scholarly journals Evaluasi Keamanan Sistem EGovernment menggunakan Security Development Lifecycle (SDL) Threat Modelling Tool

2021 ◽  
Vol 6 (2) ◽  
pp. 74-83
Author(s):  
Said Akmala
Keyword(s):  
Development Lifecycle ◽  
Threat Modelling

scholarly journals Security and Privacy Requirements for Electronic Consent

2021 ◽  
Vol 20 (2) ◽  
pp. 1-24
Author(s):  
Stef Verreydt ◽  
Koen Yskout ◽  
Wouter Joosen
Keyword(s):  
Security And Privacy ◽  
Inclusion Criteria ◽  
Comprehensive Overview ◽  
Privacy And Security ◽  
Pubmed Central ◽  
Privacy Requirements ◽  
Development Lifecycle ◽  
Main Challenge ◽  
Security Challenges ◽  
Server Systems

Electronic consent (e-consent) has the potential to solve many paper-based consent approaches. Existing approaches, however, face challenges regarding privacy and security. This literature review aims to provide an overview of privacy and security challenges and requirements proposed by papers discussing e-consent implementations, as well as the manner in which state-of-the-art solutions address them. We conducted a systematic literature search using ACM Digital Library, IEEE Xplore, and PubMed Central. We included papers providing comprehensive discussions of one or more technical aspects of e-consent systems. Thirty-one papers met our inclusion criteria. Two distinct topics were identified, the first being discussions of e-consent representations and the second being implementations of e-consent in data sharing systems. The main challenge for e-consent representations is gathering the requirements for a “valid” consent. For the implementation papers, many provided some requirements but none provided a comprehensive overview. Blockchain is identified as a solution to transparency and trust issues in traditional client-server systems, but several challenges hinder it from being applied in practice. E-consent has the potential to grant data subjects control over their data. However, there is no agreed-upon set of security and privacy requirements that must be addressed by an e-consent platform. Therefore, security- and privacy-by-design techniques should be an essential part of the development lifecycle for such a platform.

Usability Methodologies for Real-Life Voice User Interfaces

2009 ◽  
Vol 4 (4) ◽  
pp. 78-94 ◽  
Author(s):  
Georgios Kouroupetroglou ◽  
Dimitris Spiliotopoulos
Keyword(s):  
User Interfaces ◽  
Theoretical Perspective ◽  
Real Life ◽  
Usability Testing ◽  
Web Interfaces ◽  
Development Framework ◽  
Development Lifecycle ◽  
Conversational Interfaces ◽  
Voice User ◽  
Deployed Systems

This paper studies the usability methodologies for spoken dialogue web interfaces along with the appropriate designer-needs analysis. The work unfolds a theoretical perspective to the methods that are extensively used and provides a framework description for creating and testing usable content and applications for conversational interfaces. The main concerns include the design issues for usability testing and evaluation during the development lifecycle, the basic customer experience metrics and the problems that arise after the deployment of real-life systems. Through the discussion of the evaluation and testing methods, this paper argues on the importance and the potential of wizard-based functional assessment and usability testing for deployed systems, presenting an appropriate environment as part of an integrated development framework.

Computerizing Values and Accessing Values via SMS

2020 ◽  
Vol 10 (2) ◽  
pp. 76-81
Author(s):  
Imanuel Revelino Murmanto ◽  
Dina Fitria Murad
Keyword(s):  
Design Method ◽  
System Development ◽  
Student Learning Outcomes ◽  
System Level ◽  
Development Lifecycle ◽  
Black Box Testing ◽  
White Box Testing ◽  
Student Grades ◽  
Visual Basic 6.0 ◽  
Application Programs

The purpose of this study was to design an application to provide information to parents of SDK III BPK Penabur students regarding the exam schedule, and student grades via SMS. The design method used is the System Development Lifecycle method. The application design is done using the Visual Basic 6.0 programming language for designing application programs and interfaces and MySQL for designing the database. This application consists of several modules, namely the module processing data, processing values, processing SMS, and reports. The module is integrated to form a Computerized Value application and Value Access via SMS. In testing the application of Computerized Values ​​and Value Accessing Through SMS, white box testing and Black Box Testing methods are used. Tests are carried out at the module, program and system level. In addition, user testing is also done. The advantages of the application of Computerized Values ​​and Value of Access Through SMS help parents to obtain information about student learning outcomes, helping teachers to process student grades

scholarly journals Comprehensive study of software testing: Categories, levels, techniques, and types

2020 ◽  
Author(s):  
Mubarak Albarka Umar
Keyword(s):  
Software Testing ◽  
Software Quality ◽  
Testing Methods ◽  
Development Lifecycle ◽  
Software Development Lifecycle ◽  
Pros And Cons ◽  
Testing Techniques ◽  
Combination Of Methods ◽  
The Right ◽  
Comprehensive Study

<p><i>Software Testing is the process of evaluating a software program to ensure that it performs its intended purpose. Software testing verifies the safety, reliability, and correct working of software. The growing need for quality software makes software testing a crucial stage in Software Development Lifecycle. There are many methods of testing software, however, the choice of method to test a given software remains a major problem in software testing. Although, it is often impossible to find all errors in software, employing the right combination of methods will make software testing efficient and successful. Knowing these software testing methods is the key to making the right selection. This paper presents a comprehensive study of software testing methods. An explanation of Testing Categories was presented first, followed by Testing Levels (and their comparison), then Testing Techniques (and their comparison). For each Testing Levels and Testing Techniques, examples of some testing types and their pros and cons were given with a brief explanation of some of the important testing types. Furthermore, a clear and distinguishable explanation of two confused and contradictory terms (Verification and Validation) and how they relate to Software Quality was provided.</i></p>

scholarly journals Cybersecurity Threat Modelling: A Case Study of An Ecommerce Platform Migration to the Public Cloud

2020 ◽  
Vol 4 (4) ◽  
Author(s):  
Bamidele Ola ◽  
Iyobor Egho-Promise
Keyword(s):  
Information Technology ◽  
Public Cloud ◽  
The Public ◽  
Goods And Services ◽  
It Systems ◽  
The World ◽  
Modelling Techniques ◽  
Security Concerns ◽  
Threat Modelling

The emergence of ecommerce almost three decades ago has completely transformed the approach to purchasing goods and services across various countries in the world. Almost every country in the globe, now have some form of ecommerce operations, this has further been enhanced by the stay at home COVID-19 induced lockdowns. The value and volume of transactions has also increased in transactions. However, there has been security concerns impacting ecommerce operations, which has in part, led to increasing adoption of hosting ecommerce systems in the public cloud. Threat modelling offer mechanisms to enhance the security of information technology (IT) systems. In this paper, we apply different threat modelling techniques to decompose the migration of an on-premise hosted ecommerce system to the public cloud and also evaluate these threat modelling techniques.

Sign in / Sign up

Export Citation Format

Share Document