• KSII Transactions on Internet and Information Systems (TIIS)
• /
• v.14 no.6
• /
• pp.2576-2590
• /
• 2020

The fundamental reason why most SQL injection detection methods are difficult to use in practice is the low reusability of the implementation code. This paper presents a reusable SQL injection detection method for Java Web applications based on AOP (Aspect-Oriented Programming) and dynamic taint analysis, which encapsulates the dynamic taint analysis processes into different aspects and establishes aspect library to realize the large-grained reuse of the code for detecting SQL injection attacks. A metamodel of aspect library is proposed, and a management tool for the aspect library is implemented. Experiments show that this method can effectively detect 7 known types of SQL injection attack such as tautologies, logically incorrect queries, union query, piggy-backed queries, stored procedures, inference query, alternate encodings and so on, and support the large-grained reuse of the code for detecting SQL injection attacks.

• Proceedings of the CALSEC Conference
• /
• 2005.03a
• /
• pp.299-304
• /
• 2005

This paper is a research on the dynamic signature verification of error rate which are false rejection rate and false acceptance rate, the size of signature verification engine, the size of the characteristic vectors of a signature, the ability to distinguish similar signatures, and so on. We suggest feature extraction and comparison method of the signature verification. Also, we have implemented our system with Java technology for more efficient user interfaces and various OS Platforms.

• Proceedings of the IEEK Conference
• /
• 2000.07a
• /
• pp.257-259
• /
• 2000

In this paper, a word-unit recognition is performed to implement a speech recognition system over the web, using JAVA Applet and continuous distributed HMM. The system based on Client/server model is designed. A client computer processes speech with Applet, and then transmits feature parameters to the server computer though the Internet. The speech recognition system in the server computer transmits the result applied by the forward algorithm to the client computer and the result is displayed in the client computer by text.

• Journal of Industrial Technology
• /
• v.25 no.A
• /
• pp.175-182
• /
• 2005

SNMP is a standard protocol for management of networking devices. Nowadays, most computer systems have capability to act as SNMP agents. In this paper, we describe our system monitoring software based on SNMP. It consists of a monitoring server, SNMP agents, and client programs. The monitoring server collects status information from the SNMP agents running on the monitoring target graphical display. We developed two version of clients, Java based standalone program and Web based program. Since most known SNMP packages are too big and heavy, we developed an efficient version of SNMP library for out system monitoring.

• Annual Conference of KIPS
• /
• 2000.04a
• /
• pp.809-814
• /
• 2000

본 논문에서는 CORBA와 Java를 이용하여 분산 객체 서버 형태의 응용 프로그램인 제품정보관리 시스템을 설계하고 구축한 사례를 소개한다. 이 시스템은 Visibroker 3.4 for Java와 JDK 1.2.2를 이용하여 개발되었으며 데이터베이스로는 Oracle 8i를 사용하였다. 특히, 지속성 객체 (persistent object) 의 지원을 위하여 추가의 추상화 계층 ( abstraction layer) 를 구현하고 있으며 전체 시스템은 객체 지향 프레임워크 (object-oriented framework) 으로 설계되었다. 본 문서에서는 제품정보관리 시스템 뿐 아니라 다른 분산객체서버의 설계 및 구현에도 참고가 될만한 설계 가이드라인 들을 제시한다.

• Annual Conference of KIPS
• /
• 2004.05a
• /
• pp.581-584
• /
• 2004

많은 중소기업들이 업무를 진행하는데에 있어서 수기로서 작업을 하기도 하고 아니면 간단한 프로그램를 사용하든지 아니면 중소기업형 ERP를 사용하기도 한다. HomePage의 경우에도 있는 경우도 있고 존재하지 않는 경우도 있다. 더구나 WEB으로 업무를 처리하는경우는 상당히 미흡하다. 개발을 하려고 하여도 WEB 기반으로 프로그램을 개발하는데는 Servlet 기반의 방식이 대다수 이다. 이 방식은 중소기업에서 개발하기에는 너무나 많은 개발비용과 유지비용이 들게되고 또한 네트워크 환경의 열악성 때문에 투자대비 효과를 얻기가 힘들다. 본 논문에서 제안하는 시스템은 Applet을 이용하여 중소기업업무 프로그램을 WEB 기반으로 구축하여 자료의 사용을 Internet 또는 Intranet등에서 가능하게 하고 네트워크의 영향역시 AWT기반으로 Applet으로 제작하여 만들어지는 파일의 크기를 작게 구현해서 네트워크의 영향을 최소화 하게 구현을 하고, 프로그램을 클래스화시켜 재사용이 가능하게 하여 개발기간의 단축과 유지보수를 용이하게 하여 비용을 줄이도록 한다.

• Communications of the Korean Institute of Information Scientists and Engineers
• /
• v.31 no.5
• /
• pp.25-31
• /
• 2013

• Proceedings of KHEA Conference
• /
• 1997.07a
• /
• pp.221-221
• /
• 1997

• Proceedings of KHEA Conference
• /
• 1997.07a
• /
• pp.186-186
• /
• 1997

• The Transactions of the Korea Information Processing Society
• /
• v.6 no.11
• /
• pp.2932-2945
• /
• 1999

As the Internet and Java technology have been growing up, parallel processing approach to utilize those idle resources connected to the Internet has become quite attractive. In this paper, JICE(Java Internet Computing Environment) was implemented as a parallel computing platform based on the Internet using multithreading and RMI mechanisms provided by Java. The basic model of JICE is constructed as three components, such as a client, a set of workers, and a broker. A worker communicates with other workers via a globally shared memory system. It provides users with master-slave programming model and a collection of library functions. The basic model of JICE is also extended as a multimanaging system. This multimanaging system is evaluated by analysis to show its effectiveness. According to numerical analysis and experiments with several benchmarks, it is shown that the performance of basic model depends on the shared memory reference ratio and user's library is a quite promising.