1,135 research outputs found

    The value and structuring role of web APIs in digital innovation ecosystems: the case of the online travel ecosystem

    Get PDF
    Interfaces play a key role in facilitating the integration of external sources of innovation and structuring ecosystems. They have been conceptualized as design rules that ensure the interoperability of independently produced modules, with important strategic value for lead firms to attract and control access to complementary assets in platform ecosystems. While meaningful, these theorizations do not fully capture the value and structuring role of web APIs in digital innovation ecosystems. We show this with an empirical study of the online travel ecosystem in the 26 years (1995–2021) after the first Online Travel Agencies (OTAs) were launched. Our findings reveal that web APIs foster a dynamic digital innovation ecosystem with a distributed networked structure in which multiple actors design and use them. We provide evidence of an ecosystem where decentralized interfaces enable decentralized governance and where interfaces establish not only cooperative relationships, but also competitive ones. Instead of locking in complementors, web APIs enable the integration of capabilities from multiple organizations for the co-production of services and products, by interfacing their information systems. Web APIs are important sources of value creation and capture, increasingly being used to offer or sell services, constituting important sources of revenue

    Advances and Applications of DSmT for Information Fusion. Collected Works, Volume 5

    Get PDF
    This fifth volume on Advances and Applications of DSmT for Information Fusion collects theoretical and applied contributions of researchers working in different fields of applications and in mathematics, and is available in open-access. The collected contributions of this volume have either been published or presented after disseminating the fourth volume in 2015 in international conferences, seminars, workshops and journals, or they are new. The contributions of each part of this volume are chronologically ordered. First Part of this book presents some theoretical advances on DSmT, dealing mainly with modified Proportional Conflict Redistribution Rules (PCR) of combination with degree of intersection, coarsening techniques, interval calculus for PCR thanks to set inversion via interval analysis (SIVIA), rough set classifiers, canonical decomposition of dichotomous belief functions, fast PCR fusion, fast inter-criteria analysis with PCR, and improved PCR5 and PCR6 rules preserving the (quasi-)neutrality of (quasi-)vacuous belief assignment in the fusion of sources of evidence with their Matlab codes. Because more applications of DSmT have emerged in the past years since the apparition of the fourth book of DSmT in 2015, the second part of this volume is about selected applications of DSmT mainly in building change detection, object recognition, quality of data association in tracking, perception in robotics, risk assessment for torrent protection and multi-criteria decision-making, multi-modal image fusion, coarsening techniques, recommender system, levee characterization and assessment, human heading perception, trust assessment, robotics, biometrics, failure detection, GPS systems, inter-criteria analysis, group decision, human activity recognition, storm prediction, data association for autonomous vehicles, identification of maritime vessels, fusion of support vector machines (SVM), Silx-Furtif RUST code library for information fusion including PCR rules, and network for ship classification. Finally, the third part presents interesting contributions related to belief functions in general published or presented along the years since 2015. These contributions are related with decision-making under uncertainty, belief approximations, probability transformations, new distances between belief functions, non-classical multi-criteria decision-making problems with belief functions, generalization of Bayes theorem, image processing, data association, entropy and cross-entropy measures, fuzzy evidence numbers, negator of belief mass, human activity recognition, information fusion for breast cancer therapy, imbalanced data classification, and hybrid techniques mixing deep learning with belief functions as well

    Melhoria do processo legislativo no âmbito parlamentar pela introdução de tecnologias digitais do domínio legal

    Get PDF
    Atualmente, as organizações abordam a melhoria dos seus processos com foco predominante na digitalização e automatização desses processos. Na perspetiva de organizações como os Parlamentos, a automação de processos tem sido abordada, porém, pouco tem sido explorado no âmbito legislativo. Por outro lado, no campo jurídico, a utilização de soluções informáticas para serviços jurídicos tem também emergido. É neste contexto que nesta investigação apresentamos uma nova abordagem para melhorar o processo de elaboração de leis no âmbito parlamentar a partir da definição de uma linguagem específica de domínio. Esta abordagem enfatiza a definição dessa linguagem que representa os conceitos essenciais das leis e suas relações. A investigação realizou uma revisão sistemática da literatura de publicações sobre ontologias legais, como suporte aos processos e atividades de natureza legal, e realizou uma análise comparativa de diferentes ontologias legais. Essa revisão da literatura permitiu identificar problemas concretos nas atividades de produção de leis, sujeitas a vários tipos de erros, e permitiu a definição de um modelo de referência para representar leis de forma mais rigorosa e explícita, proporcionando uma maior sistematização e qualidade dos processos da produção de leis. A análise das ontologias legais permitiu-nos definir essa linguagem especifica de domínio como ferramenta de apoio a esses processos, em particular, processos que vão desde a submissão de iniciativas de leis até sua posterior autoria e homologação. Com recurso às tecnologias Eclipse e Xtext, os autores criaram a ferramenta LegalStudio que representa a linguagem LegalLanguage, com realce de sintaxe, verificação de erros e um editor integrado, no qual as atividades de escrita normativa podem ser aprimoradas e menos propensas a erros em comparação com os processos tradicionais. Foi realizada uma avaliação do protótipo da LegalStudio para apoiar à edição e validação de textos normativos, destacando seus principais atores, funcionalidades e aspetos de apreciação geral da ferramenta.Currently, organizations approach the improvement of their processes with a predominant focus on digitizing and automating these processes. From the perspective of organizations such as Parliaments, the automation of processes has been addressed, however, little has been explored in the legislative scope. On the other hand, in the legal field, the use of IT solutions for legal services has also emerged. It is in this context that in this investigation we present a new approach to improve the process of drafting laws in the parliamentary sphere, starting from the definition of a domain-specific language. This approach emphasizes the definition of that language that represents the essential concepts of the laws and their relationships. The investigation carried out a systematic literature review of publications on legal ontologies, as support to legal processes and activities, and carried out a comparative analysis of different legal ontologies. This literature review made it possible to identify concrete problems in the activities of law production, subject to various types of errors, and allowed the definition of a reference model to represent laws in a more rigorous and explicit way, providing a greater systematization and quality of the processes of the production of laws. The analysis of legal ontologies allowed us to define this domain-specific language as a tool to support these processes, in particular, processes that range from the submission of law initiatives to their subsequent authorship and approval. Using Eclipse and Xtext technologies, the authors created the LegalStudio tool that represents the LegalLanguage language, with syntax highlighting, error checking, and an integrated editor, in which normative writing activities can be improved and less prone to errors compared to traditional processes. An evaluation of the LegalStudio prototype to support the editing and validation of normative texts was carried out, highlighting its main actors, functionalities, and aspects of general appreciation of the tool

    A Framework of DevSecOps for Software Development Teams

    Get PDF
    This master's thesis explores a broad evaluation of automated security testing in the context of DevOps practices. The primary objective of this study is to propose a framework that facilitates the seamless integration of security scanning tools within DevOps practices. The thesis will focus on examining the existing set of tools and their effective integration into fully automated DevOps CI/CD pipelines. The thesis starts by examining the theoretical concepts of DevOps and provides guidelines for integrating security within DevOps methodologies. Furthermore, it assesses the current state of security by analysing the OWASP Web API top 10 security vulnerability list and evaluating existing security automation tools. Additionally, the research investigates the performance and efficacy of these tools across various stages of the SDLC and investigates ongoing research and development activities. A fully automated DevOps CI/CD pipeline is implemented to integrate security scanning tools, enforcing complete security checks throughout the SDLC. Azure DevOps build and release pipelines, along with Snyk, were used to create a comprehensive automated security scanning framework. The study considerably investigates the integration of these security scanning tools and assesses their influence on the overall security posture of the developed applications. The finding of the study reveals that security scanning tools can be efficiently integrated into fully automated DevOps practices. Based on the results, recommendations are provided for the selection of suitable tools and techniques to achieve a DevSecOps practice. In conclusion, this thesis provides valuable insights into security integration in DevOps practices, highlighting the effectiveness of security automation tools. The research also recommends areas for further improvements to meet the industry's evolving requirements

    Em defesa de uma arquitetura extrema centrada em banco de dados

    Get PDF
    A famous aphorism in computer science goes: "All problems in computer science can be solved by another level of indirection", often expanded by the humorous clause "except for the problem of too many levels of indirection". After 30 years of applying the first aphorism, multi-tier architectures (i.e. architectures with many levels of indirection) have become the de facto standard for web applications, leaving little room for alternative architectures. But in the industry, there is a product to develop and run web applications that follows a different architecture, centered on the RDBMS to the extreme of not needing any other component to function. There are not many papers in academia that addresses RDBMS-centric architectures in general, and this extreme architecture in particular has not been considered. In recent works I have analyzed the case of an extreme database-centric architecture, which I have called RDBMS-only architecture. This article defends the relevance and analyzes opportunity cases of this approach.Un aforismo famoso en ciencias de la computación dice: "Todos los problemas en ciencias de la computación pueden resolverse con otro nivel de indirección", a menudo ampliado con la cláusula humorística "excepto por el problema de tener demasiados niveles de indirección". Después de 30 años de aplicar el primer aforismo, las arquitecturas de varios niveles (es decir, arquitecturas con muchos niveles de indirección) se han convertido en el estándar de facto para las aplicaciones web, dejando poco espacio para arquitecturas alternativas. Pero en la industria existe un producto para desarrollar y ejecutar aplicaciones web que sigue una arquitectura diferente, centrada en el RDBMS al extremo de no necesitar ningún otro componente para funcionar. No hay muchos artículos académicos que aborden las arquitecturas centradas en RDBMS en general, y esta arquitectura extrema en particular no se ha considerado. En trabajos recientes he analizado el caso de una arquitectura extrema centrada en bases de datos, a la que he llamado arquitectura RDBMS-only. Este artículo defiende la pertinencia y analiza casos de oportunidad de este enfoque.Um famoso aforismo em ciência da computação diz: "Todos os problemas em ciência da computação podem ser resolvidos por outro nível de indireção", frequentemente expandido pela cláusula humorística "exceto pelo problema de muitos níveis de indireção". Após 30 anos aplicando o primeiro aforismo, as arquiteturas multicamadas (ou seja, arquiteturas com muitos níveis de indireção) tornaram-se o padrão de fato para aplicativos da Web, deixando pouco espaço para arquiteturas alternativas. Mas na indústria existe um produto para desenvolver e rodar aplicações web que segue uma arquitetura diferenciada, centrada no RDBMS ao extremo de não precisar de nenhum outro componente para funcionar. Não há muitos artigos acadêmicos que abordam arquiteturas centradas em RDBMS em geral, e essa arquitetura extrema em particular não foi considerada. Em trabalhos recentes, analisei o caso de uma arquitetura extrema centrada em banco de dados, que chamei de arquitetura RDBMS-only. Este artigo defende a relevância e analisa casos de oportunidade dessa abordagem
    corecore