• Journal of the Korea Institute of Information and Communication Engineering
• /
• v.17 no.9
• /
• pp.2048-2054
• /
• 2013

Due to the development of the digital technology, the territories of broadcasting and telecommunications are being converged and there have been the efforts to eliminate the spatial and/or temporal restrictions in utilizing the services (usually implemented as applications) via various devices (e.g. smart-phone, smart TV, pad-computer, etc). In the circumstances, Web is coming to the fore as a common running platform of the services and the digital broadcasting receivers are pressed to run Web applications as well as Java applications, which are the standard of data service of the digital broadcasting. The paper introduces a platform for running HTML5-based Web applications, which is equipped with a Web kernel (an engine for running HTML5 Web applications), a Web desktop (the facilities (with an UI similar to Window OS) for managing Web applications), and SDK (a set of API's for Web application developers).

• Journal of information and communication convergence engineering
• /
• v.21 no.4
• /
• pp.268-280
• /
• 2023

Several companies have migrated their existing monolithic web applications to microservice architectures. Consequently, research on the identification of microservices from monolithic web applications has been conducted. Meanwhile, the use-case model plays a crucial role in outlining the system's functionalities at a high level of abstraction, and studies have been conducted to identify microservices by utilizing this model. However, previous studies on microservice identification utilizing use-cases did not consider the components executed in the presentation layer. Unlike existing approaches, this paper proposes a technique that considers all three layers of web applications (presentation, business logic, and data access layers). Initially, the components used in the three layers of a web application are extracted by executing all the scenarios that constitute its use-cases. Thereafter, the usage rate of each component is determined for each use-case and the component is allocated to the use-case with the highest rate. Then, each use-case is realized as a microservice. To verify the proposed approach, microservice identification is performed using open-source web applications.

• Journal of Korea Society of Digital Industry and Information Management
• /
• v.8 no.1
• /
• pp.183-190
• /
• 2012

Mobile web applications are different from desktop web applications because of their small screen size and small user input devices. Therefore user interface designers have spent their effort and time to re-design the user interface of mobile web applications to meet these differences. In this paper, we introduce five user interface patterns for mobile web applications to reduce their effort and time. Two of them are for utilizing small screen size efficiently, and they are space overloading pattern and data filtering pattern. These patterns enable designers to reduce screen usage. The other three patterns - data suggestion pattern, input reuse pattern, and incremental data input pattern - are for helping users' data input on mobile devices. These three patterns enable users to reduce direct data input. Our work will help user interface designers develop mobile web interface to utilize screen space efficiently and get data with less errors and less efforts from users.

• The KIPS Transactions:PartD
• /
• v.14D no.5
• /
• pp.509-516
• /
• 2007

The demand for Web applications that un on databases has been rapidly increased in every area including business. Comparing to this growing demand, it still takes much time to write and maintain Web applications. In this paper, we introduce the Web script generator, WebGen that generates the Web forms as application interface and the Web scripts that process the queries by the forms operating with a database. WebGen generates five Web scripts(Search, Select, Edit, Information, and Action) from built-in templates that are the frames for those scripts by applying the declarative contents of a user-written configuration file. Each script except the Action script generates a corresponding form as user interface. Therefore, WebGen enhances Web application productivity by reducing the development time and effort for Web applications. Unlike the commercial Web script generators, WebGen supports easy version management because it is based on independent templates. Moreover, a WebGen-generated form includes not only the interested entity but also the entities that are related directly and indirectly with the interested entity.

• Journal of the Korea Society of Computer and Information
• /
• v.14 no.12
• /
• pp.255-266
• /
• 2009

The Semantic Web has appeared to handle information on the web effectively, which has been increasing very rapidly since the web emerged. It refers to the machine, which understands the meaning of information on behalf of human and handles the information automatically that users want. The objective of this research is to help people to understand the Semantic Web as the next generation web by surveying the applications of Semantic Web technologies. To that end, this paper suggests a system framework which can be used for analyzing most of the Semantic Web applications. Using the suggested the framework, the recent Semantic Web applications are analyzed. And then research challenges are discussed to be overcome for the practical Semantic Web based on the analyzed results.

• The KIPS Transactions:PartD
• /
• v.11D no.4
• /
• pp.865-872
• /
• 2004

Web applications have different structural characteristics from conventional applications with the structural language or object-oriented language or 4GL. A web application typically consists of server-side script elements which run on web sewers, client-side script elements which run on the client web-browser, HTML elements that contains context. Therefore web applications developer concurrently uses 3 or more development language. Cyclomatic Complexity for Web Application(CCWA) metrics reflected composite complexity of each element. In this paper, we applied cyclomatic complexity for web application metrics with Complexity level indicator to web application. We applied it to 10 web applications that were developed in practical business. High complexity web applications classify into four type(MENU, FORM, CTRL, GEN). This paper has contributed to practical use of engineering approach for web application.

• Journal of Digital Contents Society
• /
• v.11 no.3
• /
• pp.323-330
• /
• 2010

Due to the widespread smartphones and application stores, mobile application developments are now booming again in the same manner of PC history. The smartphone software development process, however, gives much inconvenience to developers because of the heterogeneous platform APIs and hardware incompatibility between different devices. To make clear these problems, mobile web applications are being accepted as an alternative to the native smartphone applications. Mobile web applications can be developed more simply and easily than native applications by using webkit engine's html, Java script, and CSS. Additionally developers can provide a platform-independent applications since web applications are going to run on web browsers. In this paper, we develop a personal applications store running on an android phone's browsers. We can accomplish this very simply by using webkit's various APIs such as OpenID. We can find out by implementing a real web application that development of web applications can surpass the native one in cost and time period without much loss of performance.

• IEIE Transactions on Smart Processing and Computing
• /
• v.3 no.5
• /
• pp.319-324
• /
• 2014

Web applications make life more convenient. Many web applications have several kinds of user input (e.g. personal information, a user's comment of commercial goods, etc.) for the activities. On the other hand, there are a range of vulnerabilities in the input functions of Web applications. Malicious actions can be attempted using the free accessibility of many web applications. Attacks by the exploitation of these input vulnerabilities can be achieved by injecting malicious web code; it enables one to perform a variety of illegal actions, such as SQL Injection Attacks (SQLIAs) and Cross Site Scripting (XSS). These actions come down to theft, replacing personal information, or phishing. The existing solutions use a parser for the code, are limited to fixed and very small patterns, and are difficult to adapt to variations. A machine learning method can give leverage to cover a far broader range of malicious web code and is easy to adapt to variations and changes. Therefore, this paper suggests the adaptable classification of malicious web code by machine learning approaches for detecting the exploitation user inputs. The approach usually identifies the "looks-like malicious" code for real malicious code. More detailed classification using sequence information is also introduced. The precision for the "looks-like malicious code" is 99% and for the precise classification with sequence is 90%.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.22 no.3
• /
• pp.601-613
• /
• 2012

It is required to design and implement secure web applications to provide safe web services. For this reason, there are several scoring frameworks to measure vulnerabilities in web applications. However, these frameworks do not classify according to seriousness of vulnerability because these frameworks simply accumulate score of individual factors in a vulnerability. We rate and score vulnerabilities according to probability of privilege acquisition so that we can prioritize vulnerabilities found in web applications. Also, our proposed framework provides a method to score all web applications provided by an organization so that which web applications is the worst secure and should be treated first. Our scoring framework is applied to the data which lists vulnerabilities in web applications found by a web scanner based on crawling, and we show the importance of categorizing vulnerabilities according to privilege acquisition.

• KIPS Transactions on Computer and Communication Systems
• /
• v.4 no.1
• /
• pp.31-36
• /
• 2015

As web accessibility has been easier, security issue becomes much more important in web applications demanding user authentication. Cookie is used to reduce the load of the server from the session in web applications and manage the user information efficiently. However, the cookie containing user information can be sniffed by an attacker. With this sniffed cookie, the attacker can retain the web application session of the lawful user as if the attacker is the lawful user. This kind of attack are called cookie replay attack and it causes serious security problems in web applications. In this paper, we have introduced a mechanism to detect cookie replay attacks and defend them, and verified effectiveness of the mechanism.