Open Web Research Articles

Security Mechanism in MAMATA Healthcare System Using Rule based Algorithm for Maternal Hospitals and Pathology Laboratories

Recently, innovation in the digital health industry has grown steadily, trending with medical cyber-physical systems’ (MCPS) integrated solutions, regulations, real-time analytics, and software frameworks. Amid these advancements, the paramount concern is the security of medical information, particularly in maternity hospitals where data breaches must be rigorously avoided. While some researchers have explored security methods, they have encountered limitations and identified existing risks. In this research article, the authors propose a novel security mechanism/method called MAMATA Agent/BOT (i.e. Medical-data-Access-for-Maternal-Treat-ment-in-rural-Area) to discover and mitigate trending vulnerabilities, drawing reference from the OWASP (Open Web Application Security Project) Top 10 Report 2017/2020. The author’s approach leverages a rule-based algorithm, enhancing the robustness of the security mechanism. This MCPS system and security mechanism are implemented within PHP and Laravel environments, and comparative analysis is carried out against a few existing security methods commonly employed in general healthcare (like SOA/SOD Framework, Andrew Austin test, Marcelo test, etc..). Results demonstrate a quantified improvement, e.g., 60-70% improvement in detectable vulnerabilities compared to prior approaches. Additionally, the authors extend their previous research by depicting different turns of events and applying a more stable, secured structure tailored to medical applications. Quantitative data presented with comparative analysis in tabular format validates the effectiveness of the proposed methods by detecting and, or fixing 7 to 9 major vulnerabilities (out of the top 10) identified by security assessment tools like ‘Burp Suite Proxy’ and ‘Nikto’.

Behavior of RC interior beam-to-column joints with FRP-strengthened beam web openings under cyclic loading

Despite the widespread adaption of the design criterion of strong column and weak beam (SCWB) in reinforced concrete (RC) frames, many existing RC frames cannot meet the design requirements of SCWB. Therefore, a novel beam opening (BO) technique for retrofitting RC frames that violate the SCWB design philosophy was proposed. The BO technique involves the creation of a web opening at the beam end near the joint to weaken its flexural capacity. In order to offset the reduced shear capacity due to the web opening, a fiber-reinforced polymer (FRP) shear strengthening system also needs to be applied around the opening. However, all previous relevant studies have been focused on the behavior of RC beams with FRP-strengthened web openings. To further verify the effectiveness of this technique, this study conducted experimental and numerical evaluations of RC joints with beam web openings under cyclic loading. Three full-scale RC interior beam-to-column joints were fabricated and tested under lateral cyclic loading and the results were evaluated in terms of failure modes, hysteresis behavior, ductility, energy dissipation, and stiffness degradation. The test results indicated that the inclusion of beam web openings successfully changed the failure mode of the joint from column-end failure to beam-end failure. Subsequently, finite element models of the three test specimens were established and the simulation results agreed well with the test results.

Numerical parameters study on seismic performance of short replaceable link with perforated web: Bearing capacity and overstrength

This study builds on experimental research of replaceable links with perforated web by using finite element software to develop a finite element model (FEM) of the link. The model’s reliability and accuracy were confirmed by comparing its results with experimental data. The simulation results closely match the experimental hysteresis curves, demonstrating the model's accuracy. Additionally, the simulations effectively replicated the observed failure modes, confirming the model's reliability and practical relevance. Building on this, 22 different finite element models were developed to investigate the impact of various parameters on link performance, including the shape and size of web openings, the number of openings, flange weakening depth, and link length ratio. The analysis revealed that links with circular or elliptical web openings have higher overstrength coefficients than other shapes. Additionally, as the link length ratio and flange weakening depth decrease, the overstrength coefficient tends to increase. These findings offer valuable theoretical insights and reference data for designing and optimizing replaceable link with perforated web.

Prediction of axial compressive capacity and interpretability analysis of web perforated Σ-shaped cold-formed steel

The Σ-shaped cold-formed steel with web opening (ΣSCFSWWO) is a critical component in modern structural systems, and accurate calculations of its axial compressive capacity are essential for ensuring the overall stability and safety of structures. However, traditional finite element analysis (FEA) and experimental methods are often inefficient and require complex modeling techniques for capacity calculations. Moreover, the interaction between section design parameters and structural capacity remains unclear. This study integrates FEA, experimental methods, and machine learning to propose a novel approach for predicting capacity and analyzing parameter interpretability. A dataset comprising 1000 numerical simulation results and 260 experimental data points was established. Machine learning techniques, including BP (Backpropagation) neural networks, RBF (Radial Basis Function) neural networks, Decision trees, Random Forests, and XGBoost algorithms, were employed to develop predictive models for capacity. The SHapley Additive exPlanation (SHAP) method was utilized for interpretability analysis. Results indicate a good correlation between FEA and experimental outcomes, effectively simulating the mechanical behavior of the components. Comparative analysis reveals that the XGBoost model demonstrates the highest predictive accuracy and generalization capability. SHAP analysis elucidates the influence of various input parameters on axial compressive capacity predictions and clarifies the interactions among these parameters. This research provides a novel reference for calculating the axial compressive capacity of ΣSCFSWWO, and the proposed methodologies can be extended to other similar components.

Statfda: A User-Friendly Web Application to Analyse Curves Data from a Functional Perspective

Using classical statistical techniques to analyze curves data whose behavior is clearly continuous might cause inexact results. To avoid this tricky situation, a suitable option is to carry out a functional data analysis that takes the time-dependent structure into account. However, the statistical modeling can be complex and difficult to understand and therefore, there is a great need of providing new tools to apply this methodology in any area of knowledge. In this sense, an open access web application is introduced in the current work. It serves as a comprehensible and effective tool whose greatest competitive advantage is that programming skills or conceptual knowledge in math are not required to use it. This interactive application has a user-friendly format and offers different well-defined functional techniques such as exploratory analysis, functional principal component analysis and functional regression models. Its functionalities are illustrated making use of a public dataset of biomechanics.

Web crippling investigation of perforated aluminium lipped channels under interior-one-flange loading condition

This study investigates the web crippling performance of roll-formed aluminium-lipped channels (ALCs) made of 5052-H36 aluminium alloy. The influence of web perforations on the crippling resistance of webs subjected to Interior-One-Flange (IOF) loading was examined. Laboratory tests were conducted on ALCs with and without circular openings at the mid-depth of the web. Finite element (FE) models were then developed and validated against the experimental results, ensuring their accuracy. To explore the influence of various parameters on the web crippling resistance, a parametric study was carried out. The parameters considered in the study include opening diameter, section depth, inside bent radius, bearing length, and aluminium grade. Using the data obtained from the parametric study, a comprehensive assessment of the available design guidelines for cold-formed steel and stainless steel was performed. New equations in the form of reduction factors were developed to accurately predict the reduction in the web crippling strength, showing their applicability to predict the reduction in the web crippling resistance due to web openings and statistically verifying their reliability.

Bending Behavior of RC Beams with Regular Web Openings and Non-corroding GFRP Reinforcement

The present study pertains to the flexural behavior of RC beams with openings and non-metallic (GFRP) reinforcement. The main goal of preferring GFRP reinforcement over the conventional steel reinforcement was to safeguard the beams against the reinforcement corrosion. The presence of multiple regular transverse openings throughout the beam length increases the susceptibility of reinforcing bars to corrosion as the larger contact area in these beams with the outside environment increases the ingress of corrosive agents. Within the scope of the study, a total of 8 RC beams, including two reference beams without web openings, were tested under four-point bending. The test parameters were the flexural reinforcement ratio, the presence of short stirrups in the chords, and the presence of diagonal reinforcement spiraling around the openings. Since GFRP stirrups are difficult to bend, each stirrups was formed by connecting four individual FRP bars around the longitudinal bars. The opening circular geometry was adopted to avoid stress concentrations around the sharp corners of opening and to facilitate the placement and fixing of different schemes of reinforcement in the beams. The present tests depicted that the diagonal reinforcement around the openings have considerable contribution to the flexural behavior of RC beams with GFRP reinforcement and with multiple regular transverse openings. The RC beams with openings were able to approach their analytical flexural capacities in the presence of diagonal reinforcement for both moderately and heavily reinforced beam groups. The analytical deflection predictions of GFRP-RC beams with openings showed a good agreement with experimental data.

Effects of openings on postbuckling behavior of large‐size composite C‐beam under bending‐shear coupling load

AbstractProper design and accurate mechanical assessment of composite C‐beam after opening are of great importance in structure engineering. This paper aims to experimentally and analytically investigate the postbuckling response of large‐size C‐beam with web opening under bending‐shear coupling load. New specimen with four different open shapes were designed and tested. Strain gauges and displacement measurements were applied to monitor its buckling behavior, strain field distribution and critical failure load. Four specimens with various openings were loaded until catastrophic failure occurred. Additionally, an analytical model was introduced to predict the residual strength of circular opening. The results indicate that while the presence of an opening significantly decreases the load carrying capacity, it has minimal effect on the bending stiffness. Compared with intact specimen, the initial delamination, buckling and ultimate strength of the circular opening decreases less than those of the rectangular opening. By altering the position of the rectangular opening, improvements can be made in terms of initial delamination resistance and buckling load; however, ultimate strength remains largely unaffected. Reinforcing the edge of an opening further reduces resistance to initial delamination but other two indicators are improved. Overall, from buckling to failure stages, post‐buckling bearing capacity after opening decreases by 40%. Moreover, the shear failure mode is observed during catastrophic failures. And the analysis method employed is relatively conservative.Highlights Ten large size composite C beams are conducted under coupling loads. Deformation, strain distribution and failure mode are presented. Influence of openings on postbuckling behavior of beam is analyzed. An analysis method is employed to predict the residual strength of beam. It could provide valuable insights for assisting in designing beam openings.

Copyright administration in academic libraries: Challenges of library patrons

The application of stricter copyright laws in academic libraries leaves users of reprographic materials at the mercy of rightsholders thereby inhibiting knowledge acquisition and dissemination. This study interrogated the copyright challenges faced by academic library users in Ghana using data from 530 postgraduate students in two private and two public universities. Among the major challenges faced by students were: (i) Digital technology has made it easier to access, reuse and share content (ii) Unintentionally exposing the institution or library to the risk of copyright infringement (iii) Piracy (iv) Undue concerns of authorities about copyright infringement, (v) Publishers and other intermediaries put impediments in the provision of learning resources, (vi) Difficulties in locating the rightsholder to seek permission for the use of material, (vii) Difficulties in supervising content use, (viii) Content is available from many different sources, including the open web, and (ix) Rights licensing are not always straightforward, easy or efficient. The support by some students (i.e., those at the Writing of findings/results or Discussion stage of their thesis writeup as well as fourth-year PhD students) of the commercial interests of publishers may be a positive contribution in promoting copyright compliance in academic libraries.

Среднемасштабное интернет-картографирование почвенного покрова

The article presents the results of the development of an open geoinformation system of soil cover based on a medium-scale soil map. The scale of the map is 1:100 000. Coverage of the territory—Okhansky Urban District of the Perm Krai. The relevance of the work performed is caused by the growing demand for digital soil-cartographic information on a medium scale, which is characterized by representativeness in the conduct of a land cadastre, environmental impact assessment, obtaining information about the thickness of the fertile layer in civil, industrial and road construction, as well as in the development of adaptive landscape farming systems. The purpose of the research is to develop and test a method for integrating archival soil-cartographic materials with open web GIS solutions for a modern level of visualization and efficient use of soil maps (using the example of a medium-scale level within the boundaries of the Okhansky Urban District of the Perm Krai). For vectorization, the scanned map was defined in the coordinate system of the Pulkovo 1942/Gauss-Kruger zone 10 projection. As a result of vectorization, the total number of soil contours was 648. The source of attributive information is the soil outlines of land uses in the Okhansky District of the Perm Krai. The structure of the GIS project, in addition to the layer of soil contours, contains thematic layers characterizing the granulometric composition and quality classes of soils, calculated by the method of A.S. Fatyanov. The developed technological scheme for creating an open soil web GIS has two main blocks: the development of a GIS project and web design. Between them is the result of the functioning of the qgis2web module, which allows you to create a web map from a GIS project. Open access to GIS is organized at the web page [Web resource: https://chascshin.github.io/Ohansk-GIS (accessed 27.09.24)]. Using GitHub Pages to host a site with a web map significantly reduces the cost of the final geoinformation project. However, the main disadvantage of GitHub hosting is the limitations on the count and amount of data.

Knowledge Management: Educational Activities Supported by the Profession in the Australasian Region

Abstract: This study primarily explores and documents knowledge management (KM) educational activities in the Australasian region and discusses some professional aspects that shape academia due to the workplace happenings in this discipline and its practice. A thorough search was carried out in open web space and literary databases, which revealed limited program offerings and hardly any discussion around the KM educational qualifications. The KM professional workplace search also showed little interest in specific KM roles, and the stated job requirements were quite broad. Such a generic workplace consideration leaves the education sector struggling to maintain a robust student body required to sustain an exclusively KM-focused program.

Peer support for borderline personality disorder: A critical review of its feasibility, acceptability, and alignment with concepts of recovery.

Many organizations have adopted peer support to increase service alignment with recovery-oriented principles. Yet, few studies have scrutinized borderline personality disorder (BPD)-specific concepts of "recovery" and "recovery-oriented practice," nor evaluated the extent to which existing peer support services (PSS) align with these concepts. We addressed these knowledge gaps in four phases: (a) a literature review to understand BPD-specific concepts of "recovery" and "recovery-oriented practice," (b) a literature review and open web search to describe the implementation, feasibility, or effectiveness of PSS for people with BPD, (c) a landscaping survey of program administrators regarding their BPD-PSS programs, and (d) a critical review of the extent to which current peer support for BPD aligns with "recovery" and "recovery-oriented practice." We identified 40 published sources that defined "recovery" or "recovery-oriented practice" as it pertains to BPD, and narratively summarize these results, nine sources that described PSS for people with BPD, and received survey responses from seven BPD-PSS program administrators. Our critical review highlighted the distinctive but overlapping concepts of "clinical recovery" versus "personal recovery" and underscored the alignment of BPD-PSS with personal recovery goals, including increased self-knowledge and -acceptance, hope, engagement in meaningful social roles and relationships, and self-determination. While peer support is experienced positively by service users, peer supporters, and clinicians, challenges include setting boundaries, minimizing dual roles, and ensuring adequate training, supervision, and personal support to reduce burnout. Peer support appears to be a feasible avenue for meeting the personal recovery goals of people with BPD; however, formal program evaluations are needed. (PsycInfo Database Record (c) 2024 APA, all rights reserved).

Study on heat transfer behavior of CFS-PSB composite walls

The cold-formed thin-walled steel (CFS)-paper straw board (PSB) composite walls takes as the research object. The thermal performance of the wall was analyzed by the building heat transfer theory and the finite element analysis software ANSYS, explored the influence of relevant parameters on heat transfer coefficient of composite wall and proposed supplementary correction coefficient for applying the type of composite walls. The heat flux density field, temperature distribution field, node temperature, and heat transfer coefficient of the walls were also obtained. The specific parameters analyzed using this model mainly included the insulation material, web height, thickness of the section steel, width of the flange, length of the hole, number of hole rows, and horizontal and longitudinal spacing of the holes. The findings show that an increase in the web height reduces the heat transfer coefficient of the composite wall, which is conducive to improving the thermal insulation performance of the walls. The CFS-PSB composite wall with a web opening can significantly improve the heat transfer performance of the wall, reduce heat loss, and control the local thermal bridging phenomenon. The hole length, specific gravity of the openings, and number of openings were the main parameters affecting the thermal insulation performance of the walls.

A deep-learning-based histopathology classifier for focal cortical dysplasia (FCD) unravels a complex scenario of comorbid FCD subtypes.

Recently, we developed a first artificial intelligence (AI)-based digital pathology classifier for focal cortical dysplasia (FCD) as defined by the ILAE classification. Herein, we tested the usefulness of the classifier in a retrospective histopathology workup scenario. Eighty-six new cases with histopathologically confirmed FCD ILAE type Ia (FCDIa), FCDIIa, FCDIIb, mild malformation of cortical development with oligodendroglial hyperplasia in epilepsy (MOGHE), or mild malformations of cortical development were selected, 20 of which had confirmed gene mosaicism. The classifier always recognized the correct histopathology diagnosis in four or more 1000 × 1000-μm digital tiles in all cases. Furthermore, the final diagnosis overlapped with the largest batch of tiles assigned by the algorithm to one diagnostic entity in 80.2% of all cases. However, 86.2% of all cases revealed more than one diagnostic category. As an example, FCDIIb was identified in all of the 23 patients with histopathologically assigned FCDIIb, whereas the classifier correctly recognized FCDIIa tiles in 19 of these cases (83%), that is, dysmorphic neurons but no balloon cells. In contrast, the classifier misdiagnosed FCDIIb tiles in seven of 23 cases histopathologically assigned to FCDIIa (33%). This mandates a second look by the signing histopathologist to either confirm balloon cells or differentiate from reactive astrocytes. The algorithm also recognized coexisting architectural dysplasia, for example, vertically oriented microcolumns as in FCDIa, in 22% of cases classified as FCDII and in 62% of cases with MOGHE. Microscopic review confirmed microcolumns in the majority of tiles, suggesting that vertically oriented architectural abnormalities are more common than previously anticipated. An AI-based diagnostic classifier will become a helpful tool in our future histopathology laboratory, in particular when large anatomical resections from epilepsy surgery require extensive resources. We also provide an open access web application allowing the histopathologist to virtually review digital tiles obtained from epilepsy surgery to corroborate their final diagnosis.

Experimental and numerical investigation on RC beams with web openings subjected to pure torsion strengthened by ferrocement technique or GFRP sheets

The main objective of the current experimental and numerical study is to investigate the effect of strengthening by ferrocement layers on the behavior of reinforced concrete (RC) beams with openings subjected to pure torsion and compare it with the beams that were strengthened by Glass Fiber Reinforced Polymer (GFRP). The experimental investigation consists of twelve reinforced concrete (RC) beams that have been divided into four groups. The parameters under investigation included the strengthening technique (ferrocement or External Bonded Glass Fiber Reinforced Polymer EB-GFRP), type of steel mesh (welded wire mesh and expanded metal mesh), number of layers of mesh (1, 2, 3), extension length outside opening (50, 100 or 200) mm, strengthening configuration (full or U-shape) wrapping, and the anchoring system effect. The experimental work consists of one solid beam and eleven beams with openings. The tested beams yielded results such as cracking and ultimate torques, angle of rotation, and mechanism of failure. Creating an opening in the control solid beam resulted in a 38.46 % decrease in ultimate torque, while using different techniques during this research proved efficiency in the strengthening process. Using GFRP U-wrapping and fully wrapping to strengthen the area around the beam's opening increased the ultimate torque by 50 % and 81.25 %, respectively, compared to the un-strengthened beam with an opening. Adding fully wrapped ferrocement layers to the beam with an opening greatly improved its torsional strength. The ultimate torque increased by 40.63 % to 81.25 % compared to the beam with an unreinforced opening. Increasing the number of welded steel mesh layers from 1 to 3 in the ferrocement strengthening technique led to an increase in ultimate torque from 40.63 % to 75 % compared with the un-strengthened beam with the opening. The tests showed that using expanded metal mesh instead of welded wire mesh in strengthened beams with holes led to a 9.43 % higher ultimate torsional capacity, indicating that the expanded metal mesh worked better than the welded wire mesh. Using the U-shape ferrocement wrapping with anchors was better than without anchors, resulting in a 9.1 % increase in the ultimate torsional capacity. Applying a fully wrapped GFRP sheet or expanded metal mesh ferrocement strengthening achieved the highest ultimate torque, 81.25 % more than the un-strengthened beam with an opening. Moreover, a 3D non-linear finite element analysis is conducted using ABAQUS software to forecast the torsional properties of beams strengthened by either ferrocement or EB-GFRP. The numerical model captured the failure patterns, twisting angle, and ultimate load of tested beams. The experimental and analytical results were in good agreement. The research concluded the effectiveness of using the ferrocement reinforced with different steel mesh types in strengthening reinforced concrete beams with openings under pure torsion, the cost-efficiency and simplicity of ferrocement as a solution compared to its results with EB-GFRP techniques.

WEBSITE SECURITY ANALYSIS CURUG VILLAGE GOVERNMENT USING OPEN WEB APPLICATION SECURITY PROJECT (OWASP)

Cybersecurity has become a crucial issue in the current digital era, especially for government websites that are often targeted by attacks. According to the National Cyber and Crypto Agency (BSSN), government websites are vulnerable to hacking. This study aims to analyze the security of the Curug Village Government website using the Open Web Application Security Project (OWASP). The analysis was conducted on the ten main categories of web application security vulnerabilities listed in OWASP Top 10 2021, including Broken Access Control, Cryptographic Failures, Injection, Insecure Design, Security Misconfiguration, Vulnerable and Outdated Components, Identification and Authentication Failures, Software and Data Integrity Failures, Security Logging and Monitoring Failures, and Server-side Request Forgery. The results of the testing showed that 4 out of 8 vulnerabilities fall into the OWASP TOP 10 for 2021, particularly in the categories of Injection and Security Misconfiguration. Recommendations for improvements are provided based on these findings, which are expected to help the Curug Village Government strengthen their cybersecurity.

PM10 AIR QUALITY INDEX MODELING USING ARFIMA-GARCH METHOD: BUNDARAN HI AREA OF DKI JAKARTA PROVINCE

Air quality is an essential factor in urban life, and its’ assessment often relies on the concentration of measurable air pollution parameters. One critical parameter is Particulate Matter (PM), particularly PM10, which comprises solid or liquid particles dispersed in the air from various sources. One of the methods employed for predicting stock index prices is ARFIMA. ARFIMA is used to model long memory data characterized by a slowly decreasing Autocorrelation Function (ACF) plot (hyperbolic) or a difference value in the fractional from. This method is widely used due to its ability to handle nonstationarity issues in time series. However, the time series data often contain heteroskedasticity problems. Data with heteroscedasticity are then further addressed using the GARCH model, because it can model volatility changes occurring over longer periods and capture the persistence of volatility. The ARFIMA-GARCH model can explain long-memory patterns in time series data and address heteroscedasticity issues. The data are sourced from the Jakarta open data web, which is integrated with DLH DKI Jakarta Province. The aim of this research was to forecast the PM10 air quality index at the Bundaran HI Area in the Province of DKI Jakarta for the next 14 days, from January 1st to January 14th, 2021, using an ARFIMA model enhanced with GARCH. The analysis reveals that the best model is ARFIMA ([17], d, [1])-GARCH (1,1). Forecasting using this model resulted in a MAPE of 3.47%, indicating that the model is highly capable of forecasting several periods.

Large Language Publishing

The AI hype cycle has come for scholarly publishing. This essay argues that the industry’s feverishーif mostly aspirationalーembrace of artificial intelligence should be read as the latest installment of an ongoing campaign. Led by Elsevier, commercial publishers have, for about a decade, layered a second business on top of their legacy publishing operations. That business is to mine and process scholars’ works and behavior into prediction products, sold back to universities and research agencies. This article focuses on an offshoot of the big firms’ surveillance-publishing businesses: the post-ChatGPT imperative to profit from troves of proprietary “training data,” to make new AI products andーthe essay predictsーto license academic papers and scholars’ tracked behavior to big technology companies. The article points to the potential knowledge effects of AI models in academia: Products and models are poised to serve as knowledge arbitrators, by picking winners and losers according to what they makevisible. I also cite potential knock-on effects, including incentives for publishers to roll back open access (OA) and new restrictions on researchers’ access to the open web. The article concludes with a call for a coordinated campaign of advocacy and consciousness-raising, paired with high-quality, in-depth studies of publisher data harvestingーbuilt on the premise that another scholarly-publishing world is possible. There are many good reasons to restore custody to the academy, the essay argues. The latest is to stop our work from fueling the publishers’ AI profits.

Punching shear behavior for flat slabs with CFRP and openings

This study is devoted to investigate the flexural behavior of geopolymer flat slab that have transverse web openings with CFRP. The shear reinforcement is considered one of the important solutions to increase the resistance of the slabs to the failure of the punching shear and it is also possible through the use of these collars to provide service openings next to the columns. Three molds made of wood were prepared to examine 15 samples of geopolymer concrete under concentrated conditions, Dimensions of section are of total (70*70*7 cm) and Dimensions of column (15*15*15 cm). Three groups of models comprise the models for this research: the first group looks at the impact of the column's location; the second group looks at the impact of an opening next to the column or not; and the third group looks at the impact of CFRP. The findings demonstrated that the presence of transverse web openings affects the general flexural behavior of flat slab geopolymer reinforced concrete as a result of the reduction of concrete within the geopolymer concrete section. CFRP specimens demonstrated superior due to the inherent mechanical properties of the material. Among the various repairing procedures used, the full wrapping technique yielded the best results after the repairs.

OWASP A03 Injection Vulnerability in Web Application Development

Web applications are crucial for businesses and individuals by providing efficient communication, collaboration, and access to services and information via browsers, boosting connectedness, productivity, and creativity in the digital era. Insecure web applications pose risks of data breaches, malware, and unauthorized access which jeopardize user privacy, trust, and organizational security. Web developers must be knowledgeable and prepared to deal with common vulnerabilities in web applications. A prototype web application (https://webriska3.tech) with lesson and editor module is developed to train web developers on the Open Web Application Security Project (OWASP) Top Ten security risks, focusing on A03 - Injection vulnerability. OWASP A03 Injection vulnerability is one of the most common vulnerabilities that is at the heart of any database-driven web applications. Evaluation on the prototype in improvement knowledge on A03 – Injection vulnerability, testers are recruited to complete two coding tasks in laboratory environment. 80% of testers mastered Output escaping/encoding defensive technique while Prepared statement/Parameterized Query defensive technique is the hardest to master. The prototype obtained average System Usability Scale (SUS) score of 57 that is below average, indicating issues with the prototype interface. This work showed promising results of increase understanding on A03 Injection vulnerability and implementation skills to protect web application against attack and exploitations.