Web application technologies like PHP, CGI, Javascript, and Ajax have made it much easier for people to construct and deploy services on the Internet. Unfortunately, this has opened a wide avenue for new attacks since it is as easy to unintentionally introduce new vulnerabilities into web applications as it is to intentionally introduce new functionality. Consequently, web applications have increasingly been the focus of attackers.
Read the rest of this entry »

• 0 Comments

Information and documentation services available on the Internet through web servers are growing in an exponential manner. The logical evolution of the Internet over the last 10 years has been producing a replacement of static web pages and documents by dynamically generated documents. This is due both to user interaction with work processes and flows defined by service creators and to the availability of growing information repositories. This has meant a progressive evolution from a concept of web page publishing which was quite simple in its origins to more complex and differentiated schemes relying on procedures and techniques based on information management. The increasing complexity of services and systems supporting them has made it necessary to formulate a theoretical and practical corpus capable of combining classical information management techniques within organizations with the particular features of the digital environment.
Read the rest of this entry »

• 0 Comments

The combination of evolving ICT standards that increase the interoperability between applications and the ever-increasing need for a more seamless access to and exchange of information is a major driver in the OECD ICT strategy. This paper describes the role and use of web services in the context of recent developments at the OECD to improve the accessibility of statistical information. It follows up on a paper presented at the 2002 ISIS meeting about “Improving Access to Statistical Information at OECD in Response to Users’ Requirements” and describes a technology framework – called “dot.STAT” – that has been devised for the implementation of applications that enable easy access to certain OECD reference data. The concepts outlined in this paper have been developed in close collaboration with the Statistics Directorate, specialised OECD-internal groups and task forces 2, as well as members of the SDMX Consortium3.
Read the rest of this entry »

• 0 Comments

DOT NET is one of the key products that enable application development under the new vision. However, DOT NET is not quite backward compatible with prior versions like visual basic version 6. This makes migration a serious issue. Converting existing source code to DOT NET architecture is not just a matter of loading it to the new version. DOT NET has its built-in migration tool, which performs the vital task of converting the source code syntax. But that’s just half of the work done. But before the converted code is actually compiled, the developer needs to enable it to smoothly fix lot of issues to fit into DOT NET architecture. In present efforts to find out solutions to these migration issues, a re-engineering Migration Model for Legacy Source Code (MMLC) has been proposed in this study. Proposed model has been further validated using a in-house project at one of the leading software development organisation. It is envisaged from the experimental try-out that the model would help the developer community to easily convert their legacy source code to DOT NET framework.
Read the rest of this entry »

• 0 Comments

E-commerce, pay-per-use online services, user-authentication and tracking for e-learning, online gaming, contests… What do all of these applications have in common? The need for secure transfer of encrypted data between client workstations and server applications. According to a study by Gartner Consulting, the growing concern for Internet security parallels the evolution of e-business. In the earliest days of Internet development, the emphasis was on distributing content over the web and making it available to anyone. Now, as the Internet matures, clients are more concerned with ensuring that their assets, both monetary and intellectual, are protected from those who may commit fraud or abuse them. This is why more and more developers have been looking for security solutions.
Read the rest of this entry »

• 0 Comments

An emerging trend in Social Networking sites and Web portals is the opening up of their APIs to external application develop- ers. For example, the Facebook Platform, Google Gadgets and Yahoo! Widgets allow developers to design their own applications, which can then can be integrated with the platform and shared with other users. However, current APIs are targeted towards develop- ers with programming expertise and database knowledge; they are not accessible to a large class of users who do not have a programming/database background, but would nevertheless like to create new applications. To address this need, we have developed the AppForge system, which provides a WYSIWYG application development platform. Users can graphically specify the components of webpages inside a Web browser, and the corresponding database schema and application logic will be automatically generated on the fly by the system.
Read the rest of this entry »

• 0 Comments

Here’s how much of a Web 2.0 guy Mark Zuckerberg is: during the weeks he spent working on Facebook as a Harvard sophomore, he didn’t have time to study for a course he was taking, “Art in the Time of Augustus,” so he built a website containing all of the artwork in class and pinged his classmates to contribute to a communal study guide. Within hours, the wisdom of crowds produced a sort of custom Cliff Notes for the course, and after reviewing the web based crib sheet, he aced the test. Turns out he didn’t need to take that exam, anyway. Zuck (that’s what the cool kids call him) dropped out of Harvard later that year.
Read the rest of this entry »

• 0 Comments

The rapid advent of “Web 2.0” applications has unleashed new HTTP traffic patterns which differ from the conventional HTTP request-response model. In particular, asynchronous pre-fetching of data in order to provide a smooth web browsing experience and richer HTTP payloads (e.g., Javascript libraries) of Web 2.0 applications induce larger, heavier, and more bursty traffic on the underlying networks. We present a traffic study of Web 2.0 applications including Google Maps, modern Web-email, and social networking Web sites, and compare them with all HTTP traffic. We highlight the key differences of Web 2.0 traffic from traditional HTTP traffic through statistical analysis. As such our work elucidates the changing face of one of the most popular application on the Internet: The World Wide Web.
Read the rest of this entry »

• 0 Comments