• Progress in Medical Physics
• /
• v.28 no.3
• /
• pp.122-128
• /
• 2017

Eclipse Scripting Application Programming Interface (ESAPI) was devised to enhance the efficiency in such treatment related workflows as contouring, treatment planning, plan quality measure, and data-mining by communicating with the treatment planning system (TPS). It is provided in the form of C# programming based toolbox, which could be modified to fit into the clinical applications. The Scripting program, however, does not offer all potential functionalities that the users intend to develop. The shortcomings can be overcome by combining the Scripting programming with user-executable program on Windows or Linux. The executed program has greater freedom in implementation, which could strengthen the ability and availability of the Scripting on the clinical applications. This work shows the use of the Scripting programming throughout the simple modification of the given toolbox. Besides, it presents the implementation of combining both Scripting and user-executed programming based on MATLAB, applied to automated dynamic MLC wedge and FIF treatment planning procedure for promoting the planning efficiency.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.17 no.6
• /
• pp.1689-1705
• /
• 2023

To deal with the potential XSS vulnerabilities in the source code of the power communication network, an XSS vulnerability detection method combining the static analysis method with the dynamic testing method is proposed. The static analysis method aims to analyze the structure and content of the source code. We construct a set of feature expressions to match malignant content and set a "variable conversion" method to analyze the data flow of the code that implements interactive functions. The static analysis method explores the vulnerabilities existing in the source code structure and code content. Dynamic testing aims to simulate network attacks to reflect whether there are vulnerabilities in web pages. We construct many attack vectors and implemented the test in the Selenium tool. Due to the combination of the two analysis methods, XSS vulnerability discovery research could be conducted from two aspects: "white-box testing" and "black-box testing". Tests show that this method can effectively detect XSS vulnerabilities in the source code of the power communication network.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.15 no.10
• /
• pp.3750-3770
• /
• 2021

This study investigates open-source dynamic XSS filters used as security devices in web applications to account for the effectiveness of filters in protecting against XSS attacks. The experiment involves twelve representative filters, which are examined individually by placing them into the final output function of a custom-built single-input-form web application. To assess the effectiveness of the filters in their tasks of sanitizing XSS payloads and in preserving benign payloads, a black-box testing method is applied using an automated XSS testing framework. The result in working with malicious and benign payloads shows an important trade-off in the filters' tasks. Because the filters that only check for dangerous or safe elements, they seem to neglect to validate their values. As some safe values are mistreated as dangerous elements, their benign payload function is lost in the way. For the filters to be more effective, it is suggested that they should be able to validate the respective values of malicious and benign payloads; thus, minimizing the trade-off. This particular assessment of XSS filters provides important insight regarding the filters that can be used to mitigate threats, including the possible configurations to improve them in handling both malicious and benign payloads.

• Journal of Korea Game Society
• /
• v.6 no.1
• /
• pp.3-10
• /
• 2006

In computer games, the level design and balance of characters are the key features for developing interesting games. Level designers make decision to change the parameters and opponent behaviors in order to avoid the player getting extremely frustrated with the improper level. Generally, opponent behavior is defined by static script, this causes the games to have static difficulty level and static environment. Therefore, it is difficult to keep track of the user playing interest, because a player can easily adapt to changeless repetition. In this paper, we propose a dynamic scripting method that able to maintain the level designers' intention where user enjoys the game by adjusting the opponent behavior while playing the game. The player's countermeasure pattern for dynamic level design is modeled using a Gaussian Mixture Model (GMM). The proposed method is applied to a shooting game, and the experimental results maintain the degree of interest intended by the level designer.

• Proceedings of the Korea Concrete Institute Conference
• /
• 2006.05a
• /
• pp.486-489
• /
• 2006

This paper presents a newly proposed object-oriented finite element framework and its applications on dynamic analysis of plate girder bridge. The developed framework supports various types of finite elements, materials, constraints, loads, and solution methods. One major feature different from other object-oriented finite element programs is that static model and dynamic state can be easily read from or written to a file. In addition, the framework supports efficient DOF pattern handling for a node connecting elements with different DOF patterns, new multi-point constraint handling, and various scripting languages for easy use of the library. In order to show the applicability to dynamic analysis, dynamic moving load analysis on plate girder bridge is performed.

• The KIPS Transactions:PartA
• /
• v.15A no.3
• /
• pp.181-188
• /
• 2008

Nowadays, most web sites are developed using dynamic web pages where web pages are generated and transmitted by web application programs. Therefore, the ratio of attacks injecting malevolent strings to vulnerable web applications is increasing. In this paper, we present a static program analyzer which analyzes whether a web application program has vulnerabilities to the SQL injection attack and the cross site scripting(XSS) attack. To analyze programs using abstract interpretation framework, we designed an abstract domain which models potential string set along with excluded strings and developed an abstract interpreter for the PHP language. Also, based on them, we implemented a static analyzer. According to our experiments, our analyzer has competitive analysis speed and accuracy compared with related research results.

• Journal of the Korea Society of Computer and Information
• /
• v.23 no.9
• /
• pp.21-26
• /
• 2018

A variety of game algorithms have been proposed in recent years. Racing games using these new algorithms have greatly improved compared to those in the past. According to the analysis of racing games done by wheelgamer.com, a website that specializes in racing games, cars are the most common subject in mainstream racing games. These results show there are very few racing games using special subjects such as boats. This paper proposes a method to develop a realistic boat racing game using the Buoyont Force, beyond the limitation of typical racing games that are restricted to cars. A Material Editor based on Unreal Engine 4.12 is used to manifest the Dynamic Material of realistic ocean water. Blueprint, a visual scripting function, is used to materialize buoyancy which allows the boat to move freely along the waves.

• Proceedings of the Korea Information Processing Society Conference
• /
• 2007.11a
• /
• pp.1234-1237
• /
• 2007

웹 서비스를 기반으로 구축된 IT 환경에서 Dynamic Web page 를 동작하도록 하는 것이 CGI(Common Gateway Interface)이다. 이런 CGI 를 사용하는 Web page 에서는 XSS(Cross Site Scripting)에 취약점을 가지고 있다. XSS 의 취약점을 이용하여 Web page 의 변조, Cookie 의 가로채기 등의 악의적인 행동으로 인해 많은 피해사례가 있다. 기존의 연구들은 이러한 문제를 해결하기 위해서 게시판 입력 값을 체크하여 Meta character 를 필터링 하는 방법으로 XSS 공격을 대응하였다. 그러나 이러한 방법은 각 페이지 마다 필터링 스크립트를 사용하기 때문에 웹 서버의 성능에 많은 부하를 초래 하는 단점이 있었다. 따라서 본 논문에서는 이러한 웹 서버의 부하를 줄이기 위해 필터링 스크립트를 DLL(Dynamic link library) 화 시켜 모듈화된 함수를 각 페이지에서 호출하여 사용함으로써 웹 서버의 성능 향상을 제안 한다.

• Journal of the Korean Society of Fisheries and Ocean Technology
• /
• v.39 no.1
• /
• pp.77-83
• /
• 2003

Autonomous mobile robots based on the Web have been already used in public places such as museums. There are many kinds of problems to be solved because of the limitation of Web and the dynamically changing environment. We present a methodology for intelligent mobile robot that demonstrates a certain degree of autonomy in navigation applications. In this paper, we focus on a mobile robot navigator equipped with neuro-fuzzy controller which perceives the environment, make decisions, and take actions. The neuro-fuzzy controller equipped with collision avoidance behavior and target trace behavior enables the mobile robot to navigate in dynamic environment from the start location to goal location. Most telerobotics system workable on the Web have used standard Internet techniques such as HTTP, CGI and Scripting languages. However, for mobile robot navigations, these tools have significant limitations. In our study, C# and ASP.NET are used for both the client and the server side programs because of their interactivity and quick responsibility. Two kinds of simulations are performed to verify our proposed method. Our approach is verified through computer simulations of collision avoidance and target trace.

• Journal of Magnetics
• /
• v.21 no.4
• /
• pp.491-495
• /
• 2016

We developed an embedded Object-Oriented Micromagnetic Frame (OOMMF) script schemes for more flexible simulations for complex and dynamic mircomagnetic behaviors. The OOMMF can be called from any kind of softwares by system calls, and we can interact with OOMMF by updating the input files for next step from the output files of the previous step of OOMMF. In our scheme, we set initial inputs for OOMMF simulation first, and run OOMMF for ${\Delta}t$ by system calls from any kind of control programs. After executing the OOMMF during ${\Delta}t$, we can obtain magnetization configuration file, and we adjust input parameters, and call OOMMF again for another ${\Delta}t$ running. We showed one example by using scripting embedded OOMMF scheme, tunneling magneto-resistance dependent switching time. We showed the simulation of tunneling magneto-resistance dependent switching process with non-uniform current density using the proposed framework as an example.