scholarly journals Security Assessment Using Nessus Tool to Determine Security Gaps on the Repository Web Application in Educational Institutions

2020 ◽  
Vol 1 (2) ◽  
Author(s):  
Chayadi Oktomy Noto Susanto ◽  
Kauka Noor Fathur Rizko ◽  
Dwijoko Purbohadi
Keyword(s):  
Web Application ◽  
Educational Institutions ◽  
Security Assessment

Practical Web Application Security Audit Following Industry Standards and Compliance

2011 ◽  
pp. 259-279
Author(s):  
Shakeel Ali
Keyword(s):  
Web Application ◽  
Assessment Process ◽  
Security Assessment ◽  
Web Application Security ◽  
Application Security ◽  
Security Issues ◽  
Pci Dss ◽  
Industry Standards ◽  
Before And After ◽  
Security Standards

A rapidly changing face of internet threat landscape has posed remarkable challenges for security professionals to thwart their IT infrastructure by applying advanced defensive techniques, policies, and procedures. Today, nearly 80% of total applications are web-based and externally accessible depending on the organization policies. In many cases, number of security issues discovered not only depends on the system configuration but also the application space. Rationalizing security functions into the application is a common practice but assessing their level of resiliency requires structured and systematic approach to test the application against all possible threats before and after deployment. The application security assessment process and tools presented here are mainly focused and mapped with industry standards and compliance including PCI-DSS, ISO27001, GLBA, FISMA, SOX, and HIPAA, in order to assist the regulatory requirements. Additionally, to retain a defensive architecture, web application firewalls have been discussed and a map between well-established application security standards (WASC, SANS, OWASP) is prepared to represent a broad view of threat classification.

scholarly journals Digital Collaborative Framework for Students’ Industrial Work Experience Scheme and Sustainability in Federal Polytechnic Offa, Nigeria

2021 ◽  
pp. 21-31
Author(s):  
AbdulAkeem O. Otunola ◽  
Abdullateef O. Alabi ◽  
A. T. Abdullateef ◽  
M. K. Lawal ◽  
N. O. Olanipekun
Keyword(s):  
Undergraduate Students ◽  
Work Experience ◽  
Web Application ◽  
Graduate Training ◽  
Time Frame ◽  
Educational Institutions ◽  
Industrial Training ◽  
Web Based ◽  
Industrial Work ◽  
Core Courses

Graduate training is one of the core courses offered in all polytechnics systems in Nigeria, each polytechnic gives orientation programmes and deploys students for industrial training once a year. These processes of pen on paper method throw serious challenges because of time authorization and time frame. Placement of undergraduate students looking for relevant Industrial Training (IT) attachment is becoming worrisome. This research tends to provide a web based solution called Digital Collaborative Framework (DCF) for Students’ Industrial Work Experience Scheme (SIWES) and sustainability in Federal Polytechnic Offa, Nigeria. This is to bridge the gap between educational institutions and the industries subject to training and re-training perspectives. The stakeholders can easily turn DCF into e-administrative tools, then allow students to get industrial placement relevant to their field of studies. The research proposed to develop a productive web application using Codeigniter Php framework. This research will serve as a cloud database to students, staff and other stakeholders and create access to examine, monitor and measure students’ performance at the end of the (SIWES) scheme.

scholarly journals Analisis Keamanan Website dengan Information System Security Assessment Framework (Issaf) dan Open Web Application Security Project (Owasp) di Rumah Sakit Xyz

2021 ◽  
Vol 2 (4) ◽  
pp. 506-519
Author(s):  
Agus Rochman ◽  
Rizal Rohian Salam ◽  
Sandi Agus Maulana
Keyword(s):  
Information System ◽  
Web Application ◽  
Web Server ◽  
System Security ◽  
Security Assessment ◽  
Assessment Framework ◽  
Web Application Security ◽  
Application Security ◽  
Information System Security

Sistem keamanan komputer semakin dibutuhkan seiring dengan meningkatnya pengguna yang terhubung ke jaringan internet, hal ini dapat memicu terjadinya tindak kejahatan cyber oleh orang yang tidak bertanggung jawab. Penelitian ini dilakukan pada Sistem Informasi sebuah Rumah Sakit. Salah satunya web server untuk informasi HRD. Sistem ini berisikan data karyawan dan data absensi karyawan. Keamanan webserver biasanya merupakan masalah bagi administrator. Sering kali permasalahan tersebut terabaikan dan permasalahan dapat ditelusuri ketika terjadi bencana. Tanpa sistem keamanan yang baik, sehebat apapun teknologi sistem informasi akan membahayakan suatu instansi atau organisasi itu sendiri. Berdasarkan latar belakang tersebut, maka dibutuhkan evaluasi mengenai adanya celah keamanan (vulnerability) dan kelemahan dari website sistem informasi HRD.  Metode penelitian menggunakan Information System Security Assesment Framework dan Open Web Application Security Project dengan menggunakan tools nikto untuk mencari celah keamanan (vulnerability), owas zap dan sistem operasi menggunakan linux. Hasil Pengujian disimpulkan dapat menjadi solusi untuk mengatasi permasalahan terhadap kelemahan webserver Sistem Informasi HRD. Pengujian  sebaiknya dilakukan lebih dari 1 kali secara mendalam, melakukan proses maintenance terhadap hardware, software, maupun jaringan, melakukan filter port dan melakukan peningkatkan keamanan server secara berkala, baik dengan cara menggunakan antivirus original maupun scanning secara berkala.

scholarly journals Implementasi RFID dan NodeMCU Untuk Data Kunjungan Perpustakaan Berbasis IoT

2020 ◽  
Vol 4 (2) ◽  
pp. 264
Author(s):  
Amri Yahya Khadafi ◽  
Ucuk Darussalam ◽  
Winarsih Winarsih
Keyword(s):  
Radio Frequency Identification ◽  
Web Application ◽  
Electromagnetic Waves ◽  
Educational Institutions ◽  
Automatic Identification ◽  
Radio Waves ◽  
National University ◽  
Frequency Identification ◽  
Database Program ◽  
The Media

Radio Frequency Identification (RFID), automatic identification by storing and sending data wirelessly via RFID card or transponders. A variety of recent applications of RFID have been developed in various sectors of life, especially related to identification via radio waves both in the field of automotive, biomedical, educational institutions, police, banks, transportation, and others. The purpose of this research is to design an RFID application in the field of libraries, so that RFID can be used as an alternative solution other than the barcode as the media identification data stored neatly in a book database program through the support of electromagnetic waves. At present we know that the national university library still uses paper to fill in the visit, to resolve the issue data from testing using the RFID method and the NodeMCU microcontroller, it can send data to a web application and can be stored in a database, It is expected that from the results of testing this application can solve the problems that exist in the library that previously members wrote a visit data to enter the future only need to tap the card to enter and do not need paper as a registration medium

scholarly journals The Framework for Web-Based Automated Online Question Paper Generator through JEE

2018 ◽  
Vol 7 (3) ◽  
pp. 1415
Author(s):  
Vinayak Hegde ◽  
Lavanya V Rao ◽  
Shivali B S
Keyword(s):  
Web Application ◽  
Large Scale ◽  
Educational Institution ◽  
Faculty Members ◽  
Educational Institutions ◽  
Small Scale ◽  
Web Based ◽  
Educational Institute ◽  
User Friendly ◽  
Word Format

Examinations are an indispensable part of a student’s life. In the conventional mechanism, the question paper generation is time-consuming work for the faculty members of the educational institution. Every educational institute mandatorily expects exam setters to follow its own typesetting format. We have designed the automated question paper setting software to be user-friendly so that, paper setters can overcome from the typographic problem. Presently in most of the educational institutions question papers are set manually. It is time-consuming work and there may be chances of repetition of the same questions. So, in order to make the question paper generation more convenient to use, the web application is developed using Java Enterprise Edition (JEE) that can be accessed from LAN/Intranet.The application comes with the Admin Module and Teachers Module. The Admin grants access to the users by registering them. The faculty can access the system once they are registered. The faculty can enter questions in the database daily as per their free time. In this way, the question pool can be generated. The questions are approved by the chairperson and substandard questions are discarded. The question paper is then generated by selected course experts. The Fisher-Yates Shuffling algorithm used to choose questions randomly from the pool of questions from the database. Text Mining Algorithm aids in duplicity removal from the paper.  The generated question paper will be in Word Format. In our application, we assure better security, removal of duplicity, cost-effectiveness, and human intervention avoidance. It can be used by small-scale and large-scale institutions.  

Computer network software

2020 ◽  
Author(s):  
Olyeg Isachyenko
Keyword(s):  
Computer Networks ◽  
Professional Education ◽  
Web Application ◽  
Computer Network ◽  
Educational Institutions ◽  
Federal State ◽  
Application Development ◽  
Web Technologies ◽  
State Educational ◽  
Network Software

The tutorial includes information about the main types of computer network software, modern Web technologies, and popular Web application development tools. Meets the requirements of the Federal state educational standards of secondary professional education of the last generation. Designed for students of secondary professional education, enrolled in the enlarged group of specialties 09.02.00 "computer science" and studying discipline "Software, computer networks and Software, computer networks and Web servers." It can also be useful for students of higher educational institutions.

scholarly journals INFORMATION SUPPORT FOR THE IMPLEMENTATION OF AN EFFECTIVE CONTRACT AT THE UNIVERSITY

2021 ◽  
pp. 5-9
Author(s):  
Э. Д. Алисултанова ◽  
Н. А. Моисеенко ◽  
И. Р. Бериев ◽  
А-Г. А. Тарамов
Keyword(s):  
Web Application ◽  
Automated System ◽  
Information Support ◽  
Educational Institutions ◽  
Structural Elements ◽  
Higher Educational Institutions ◽  
Software And Hardware ◽  
Higher Educational ◽  
The University

В статье рассматриваются актуальные проблемы информационного сопровождения ведения эффективных контрактов в высших учебных заведениях с целью совершенствования системы оплаты труда педагогических работников. Проводится анализ программнотехнического обеспечения автоматизированной системы подачи эффективного контракта для преподавателей и сотрудников. В ходе исследования определены структурные элементы разрабатываемого веб-приложения и схема их взаимодействия. The article discusses topical problems of information support for maintaining effective contracts in higher educational institutions in order to improve the system of remuneration of teachers. The analysis of the software and hardware of the automated system for filing an effective contract for teachers and staff. In the course of the study, the structural elements of the developed web application and the scheme of their interaction were determined.

scholarly journals Application of the Electronic Atlas of Personal Anatomy SkiaAtlas in Teaching Medical Students

2021 ◽  
Vol 1 (3) ◽  
pp. 181-182
Author(s):  
B. O. Shcheglov
Keyword(s):  
Medical Students ◽  
Web Application ◽  
Surgical Planning ◽  
Simulation Training ◽  
Mechanical Characteristics ◽  
Educational Institutions ◽  
Prospective Analysis ◽  
Electronic Atlas ◽  
Software Product

This article discusses the logic and aspects of creating a web application for the accumulation and processing of incoming data of radiation diagnostics and their transformation into information that can be used by students of medical educational institutions in training in the absence or lack of anatomical materials. In prospective analysis, it is possible to use this software product not only as a means for simulation training, but also in medical applied practice in preoperative surgical planning, modeling various mechanical characteristics of implants.

scholarly journals Creating an Online Survey for Educational Institutions

2020 ◽  
Vol 3 (9) ◽  
pp. 27-31
Author(s):  
S. K. Kezial Elizabeth ◽  
K. Palraj
Keyword(s):  
Secondary Schools ◽  
School Environment ◽  
Web Application ◽  
Online Survey ◽  
Educational Institution ◽  
Educational Institutions ◽  
Quality Of Education ◽  
Teaching Methodologies ◽  
Education School

In these days education has changed as an essential for everyone. There are many preschools, elementary, secondary, higher secondary schools, universities, arts and science colleges and many. Finding the best school or institution for their children is really very tough for parents in these days. Our work is to create a web application to create online survey, which contains questions and feedbacks about the schools and institutions. The survey questions are related to the attributes, and the behavior of educational institution on behalf of the quality of education, school environment, teaching methodologies, about the management and teachers. And we give authority to attend the survey for the peoples from various places i.e. the former students of various institutions and schools. Thus using our survey we are collecting the data about the schools and institutions, then the data will be handover to the analyst. And the analyst will process the data and make decisions about the institutions and schools. They will decide the ratings for the institutions and schools in Tamilnadu, India. Based on the ratings the parents and students can choose their schools and colleges.

Sign in / Sign up

Export Citation Format

Share Document