Application Development Process Research Articles

Application security automation in development

Automated security services can provide on-demand resources that are easily adopted by development teams. To save time and money, application security should be incorporated as early as possible in the application development process. Security requirements are the earliest opportunity to build a secure foundation. Using automation, security requirements can be aligned to system and project attributes and used as a foundation for additional security activities such as secure coding examples and security testing. Later in the development process, automated testing services provide development teams with vulnerability scanning options, depending on whether legacy or modern development practices are used. Legacy development projects can benefit from on-demand source code scanning that does not require tool set-up or configuration. Modern development processes are a better fit for incorporating security testing in automated build-and-test pipelines using working example scripts. When created with development team needs in mind, automated application security services can be valuable resources for development teams that drive better security outcomes. This paper will discuss an approach to building and delivering consumable development security services to drive better security.

Pengembangan Aplikasi Tiga-Tingkat Menggunakan Metode Scrum pada Aplikasi Presensi Karyawan Glints Academy

The rapid development of technology requires a software development management system that can be adaptive in rapidly changing circumstances. Scrum is an agile method that has the advantage of being agile and adaptive. Glints Academy holds an Industry Project Exploration as the program to prepare students for the rapid development of technology and reduce the gap between the education field and industrial field by MBKM program from the Ministry of Education and Culture. This study aims to apply the Scrum method in a heterogeneous developer team and divergent ability backgrounds to build an application with three-level architecture. The developer team is college students who come from different regions spread across Indonesia with full online implementation. Scrum is used because it is advantageous to other methods in a relatively fast-changing environment and also provides good quality control. The sprints were carried out in two sprints with two weeks of development in each sprint. The application built is an employee attendance application with a three-tier architecture: client, server, and data. The client-tier application is a front-end server built using the React.js framework while the server-tier and data-tier are built-in back-end servers with the Node.js and Express.js frameworks. JWT (JSON Web Token) authentication determines access role to functions and resources available on the back-end server. The result is a web application that fulfills the entire product backlog determined by the product owner. The results of this research are this method can used to develop features enhancement in the middle of the application development process without affecting the main feature development and this method is effectively used for different team developer backgrounds and during its online development

Fault-injection for Hardware- and Software-in-the-Loop testing of networked railway systems

Verification is an important step during the development process of safety-critical railway applications. Verifying the functionality already at early development stages can prevent integration issues in later steps. Hence, typically used technologies are Hardware- and Software-in-the-Loop testing, co-simulation and fault-injection. The latter is a good opportunity to inject faults deterministically into hardware, software or simulation models of a device. In this way, the functionality of the network and end devices can be validated effectively in cases of errors.In this paper we extend an existing framework for distributed co-simulation by the means of fault-injection. Our mechanism is based on the CENELEC EN 50159 standard which defines seven message errors for communication. As the framework operates on a network-centric abstraction level, we inject the faults directly into the packets. The evaluation shows the applicability of our fault-injection mechanism for Hardware- and Software-in-the-Loop testing based on an example application.

Contributing to Planning for Sustainability: Advancing User Involvement for User-Centred Geoparticipation Applications

Public participation, including the use of geospatial technologies, is pivotal in planning for sustainability. Contributory participation initiatives, however, face challenges, such as the quantity and quality of the data provided by the public. User-centred applications can address these issues, but since developers often lack understanding of public users, appropriate user involvement in application development processes is crucial. Despite the manifold practices that exist, there is a need to further support user involvement in development processes. This paper contributes to this through findings from three projects aimed at developing applications tailored to the public. Analysing and comparing user involvement in the three projects, several key results emerged. In order to increase developers’ knowledge about public users and to deliver particularly user-centred applications, (i) user involvement should be considered not only in development activities such as requirement-gathering, evaluation and testing, but also in design and implementation; (ii) user involvement can vary in type and extent (i.e. ranging from informative and consultative to participative), allowing user integration in the different development phases; (iii) the combination of process models and design approach, which delivers project-specific development workflows, is suitable for involving users in a project-appropriate and structured manner in development activities.

Hesitant Fuzzy-Sets Based Decision-Making Model for Security Risk Assessment

Security is an important component in the process of developing healthcare web applications. We need to ensure security maintenance; therefore the analysis of healthcare web application's security risk is of utmost importance. Properties must be considered to minimise the security risk. Additionally, security risk management activities are revised, prepared, implemented, tracked, and regularly set up efficiently to design the security of healthcare web applications. Managing the security risk of a healthcare web application must be considered as the key component. Security is, in specific, seen as an add-on during the development process of healthcare web applications, but not as the key problem. Researchers must ensure that security is taken into account right from the earlier developmental stages of the healthcare web application. In this row, the authors of this study have used the hesitant fuzzy-based AHP-TOPSIS technique to estimate the risks of various healthcare web applications for improving security-durability. This approach would help to design and incorporate security features in healthcare web applications that would be able to battle threats on their own, and not depend solely on the external security of healthcare web applications. Furthermore, in terms of healthcare web application's security-durability, the security risk variable is measured, and vice versa. Hence, the findings of our study will also be useful in improving the durability of several web applications in healthcare.

Model Research of Visual Report Components

The existing mainstream report system in the market can meet the daily report generation. However, it is difficult to maintain the system later due to the poor satisfaction of its report personalization and the high front-end and backend dependencies. In order to solve the above problems, this paper studies the development idea of Vue components. The technical characteristics of Vue and the source code of the Axios framework are analyzed, and a visual component model is proposed in combination with the application scenarios and development process. The data transmission method of the components is clarified in the actual application layer, which enhances the control of the page in the front-end component development process. The ability to convert complex reports into the construction of visual components and the dynamic data components to obtain data effectively improves the reporting system's development speed and meets the needs of personalized reports.

Load Balancing Framework for Cross-Region Tasks in Cloud Computing

Load balancing is a technique for identifying overloaded and underloaded nodes and balancing the load between them. To maximize various performance parameters in cloud computing, researchers suggested various load balancing approaches. To store and access data and services provided by the different service providers through the network over different regions, cloud computing is one of the latest technology systems for both end-users and service providers. The volume of data is increasing due to the pandemic and a significant increase in usage of the internet has also been experienced. Users of the cloud are looking for services that are intelligent, and, can balance the traffic load by service providers, resulting in seamless and uninterrupted services. Different types of algorithms and techniques are available that can manage the load balancing in the cloud services. In this paper, a newly proposed method for load balancing in cloud computing at the database level is introduced. The database cloud services are frequently employed by companies of all sizes, for application development and business process. Load balancing for distributed applications can be used to maintain an efficient task scheduling process that also meets the user requirements and improves resource utilization. Load balancing is the process of distributing the load on various nodes to ensure that no single node is overloaded. To avoid the nodes from being overloaded, the load balancer divides an equal amount of computing time to all nodes. The results of two different scenarios showed the cross-region traffic management and significant growth in revenue of restaurants by using load balancer decisions on application traffic gateways.

Evaluating the Impacts of Security-Durability Characteristic: Data Science Perspective

Security has always been a vital research topic since the birth of web application. A great deal of research has been conducted to determine the ways of identifying and classifying security issues or goals However, in the recent years, it has been noticed that high secure web applications have less durability; thus reducing their business continuity. High security features of a web application are worthless unless they provide effective services to the user and meet the standards of commercial viability. Hence, there is a need to bridge the gap between security and durability of the web application. Indeed, security mechanisms must be used to improve security as well as the durability of the web application. Although security and durability are not related directly, some of their attributes impact each other indirectly. Attributes play a key role in reducing the void between security and durability. In this respect, the present study identifies the main factors of security and durability that affect each other directly and indirectly, including confidentiality, integrity availability, human trust and trustworthiness. The importance of all the attributes in terms of their weight is essential for their impact on the overall security during the web application development process. To evaluate the efficacy of our work, we used the Hesitant Fuzzy Analytic Hierarchy Process (H-Fuzzy AHP). The results of our investigations and conclusions will be a useful reference for the web application developers in achieving a more secure and durable web application.

Efficient Decentralized Sharing Economy Model based on Blockchain Technology: A Case Study of Najm for Insurance Services Company

Blockchain is an emerging technology that is used to address ownership, centrality, and security issues in different fields. The blockchain technology has converted centralized applications into decentralized and distributed ones. In existing sharing economy applications, there are issues related to low efficiency and high complexity of services. However, blockchain technology can be adopted to overcome these issues by effectively opening up secure information channels of the sharing economy industry and other related parties, encouraging industry integration and improving the ability of sharing economy organizations to readily gain required information. This paper discusses blockchain technology to enhance the development of insurance services by proposing a five-layer decentralized model using Ethereum platform. The Najm for Insurance Services Company in Saudi Arabia was employed in a case study for applying the proposed model to effectively solve the issue of online underwriting, and to securely and efficiently enhance the verification and validation of transactions. The paper concludes with a review of the lessons learned and provides suggestions for blockchain application development process.

Programming Models for Determining Optimal R&D Arrangement in Mobile Application Development Process

Programming Models for Determining Optimal R&D Arrangement in Mobile Application Development Process

Aplicación interactiva para el aprendizaje con evaluaciones en el área de las matemáticas

The following document presents the development process of an interactive mobile application, as a support strategy for the teaching - learning process in the area of mathematics, for students of the Educational Experience (EE), Fundamentals of Mathematics at the Faculty of Statistics and Informatics. Using User Centered Design (UCD), which proposes to put the client at the center of research and design, to obtain an application that achieves a user experience (UX), satisfactory, when interacting with the application, allowing greater speed in the completion of tasks, which is simple to learn and intuitive, this to increase its pleasure and ease of use for the beneficiary, obtaining these results with usability tests to the application. All this because currently many applications are known as support in the area of mathematics, which have usability problems obtaining a bad UX. This work follows a user-centered methodology to create usable applications and a good UX for university students in the area of mathematics.

Training Information System at PT. Teknik Media Utama Banda Aceh City

The aim of this research is; 1) To find out the training information system at PT. Banda Aceh Main Media Engineering, and 2) To design a training information system at PT. Teknik Media Utama Banda Aceh City. FlowMap and data flow diagrams are used to show the general structure of an information. While the application development process using the waterfall model proposes a systematic and sequential approach to software development that starts at the level and progress of the system throughout analysis, design, code, testing, and maintenance. The research results include; 1) Management of training participant database at PT. Teknik Media Utama is ready to replace the old system gradually in a certain parallel period (4-6 months). During that time, the old system is still used to maintain data security and integrity if an error occurs in the new system, 2) The system will be very helpful for users or data managers of trainees at PT. Teknik Media Utama more quickly, easily and accurately in every activity related to training participant data, and 3) The system is very user friendly and in accordance with the needs of the object. Because in designing designs and others, the author does not design based on personal but always consults with users.

Investigation of the Effectiveness of an Augmented Reality and a Dynamic Simulation System Collaboration in Oil Pump Maintenance

The maintenance of oil pumps is a complex task for any operating organization, and for an industrial enterprise in the oil and gas sector of the economy, this issue has a high degree of urgency. One of the reasons for this is a wide spread of pumping equipment in all areas of oil and gas enterprises. At the same time, an aggressive environment, uneven load, remote facilities, and harsh climatic zones (especially in the areas of the Arctic region or production platforms) are factors that make it relevant to develop special systems that help or simplify the maintenance of pumping equipment. Dynamic modeling is one of the modern technologies which allows for solving the urgent issue of assessing the technical condition of equipment. It is the basis of systems that carry out diagnostics and prognostic calculations and allow for assessing the dynamic state of objects under various conditions of their operation, among other functions. Augmented reality technology is a technology that allows for reducing the time for equipment maintenance by reducing the time for searching and processing various information required in the maintenance process. This paper presents an investigation of the effectiveness of an augmented reality and a dynamic simulation system collaboration in oil pump maintenance. Since there is insufficient research on the joint application of these two technologies, the urgent issue is to prove the effectiveness of such collaboration. For this purpose, this paper provides a description of the system structure, gives a description of the development process of the augmented reality system application and tests the application using Microsoft HoloLens 2.

Comparison of Flutter and React Native Platforms

Mobile application development processes have become very important with the increasing use of mobile devices. Android and IOS operating systems, which are the most preferred mobile operating systems, have different development tools and software languages. Developing and testing and debugging the same application separately for each platform with development tools can lead to time loss and high maintenance costs. Cross-platform software that provides testing and development for different operating systems at the same time offer an alternative structure to these processes. Cross-platform software accelerates software processes and provides advantages by reducing application development costs. The comparison of Flutter and React Native, which are cross-platform development software will be presented in this study.

Some Aspects of Automated Implementation of Dependencies in PHP Language

The purpose of the article is to research, analyze and consider the general problems and prospects of using the principle of implementing dependencies in the development of web applications in the PHP language. Research methods are methods of semantic analysis of the basic concepts of this subject area (web technologies and web applications). The article considers the existing approaches to control inversion based on the use of the dependency implementation template. The novelty of the research is to solve the control inversion problems based on a template when designing web applications. The conclusion of the research conducted in the article is that the existing problems and prospects for the application of the principle of dependency implementation in web applications with program code written in PHP have been analyzed. Taking into account the results of the analysis, the authors have developed a system for automating the implementation of dependencies, which is important for solving problems of improving the efficiency of web application development processes in PHP.

Design Thinking Approach for the Development of Theme Park Application

Theme entertainment businesses rely very much on providing their visitors with the most memorable experiences. To do so, top operators have put a considerable amount of effort and investment in their facilities and activities in their parks. However, after a customer interview, several pain points are still found such as long toilet queues, finding available parking lots, being unable to find the parked car, and no real-time thrill ride information/status. Similar with other domains in the tourism market, most of these problems are easy to solve with the help of having a smartphone application that delivers such information right to the customer’s hands. This study outlines the development process of a theme park application based on a design thinking approach. Our MVP prototypes have obtained good feedback from potential users in both qualitative and quantitative usability tests.

Model-driven system-level validation and verification on the space software domain

The development process of on-board software applications can benefit from model-driven engineering techniques. Model validation and model transformations can be applied to drive the activities of specification, requirements definition, and system-level validation and verification according to the space software engineering standards ECSS-E-ST-40 and ECSS-Q-ST-80. This paper presents a model-driven approach to completing these activities by avoiding inconsistencies between the documents that support them and providing the ability to automatically generate the system-level validation tests that are run on the Ground Support Equipment and the matrices required to complete the software verification. A demonstrator of the approach has been built using as a proof of concept a subset of the functionality of the software of the control unit of the Energetic Particle Detector instrument on-board Solar Orbiter.

Redesign of E-Commerce Mobile Application with Design Thinking Method: A Case Study of RP2, Online Household Retailer

RP2 is one of the growing e-commerce sites in Indonesia offering products for home and living. Recently, RP2 launches a mobile application to reach users by using mobile devices to facilitate purchases on RP2. However, the development of this mobile application has not been through a good application development process, so several weaknesses are found. The aim of the research was to redesign the RP2 mobile application using the design thinking method. The method had five stages: empathize, define, ideate, prototype, and test. However, the research only focused on the first four stages. Moreover, a survey using a questionnaire and interviews were done with 34 users of the RP2 mobile application. The research results are a prototype of the RP2 mobile application, which has been tailored to users’ needs and the project owner’s input. Changes have been made to the RP2 mobile application using the design thinking method. Changes are applied in several views, such as home, navigation and notifications, search bar, Product Detail Page (PDP), cart and payment, and profiles. With these changes, it is expected that users of the RP2 mobile application will increase, so the number of transactions through the RP2 mobile application will increase too.

ERequirement Elicitation Techniques for a C-Programming Learning Application

Requirement elicitation is a part of the application development process which determines the functional and non-functional requirements of the application. This study has elicited the requirements of a programming learning application by using several requirement elicitation techniques. The purpose of the application is to assist novice programmers in learning C language programming. The requirement elicitation was done by using qualitative approaches in a triangulation strategy. The triangulation involved literature reviews on related existing C-programming applications and semi-structured interviews with five expert programming lecturers in Malaysian Polytechnic. The requirement elicitation has identified an important approach of a programming learning application which is the programming visualization to help novices understand the program execution behaviour better. It has determined that the application should visualize the variable contents and program execution steps as its functional requirements. Meanwhile, the non-functional requirement of the application is that the application should be designed to be a simple IDE-based application since it is targeting the novices. The finding from this requirement elicitation is essential in determining important functions to be available in the developed application and how it is supposed to be implemented. This application could enhance programming skills of the students and prepare them to be competent programmers for the future industrial demand.

Evaluation of Tax Service Application User Satisfaction for Sustainable Service Digitization

E-TPT is an android-based application that is used in carrying out public services, especially in the field of taxation. The main service of this application is the online queue menu, but in its implementation the use of this application is still experiencing some problems so that follow-up is needed in overcoming the problem. The purpose of this study was to determine and explain the effect of perceived ease and usefulness on user satisfaction and behavioral interest in using the E-TPT Application. Therefore, research is carried out using quantitative methods and involves a number of theories to evaluate the use of applications, the theoretical models used include Theory Acceptance Model (TAM), Theory Reaction Action (TRA), accompanied by model development which includesPerceived usefulness, Perceived ease of use,Behavioral Intention to Use, and User Satisfaction. Perceived usefulness has a significant effect on user satisfaction, perceived usefulness has a significant but not significant effect on behavioral interest in using applications, and perceived usefulness has a significant effect on behavioral interest in using applications through user satisfaction. Furthermore, perceived ease of use has an insignificant but not significant effect on user satisfaction, perceived ease of use has a significant effect on behavioral interest in using applications, and perceived ease of use has an insignificant effect on behavioral interest in using applications through user satisfaction. User satisfaction has a significant effect on behavioral interest in using the application. Increasing user satisfaction and interest in using this application can be done by developing applications. In the application development process, you can consider the speed of the application in completing work, improve user performance and user convenience in application control as well as conduct research and planning related to the needs of taxpayers on the application.