A Quality-based Security Enhancement Procedure to Improve E-Commerce security

E-commerce is an important product in the internet fever. However, the network intrusion and security vulnerabilities have continued to threaten the e-commerce operation and user privacy. How to improve security of e-commerce has become a topic worthy exploration. In this paper, based on security testing and repair, proposes a Software Security Enhancement Procedure (SSEP for short). In addition, for assuring SSEP operation quality, proposes a set of Software Security Enhancement Process Quality Measurement (SSEPQM for short) model. Applying SSEPQM model, the defects of security improvement process can be identified and revised. So the security of e-commerce can be enhanced effective and continuous

Specification of vertical semantic consistency rules of UML class diagram refinement using logical approach

Unified Modelling Language (UML) is the most popular modelling language use for software design in software development industries with a class diagram being the most frequently use diagram. Despite the popularity of UML, it is being affected by inconsistency problems of its diagrams at the same or different abstraction levels. Inconsistency in UML is mostly caused by existence of various views on the same system and sometimes leads to potentially conflicting system specifications. In general, syntactic consistency can be automatically checked and therefore is supported by current UML Computer-aided Software Engineering (CASE) tools. Semantic consistency problems, unlike syntactic consistency problems, there exists no specific method for specifying semantic consistency rules and constraints. Therefore, this research has specified twenty-four abstraction rules of class‟s relation semantic among any three related classes of a refined class diagram to semantically equivalent relations of two of the classes using a logical approach. This research has also formalized three vertical semantic consistency rules of a class diagram refinement identified by previous researchers using a logical approach and a set of formalized abstraction rules. The results were successfully evaluated using hotel management system and passenger list system case studies and were found to be reliable and efficient

Semantic discovery and reuse of business process patterns

Patterns currently play an important role in modern information systems (IS) development and their use has mainly been restricted to the design and implementation phases of the development lifecycle. Given the increasing significance of business modelling in IS development, patterns have the potential of providing a viable solution for promoting reusability of recurrent generalized models in the very early stages of development. As a statement of research-in-progress this paper focuses on business process patterns and proposes an initial methodological framework for the discovery and reuse of business process patterns within the IS development lifecycle. The framework borrows ideas from the domain engineering literature and proposes the use of semantics to drive both the discovery of patterns as well as their reuse

ERP implementation for an administrative agency as a corporative frontend and an e-commerce smartphone app

This document contains all the descriptions, arguments and demonstrations of the researches, analysis, reasoning, designs and tasks performed to achieve the requirement to technologically evolve an managing agency in a way that, through a solution that requires a reduced investment, makes possible to arrange a business management tool with e-commerce and also a mobile application that allows access and consultation of mentioned tool. The first part of the document describes the scenario in order to contextualize the project and introduces ERP (Enterprise Resources Planning). In the second part, a deep research of ERP market products is carried out, identifying the strengths and weaknesses of each one of the products in order to finish with the choice of the most suitable product for the scenario proposed in the project. A third part of the document describes the installation process of the selected product carried out based on the use of Dockers, as well as the configurations and customizations that they make on the selected ERP. A description of the installation and configuration of additional modules is also made, necessary to achieve the agreed scope of the project. In a fourth part of the thesis, the process of creating an iOS and Android App that connects to the selected ERP database is described. The process begins with the design of the App. Once designed, it is explained the process of study and documentation of technologies to choose the technology stack that allows making an application robust and contemporary without use of licensing. After choosing the technologies to use there are explained the dependencies and needs to install runtime enviornments prior to the start of coding. Later, it describes how the code of the App has been raised and developed. The compilation and verification mechanisms are indicated in continuation. And finally, it is showed the result of the development of the App once distributed. Finally, a chapter for the conclusions analyzes the difficulties encountered during the project and the achievements, analyzing what has been learned during the development of this project

Prospects for IT-Enabled Services Under a Indo-US FTA

ITES/BPO services is an important and growing component of Indias trade in services with the US. While the Indian government has implemented several measures to support the growth of this sector, Indian companies face various barriers in the US market such as anti-outsourcing regulations, restrictive visa/work permit regime and concerns relating to protection of sensitive data. Multilateral negotiations would have been the best route to address many of these barriers, but with the recent suspension of the Doha Round of talks, it has become important for countries to evaluate alternative routes such as bilateral Free Trade Agreements. In fact, after the suspension of the multilateral negotiations, both India and the US have refocused on bilateral agreements. In this context, this study discusses the current and potential trade between India and the US in ITES/BPO services, identifies barriers to trade and explores how an FTA can enhance bilateral trade in this sector. The study shows that the US-FTAs have achieved a higher level of liberalization than in the WTO. It suggests various negotiating strategies for India such as a negative list approach, signing mutual recognition agreements in key professional services, asking for a H1B1 type of visa, pushing for removal of domestic regulation-related barriers, among others which would enhance market access for Indian companies in the US. It also points out that Indo-US collaborations for data protection, skill development and raising awareness of the advantages of outsourcing in the US would be mutually beneficial. The study discusses regulatory and other reforms which will improve the productivity, efficiency and global competitiveness of this sector and enable the country to gain from the FTA.Indo-US FTA, GATS, bilateral agreements, Business Process Outsourcing, IT-enabled services

Electronic administration in Spain: from its beginnings to the present

This study presents the basic lines of electronic administration in Spain. The complexity of the Spanish political-administrative system makes such a study challenging, in view of the considerable degree of autonomy and competences of the regional administrative bodies and local agencies with respect to the central government, the former being more visible in the 17 regions of Spain. Nonetheless, the central government maintains a series of legal instruments that allow a certain common framework of action to be imposed, aside from what is put into effect through diverse programs aimed precisely to develop common tools for the regions and municipalities of Spain. After an introduction that provides some necessary background, this study describes the legislative framework in which Spain's electronic administrative system has developed. The data included in the study refer to investment in information and communication technologies (ICT) and the services offered by the different Administrations on the internet; internet access by citizens, homes, businesses, and employees, as well as the interactivity existing with administrations by means of the internet; the origins and rise of various political initiatives of the Central Government involving electronic administration; and finally, the situation of civil service personnel, as catalysts of the success of Information Society in the Public Administration within Spain