web portfolio pages. The techniques provided are a concentrated workflow for creating Web pages. Let us begin to explore Web page authoring.

Download Full-text

Designing process: taming the Web development cycle

25th Annual International Computer Software and Applications Conference. COMPSAC 2001 ◽

10.1109/cmpsac.2001.960621 ◽

2002 ◽

Author(s):

A. Steele ◽

R. Carter

Keyword(s):

Web Development ◽

Development Cycle ◽

The Web

Download Full-text

FTT

International Journal of Systems and Service-Oriented Engineering ◽

10.4018/jssoe.2011100101 ◽

2011 ◽

Vol 2 (4) ◽

pp. 1-20 ◽

Cited By ~ 1

Author(s):

Ming Ying ◽

James Miller

Keyword(s):

Web Application ◽

Web Applications ◽

Web Pages ◽

Web Development ◽

Common Part ◽

Before And After ◽

Form Transformation ◽

The Web

Forms are a common part of web applications. They provide a method for the user to interact with the web application. However, forms in traditional applications require entire web pages to be refreshed every time they are submitted. This model is inefficient and should be replaced with Ajax-enabled forms. Ajax is a set of web development technologies that enables web applications to behave more like desktop applications, thus allowing a richer, more interactive and more efficient model for interactions between the user and the web application. This paper presents a refactoring system called Form Transformation Tool (FTT) to assist web programmers refactor traditional forms into Ajax-enabled forms while ensuring that functionality before and after refactoring is preserved.

Download Full-text

A Structured Methodology for Developing 3D Web Applications

Integrating Usability Engineering for Designing the Web Experience - Advances in Web Technologies and Engineering ◽

10.4018/978-1-60566-896-3.ch002 ◽

2010 ◽

pp. 15-43 ◽

Cited By ~ 1

Author(s):

Juan Manuel González-Calleros ◽

Jean Vanderdonckt ◽

Jaime Muñoz-Arteaga

Keyword(s):

User Interfaces ◽

Web Applications ◽

Interdisciplinary Approach ◽

Theoretical Background ◽

Web Development ◽

New Paradigm ◽

Development Methodology ◽

Evolution Of Technology ◽

Web 3D ◽

The Web

Effective and satisfying Web usability is crucial for successfully built Web applications. Traditionally, Web development considered 2D User Interfaces (2D UI) based on Graphical User Interfaces (GUI). Since the end of the 90’s, the evolution of technology and computers capacity introduced a new paradigm, the Web 3D. Similarly to traditional web development, Web 3D development requires an interdisciplinary approach and a profound theoretical background. In this chapter the authors attempt to structure a methodology to support 3DUIs development. The development methodology is articulated on three axes: models and their specification language, method, and tools that support the methodology based on the underlying models. The method considers guidelines to support its correct use towards producing usable 3DUIs.

Download Full-text

Research on Restful Web Services in Java

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.135-136.806 ◽

2011 ◽

Vol 135-136 ◽

pp. 806-808 ◽

Cited By ~ 1

Author(s):

Hong Jun Li

Keyword(s):

Web Services ◽

Web Service ◽

Web Sites ◽

Web Applications ◽

Web Development ◽

Representational State Transfer ◽

State Transfer ◽

Restful Web Service ◽

Restful Web Services ◽

The Web

In order to make the Web services, web sites in Java more powerful and flexible, building unified web applications is vital important. By introducing a new style─Representational State Transfer (REST), this paper studied the Java RESTful frameworks and the ways to develop Restful Web Service in Java. The RESTful frameworks in Java can effectively simplify the web development in many ways.

Download Full-text

The Evolution of WordPress and Django Web Frameworks Using Lehman’s Laws

NFC-IEFR Journal of Engineering and Scientific Research ◽

10.24081//nijesr.2019.1.0007 ◽

2019 ◽

pp. 36-47

Author(s):

M. M. Murad ◽

M. W. Ashraf1

Keyword(s):

Web Application ◽

Development Process ◽

Web Applications ◽

Software Evolution ◽

Recent Time ◽

Web Development ◽

The World ◽

Web Developers ◽

Laws Of Software Evolution ◽

The Web

In recent time, the evolution of web applications have gained importance over the web development process and the factor of web evolution cannot be ignored by web developers. Web development has become complex and challengeable for web developers. The process of software evolution played an important role during the development of the software. Millions of web application have been developed every year around the world It has included various approaches, tools, and frameworks to reorganize the web applications with an improved version. Research has been shown that there are no proper and systematic techniques is available for evolving web applications. This special article has been written to make a comparative analysis of WordPress and Django web framework using Lehman’s laws of software evolution. It has been found that the six out of eight Lehman’s laws found valid during the evolution process for web frameworks.

Download Full-text

Using Flask for SQLIA Detection and Protection

Tikrit Journal of Engineering Sciences ◽

10.25130/tjes.27.2.01 ◽

2020 ◽

Vol 27 (2) ◽

pp. 1-14

Author(s):

Ann Ablahd ◽

Suhair Dawwod

Keyword(s):

Web Application ◽

Web Applications ◽

Query Language ◽

Structure Query Language ◽

Web Page ◽

Structured Query Language ◽

On Line ◽

Structure Query ◽

Application Developers ◽

The Web

At present the web applications are used for most of the life activities, these applications are affected by an attack called (Structure Query Language Injection Attack) SQLIA due to the vulnerabilities of the web application. The vulnerabilities of the web application are increased because most of application developers do not care to security in designing.SQL injection is a common attack that infects a web application. The attacker adds (Structured Query Language) SQL code to web page for accessing and changing victim databases.The vital step in securing the database and detecting such an attack in web apps is preparing a tool. Many researchers propose different ways for detection and prevention of such as an attack. In this paper a tool it proposed using a powerful micro-framework web application designer called Flask in Python 3.7 to detect and prevent such attacks. The proposed system is called SQLIAD. SQLIAD analyzed a web application on-line.

Download Full-text

A Study on Ajax in Web Applications to improve Usability of Online Systems

International Journal of Scientific Research in Computer Science Engineering and Information Technology ◽

10.32628/cseit195368 ◽

2019 ◽

pp. 251-255

Author(s):

Saritha Bai Gaddale ◽

S. Parimala

Keyword(s):

Web Applications ◽

Short Form ◽

Web Technology ◽

Web Pages ◽

Markup Language ◽

Web Development ◽

Online Systems ◽

Asynchronous Javascript And Xml ◽

Traditional Paradigm ◽

The Web

In olden days the web technology was using HTML (Hyper Text Markup Language) for creating web pages. The AJAX has changed the traditional paradigm of Web development by giving partial page update facility. Ajax is short-form of Asynchronous JavaScript and XML. It is a bundle of technologies that combined together to create new, dynamic, responsive and powerful web applications. Most of the giant internet-based companies such as Google, Yahoo, Microsoft and Amazon etc. are developing web applications based on Ajax. Even though major internet based companies working with Ajax, there is still ignorance about this technology among many developers. Many developers find it difficult to handle those bundle of technologies to build Ajax application.

Download Full-text