Using parse tree validation to prevent SQL injection attacks

An SQL injection attack targets interactive web applications that employ database services. Such applications accept user input, such as form fields, and then include this input in database requests, typically SQL statements. In SQL injection, the attacker provides user input that results in a different database request than was intended by the application programmer. That is, the interpretation of the user input as part of a larger SQL statement, results in an SQL statement of a different form than originally intended. We describe a technique to prevent this kind of manipulation and hence eliminate SQL injection vulnerabilities. The technique is based on comparing, at run time, the parse tree of the SQL statement before inclusion of user input with that resulting after inclusion of input. Our solution is efficient, adding about 3 ms overhead to database query costs. In addition, it is easily adopted by application programmers, having the same syntactic structure as current popular record set retrieval methods. For empirical analysis, we provide a case study of our solution in J2EE. We implement our solution in a simple static Java class, and show its effectiveness and scalability. 1

Preparation of nano-hydroxyapatite/chitosan aqueous dispersions: from lab scale to continuous production using an innovative static mixer

Chitosan is widely used in the preparation of organic-inorganic composite materials, such as n-HAp/CS composites, which findapplication for bone regeneration. The methods for their preparation are various, and usually based on the preparation of intermediate n-HAp/CS dispersions, which can greatly influence the final properties of the resulting composites since it is expected that homogenous and stable dispersions lead to composite materials with improved final properties. This work hypothesizes that, additionally to process parameters such as pH, n-HAp/CS weight ratio, mixing conditions and the presence of salts, chitosan itself has a high impact on dispersions stability. Thus, the importance of properly control the preparation of the n-HAp/CS intermediate dispersions is highlighted by doing a systematic study where relevant processing parameters were studied at lab scale using ultrasonication, alone or in the presence of chitosan, namely on particle size and zeta potential. Furthermore, and based on the best laboratorial conditions, the production of n-HAp/CS nanocomposite dispersions in continuous mode was attempted through NETmix® technology,an innovative static mixer and reactor developed at the Associate Laboratory LSRE-LCM of the Faculty of Engineering of the University of Porto(FEUP).Financial support for this work was provided in part by project Project POCI-01-0145-FEDER-006984 – Associate Laboratory LSRELCM funded by FEDER through COMPETE2020 - Programa Operacional Competitividade e Internacionalização (POCI) – and by national funds through FCT - Fundação para a Ciência e a Tecnologia, and by “AIProcMat@N2020 - Advanced Industrial Processes and Materials for a Sustainable Northern Region of Portugal 2020”, with reference NORTE-01-0145-FEDER-000006, supported by NORTE 2020 under the Portugal 2020 Partnership Agreement, through the European Regional Development Fund (ERDF). FCT and FEDER under Programme PT2020 for financial support to CIMO (UID/AGR/00690/2013). G. Ruphuy thanks Universidad de Costa Rica (UCR) and Ministerio de Ciencia, Tecnología y Telecomunicaciones de Costa Rica (MICITT) for her scholarship. Authors thank Fluidinova S.A. for providing the HAp samples.info:eu-repo/semantics/publishedVersio

Withdrawing an explicit request for euthanasia or physician-assisted suicide: a retrospective study on the influence of mental health status and other patient characteristics

BACKGROUND: Mental health status may be closely related to an instability of intentions toward a premature death, but little is known about such instability following an explicit request for euthanasia or physician-assisted suicide (EAS) and patient characteristics associated with a change of mind. METHOD: A questionnaire was sent to 6596 general practitioners in The Netherlands (response rate 60%). Of these, 1681 provided descriptions of the most recent explicit request for EAS they had received in the preceding 18 months. RESULTS: Symptoms of depression and anxiety were related to a change of mind, but no relationship was found with the total score of the NOSGER Mood Dimension. Multinomial regression analysis revealed that patients who changed their mind had more mental health problems and less mental clarity than those who died by EAS. They also had fewer general health problems, had less unbearable and pointless suffering (according to the physician), were less concerned about loss of dignity and alternative treatment options were more frequently available. A further analysis revealed that mental health problems were more prevalent among patients whose requests were refused than among those who changed their mind. The physicians' evaluations of the reasons why a patient requested EAS were similar to a more objective measure of the patient characteristics. CONCLUSIONS: These findings suggest that mental health status must be carefully assessed, and possible instability of desire must be taken into account in the course of a request for EAS. These results require replication, and future studies should adopt a prospective metho

Supporting autonomy for people with dementia living in nursing homes:A rapid realist review

Background For people with dementia living in nursing homes, autonomy is important. However, they experience difficulty with being heard as an autonomous person, as well as with expressing their preferences and choices. The question is how to support their autonomy. Objective Despite extensive efforts to support autonomy in daily care for people with dementia living in nursing homes, we do not know exactly what works for whom, in which context, how and why. The objective of this realist review is to explore what is known in literature on autonomy support interventions for people with dementia in nursing homes. Design A rapid realist review of literature. Review methods To understand how autonomy is supported, a realist approach was applied that entailed identifying the research question, searching for information, performing a quality appraisal, extracting data, synthesizing the evidence and validating the findings with a panel of experts. Causal assumptions were derived from articles found in four bibliographic databases (PubMed, PsychInfo, Cochrane and CINAHL) leading to context (C)–mechanism (M)–outcome (O) configurations. Results Data extraction from the included articles ultimately resulted in sixteen CMO configurations on four themes: a. preferences and choice: interventions for supporting autonomy in nursing homes and their results, b. personal characteristics of residents and family: people with dementia and their family being individuals who have their own character, habits and behaviors, c. competent nursing staff each having their own level of knowledge, competence and need for support, and d. interaction and relationships in care situations: the persons involved are interrelated, continuously interacting in different triangles composed of residents, family members and nursing staff. Conclusion The findings showed that results from interventions on autonomy in daily-care situations are likely to be just as related not only with the characteristics and competences of the people involved, but also to how they interact. Autonomy support interventions appear to be successful when the right context factors are considered

Effect of char on the combustion process of multicomponent bio-fuel

Combustion of pyrolysis oil has attracted many attention in recent years as a renewable and environmental friendly fuel. However, pyrolysis oil as an multi-component fuel has some differences compared to conventional fossil fuels. One of the main differences is the formation of solid char in the droplet during evaporation. The goal of this work is to study the effect of the solid char on the combustion characteristics of multi-component fuel. An Euler-Lagrange model of three phase gas/liquid/solid combustion is developed to study the detailed information about every phenomena in the process such as: heat, mass and momentum transfer between droplet and gas phase, droplet evaporation, homogeneous and heterogeneous reactions. The results indicate that the presence of the solid char and consequently its combustion elongates significantly the combustion region in a typical spray injection chamber/burner. Moreover, the gas phase reaches higher temperatures as a result of char combustion that creates more heat by heterogeneous oxidation as a kind of afterburner

Applying Stretch to Evoke Hyperreflexia in Spasticity Testing: Velocity vs. Acceleration

\ua9 Copyright \ua9 2021 Sloot, Weide, van der Krogt, Desloovere, Harlaar, Buizer and Bar-On. In neurological diseases, muscles often become hyper-resistant to stretch due to hyperreflexia, an exaggerated stretch reflex response that is considered to primarily depend on the muscle\u27s stretch velocity. However, there is still limited understanding of how different biomechanical triggers applied during clinical tests evoke these reflex responses. We examined the effect of imposing a rotation with increasing velocity vs. increasing acceleration on triceps surae muscle repsonse in children with spastic paresis (SP) and compared the responses to those measured in typically developing (TD) children. A motor-operated ankle manipulator was used to apply different bell-shaped movement profiles, with three levels of maximum velocity (70, 110, and 150\ub0/s) and three levels of maximum acceleration (500, 750, and 1,000\ub0/s2). For each profile and both groups, we evaluated the amount of evoked triceps surae muscle activation. In SP, we evaluated two additional characteristics: the intensity of the response (peak EMG burst) and the time from movement initiation to onset of the EMG burst. As expected, the amount of evoked muscle activation was larger in SP compared to TD (all muscles: p < 0.001) and only sensitive to biomechanical triggers in SP. Further investigation of the responses in SP showed that peak EMG bursts increased in profiles with higher peak velocity (lateral gastrocnemius: p = 0.04), which was emphasized by fair correlations with increased velocity at EMG burst onset (all muscles: r > 0.33–0.36, p ≤ 0.008), but showed no significant effect for acceleration. However, the EMG burst was evoked faster with higher peak acceleration (all muscles p < 0.001) whereas it was delayed in profiles with higher peak velocity (medial gastrocnemius and soleus: p < 0.006). We conclude that while exaggerated response intensity (peak EMG burst) seems linked to stretch velocity, higher accelerations seem to evoke faster responses (time to EMG burst onset) in triceps surae muscles in SP. Understanding and controlling for the distinct effects of different biological triggers, including velocity, acceleration but also length and force of the applied movement, will contribute to the development of more precise clinical measurement tools. This is especially important when aiming to understand the role of hyperreflexia during functional movements where the biomechanical inputs are multiple and changing