• Title, Summary, Keyword: Web Application

Search Result 2,351, Processing Time 0.045 seconds

Design and Implementation of Secure 3-Tier Web Application with Open Source Software

  • Kim, Chang Su;Low, Hooi Yin;Lee, Yong Ju
    • Journal of the Korea Society of Digital Industry and Information Management
    • /
    • v.6 no.1
    • /
    • pp.33-54
    • /
    • 2010
  • Providing a secure 3-tier Web application has become a high priority for companies as e-businesses have increased the amount and the sensitivity of corporate information that can be accessed through the web. Web applications become more difficult to secure with this very increase in online traffic and transactions. This paper first reviews the 3-tier of web application, types of attacks that can threaten web application services and security principles. We then are designing and implementing a secure web application with open source software that able to mitigate the web application vulnerable to attack.

Open Source기반 HTML5 Mobile Web Application Platform 구조 분석 및 성능 최적화 방법

  • Im, Sang-Seok
    • Information and Communications Magazine
    • /
    • v.29 no.9
    • /
    • pp.10-17
    • /
    • 2012
  • 본고는 크게 두가지 주제로 구성이된다. 첫번째로는 HTML5 기반의 mobile Web application platform 구조에 대해서 상세히 소개한다. Web application platform은 기술 구조상 mobile OS에 내재되어 native형태로 배포되는 Browser engine을 포함한 platform 부분과 native Web platform 상에서 구동되는 HTML5 application framework 부분으로 구성된다. HTML5 application framework 구축을 위해 시장에서 널리쓰이는 open source로서 jQuery Mobile framework을 소개한다. 두번째로 해당 Web platform상에서 동작하는 Web application 개발시 부디칠 각종 성능 이슈 및 그것을 해결하기 위한 접근법을 다섯가지 기술 영역으로 나누어, 각 영역별로 적용 가능한 실기를 다룬다. 마지막으로 최적화시 사용가능한 각종 open source profiling 및 성능 최적화 tool에 대해서 소개한다.

A BizUnit Test Code Generation for Framework-based Web Application (프레임워크기반 웹 어플리케이션을 위한 BizUnit 테스트 코드 생성)

  • Lee, Eun-Young;Choi, Byoung-Ju;Song, Hwa-Jung;Hwang, Sang-Cheol
    • Journal of KIISE:Computing Practices and Letters
    • /
    • v.15 no.12
    • /
    • pp.899-912
    • /
    • 2009
  • With greater utilization of web application and growth of its market, the function of such application is being expanded With today's increasing demand for high quality software, we see a sharp rise in the interest for web application test. The current trend is that web applications are being developed based on a framework of developmental environment. Hence, as the scope of that framework expands, each module of the entire web application is being configured by the combination of heterogeneous files. The distinctive characteristics of a web application are based on the fact that the framework that is provided in partially completed form controls the structure of all objects of development. The present study defines the web business logic as a minimal unit which has meaning as a unit of application for the web application. In this paper, we define web business logic as a least meaningful execution unit of web applications, propose how to generate automatically the BizUnit test code for it, and analyze the effectiveness of testing of the web application via the BizUnit test codes.

Web Application Generation System Based on UML (UML 기반의 웹 어플리케이션 자동 생성 시스템)

  • 정진영;송정길
    • Journal of the Korea Computer Industry Society
    • /
    • v.3 no.5
    • /
    • pp.661-670
    • /
    • 2002
  • As web technology is developed, web application becomes the basis which combines business services. However, most of the web applications have depended upon the capability of the web developer. When web application is developing, the property of the web should be considered in the ways of approach and modeling. In this paper, after modeling web application using UML and the extend of UML, web pages are extracted automatically. Thus, web application developing is easy to be maintained and to be repaired on a large scale.

  • PDF

Web Ontology Building Methodology for Semantic Web Application (시맨틱 웹 응용을 위한 웹 온톨로지 구축기법)

  • Kim, Su-Kyung;Ahn, Kee-Hong
    • The KIPS Transactions:PartD
    • /
    • v.15D no.1
    • /
    • pp.47-60
    • /
    • 2008
  • Success of a semantic web application, currently base on web technology, depend on web ontology construction that provided rule and inference function about knowledge. For, this study compared the ontology construction methods that were already proposed, and analyzed, and investigated characteristics of semantic web and web ontology, investigated characteristics of semantic web and web ontology, and defined characteristics of web ontology as-based technology of a semantic web application and knowledge representation steps, and studied a technical element that related currently web technology, and proposed a web ontology construction method for a semantic web application with bases to these. Established web ontologies of various knowledge fields as applied the construction method that proposed. Also evaluate performance of web ontology through inference verification of web ontologies established, web ontologies evaluated performance of web ontology as used inference verification. According to this, we confirmed that proposed construction method that can establish the ontology suitable for semantic web application.

Evaluating the web-application resiliency to business-layer DoS attacks

  • Alidoosti, Mitra;Nowroozi, Alireza;Nickabadi, Ahmad
    • ETRI Journal
    • /
    • v.42 no.3
    • /
    • pp.433-445
    • /
    • 2020
  • A denial-of-service (DoS) attack is a serious attack that targets web applications. According to Imperva, DoS attacks in the application layer comprise 60% of all the DoS attacks. Nowadays, attacks have grown into application- and business-layer attacks, and vulnerability-analysis tools are unable to detect business-layer vulnerabilities (logic-related vulnerabilities). This paper presents the business-layer dynamic application security tester (BLDAST) as a dynamic, black-box vulnerability-analysis approach to identify the business-logic vulnerabilities of a web application against DoS attacks. BLDAST evaluates the resiliency of web applications by detecting vulnerable business processes. The evaluation of six widely used web applications shows that BLDAST can detect the vulnerabilities with 100% accuracy. BLDAST detected 30 vulnerabilities in the selected web applications; more than half of the detected vulnerabilities were new and unknown. Furthermore, the precision of BLDAST for detecting the business processes is shown to be 94%, while the generated user navigation graph is improved by 62.8% because of the detection of similar web pages.

Analysis of Cyclomatic Complexity for Web Application (웹 어플리케이션의 순환복잡도 분석)

  • Park, Chul;Yoo, Haey-Oung
    • The KIPS Transactions:PartD
    • /
    • v.11D no.4
    • /
    • pp.865-872
    • /
    • 2004
  • Web applications have different structural characteristics from conventional applications with the structural language or object-oriented language or 4GL. A web application typically consists of server-side script elements which run on web sewers, client-side script elements which run on the client web-browser, HTML elements that contains context. Therefore web applications developer concurrently uses 3 or more development language. Cyclomatic Complexity for Web Application(CCWA) metrics reflected composite complexity of each element. In this paper, we applied cyclomatic complexity for web application metrics with Complexity level indicator to web application. We applied it to 10 web applications that were developed in practical business. High complexity web applications classify into four type(MENU, FORM, CTRL, GEN). This paper has contributed to practical use of engineering approach for web application.

Mashup Application for Geo-spatial Feature Generation on Web Browser using Google Maps API

  • Park, Yong-Jae;Lee, Ki-Won
    • Korean Journal of Remote Sensing
    • /
    • v.24 no.5
    • /
    • pp.389-396
    • /
    • 2008
  • In these days, various kinds of web applications based on web 2.0 paradigm have been developed. In web 2.0 paradigm pursuing participation, sharing, and openness on the web-as-platform, web mapping or web GIS application are regarded as top most applications, so that web applications, handling geo-spatial contents, with user-interaction interface and search engine of high performance have been provided for both public users and expert users in the special domains. Public and industrial needs for web mapping mashup application by open API, linked with the practical web computing technologies, are gradually increasing. In this study, a user interface in mashup for geo-spatial feature generation was implemented by using mainly Google maps API. Spatial database resources in this implementation are those of Google mapping server. As the results, public users on web client can create their own geo-spatial data sets in web vector formats, without the help of any GIS tools or access to proprietary databases. It is concluded that web-based mashup application in client-side using open API can be used as an alternative for geo-browsing system or portable feature generation system.

Development and Application of Analysis & Design Methodology for Web-based System (웹 기반 시스템의 분석 및 설계 방법론 개발과 적용)

  • Jung, Byung-Kwon;Kim, Dong-Soo;Song, Jae-Hyeong;Hwang, Chong-Sun
    • Journal of KIISE:Computing Practices and Letters
    • /
    • v.8 no.2
    • /
    • pp.155-166
    • /
    • 2002
  • Even the short history of the Web system, the technology related to the Web system has been developed rapidly. Yet, the quality of the Web-based application software has not been improved that much. For this reason, the efficient method to develop the Web-based application software is needed. This paper describes the items necessary to develop the Web-based application software. On the basis of ISO/IEC 12207-Software Life Cycle Processes this paper mainly suggests the analysis and design stage of the Web-based model for developing software. Also, this paper describes the methods to define the process and the entity for applying contents to Web-based application software. With the web-based model suggested in this paper the Web-RoadMap Methodology of KCC Information & Communication, a system provider in Korea, has been applied to the public-domain projects. Through the application, Web-RoadMap Methodology has been proved to be an applicable model for analyzing and designing the systems based on the web environments.

Research for Web Application Performance Analysis Method Based on Modern Web Browser (모던 웹 브라우저 기반 애플리케이션 성능 분석 방법 연구)

  • Park, Jin-tae;Kim, Hyun-gook;Moon, Il-young
    • The Journal of Advanced Navigation Technology
    • /
    • v.22 no.5
    • /
    • pp.467-471
    • /
    • 2018
  • During the fourth industrial revolution, the amount of data available to users has surged. And it became a stepping stone for various convergence technologies such as ECMA script, WebAssembly, and web of things using web technology. Also, as the amount of data shared on the web increases, the web has emerged as the most influential media in modern life. As a result, web developers have tried to deliver data quickly over the Web. So, various web application analysis tools appeared, and developers tried to find a solution to solve the speed problem by analyzing the web application. However, the performance of web application analysis tools has not improved significantly. Most existing analytical tools require direct installation, require expertise on the Web to perform analysis, and do not have function to analysis new technologies such as WebAssembly. Therefore, in this paper, we propose the design of a new reporting solution that can solve problems of existing web application analysis tool.