Online Translation Service Capstone Design Eunyoung Ku Jason Roberts Jennifer Pitts Gregory Woodburn Kim Tran.

Slides:

Advertisements

Similar presentations

WEB DESIGN TABLES, PAGE LAYOUT AND FORMS. Page Layout Page Layout is an important part of web design Why do you think your page layout is important?

Advertisements

Section 10.1 Identify how Web sites are structured Explain the role of URLs Describe the function of HTTP Section 10.2 Explain how the Web has affected.

1 Web Servers / Deployment Alastair Dawes Original by Bhupinder Reehal.

E.halFILE Overview Session V. What is e.halFILE? Thin client, browser-based Brings halFILE documents to the Internet / Intranet No publishing required.

Unit 12 Using the Internet & Browsing the Web.  Understand the difference between the Internet and the World Wide Web  Identify items on a web page.

By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.

It’s always better live. MSDN Events Security Best Practices Part 2 of 2 Reducing Vulnerabilities using Visual Studio 2008.

Web Server Administration

12/13/20051 Egypt Education Service (EES) Capstone Design Mohammed Khalilia Saif Khairat.

Development of a Web Based B&B Reservation System Elizabeth Gates 22July04.

CS 290C: Formal Models for Web Software Lecture 1: Introduction Instructor: Tevfik Bultan.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

MSF Testing Introduction Functional Testing Performance Testing.

Web-based Document Management System By Group 3 Xinyi Dong Matthew Downs Joshua Ferguson Sriram Gopinath Sayan Kole.

Chapter 9 Collecting Data with Forms. A form on a web page consists of form objects such as text boxes or radio buttons into which users type information.

Working with Applications Lesson 7. Objectives Administer Internet Explorer Secure Internet Explorer Configure Application Compatibility Configure Application.

E.halFILE 2.2 New Application Features Session II.

TESTING STRATEGY Requires a focus because there are many possible test areas and different types of testing available for each one of those areas. Because.

Session 11: Security with ASP.NET

Brad Baker CS526 May 7 th, /7/ Project goals 2. Test Environment 3. The Problem 4. Some Solutions 5. ModSecurity Overview 6. ModSecurity.

Copyright © cs-tutorial.com. Introduction to Web Development In 1990 and 1991,Tim Berners-Lee created the World Wide Web at the European Laboratory for.

Databases and the Internet. Lecture Objectives Databases and the Internet Characteristics and Benefits of Internet Server-Side vs. Client-Side Special.

By Daniel Siassi.  XHTML  For Structure  CSS  For Stylization of Structure  SQL Database  Store Customer, Calendar, and Order Data  PHP  Server-side.

Lecture 14 – Web Security SFDV3011 – Advanced Web Development 1.

Tutorial 10 Adding Spry Elements and Database Functionality Dreamweaver CS3 Tutorial 101.

Ladd Van Tol Senior Software Engineer Security on the Web Part One - Vulnerabilities.

Lecture 7 Interaction. Topics Implementing data flows An internet solution Transactions in MySQL 4-tier systems – business rule/presentation separation.

JavaScript, Fourth Edition

Security Testing Case Study 360logica Software Testing Services.

Module 10: Monitoring ISA Server Overview Monitoring Overview Configuring Alerts Configuring Session Monitoring Configuring Logging Configuring.

CSE Waitlist Made By: Peng Hu, Zhicheng Lin, Mark Mosby, Robert Pittman, and Derek Robati.

Module 5: Configuring Internet Explorer and Supporting Applications.

A Secure Online Second Chance Drawing System Presented by: Patrick Maroney, Director of Security & Investigations, Colorado Lottery Ken Sabey, Director.

Module 11: Securing a Microsoft ASP.NET Web Application.

Web Design (1) Terminology. Coding ‘languages’ (1) HTML - Hypertext Markup Language - describes the content of a web page CSS - Cascading Style Sheets.

Overview Web Session 3 Matakuliah: Web Database Tahun: 2008.

SQL INJECTIONS Presented By: Eloy Viteri. What is SQL Injection An SQL injection attack is executed when a web page allows users to enter text into a.

GOAL User Interactive Web Interface Update Pages by Club Officers Two Level of Authentication.

Chapter 29 World Wide Web & Browsing World Wide Web (WWW) is a distributed hypermedia (hypertext & graphics) on-line repository of information that users.

TraVEL eXPERTS SITE Proposal

Configuring and Troubleshooting Identity and Access Solutions with Windows Server® 2008 Active Directory®

Database Security Cmpe 226 Fall 2015 By Akanksha Jain Jerry Mengyuan Zheng.

CSC 2720 Building Web Applications Basic Frameworks for Building Dynamic Web Sites / Web Applications.

WebWatcher A Lightweight Tool for Analyzing Web Server Logs Hervé DEBAR IBM Zurich Research Laboratory Global Security Analysis Laboratory

Internet & World Wide Web How to Program, 5/e Copyright © Pearson, Inc All Rights Reserved.

Session 11: Cookies, Sessions ans Security iNET Academy Open Source Web Development.

START Application Spencer Johnson Jonathan Barella Cohner Marker.

Basics Components of Web Design & Development Basics, Components, Design and Development.

1 Introducing Web Developer Tools Rapid application development tools ASP.NET-compatible web editors –Visual Studio.NET Professional Edition –Visual Studio.

Web Security (cont.) 1. Referral issues r HTTP referer (originally referrer) – HTTP header that designates calling resource  Page on which a link is.

ArcGIS for Server Security: Advanced

Fundamental of Databases

Group 18: Chris Hood Brett Poche

Web Technologies Computing Science Thompson Rivers University

World Wide Web policy.

Unit 12 Using the Internet & Browsing the Web

PHP / MySQL Introduction

MIS Professor Sandvig MIS 324 Professor Sandvig

Introduction to Servlets

Lecture 2 - SQL Injection

Web Servers / Deployment

Serpil TOK, Zeki BAYRAM. Eastern MediterraneanUniversity Famagusta

Web Programming Language

Online Translation Service Capstone Design

PHP Forms and Databases.

Web Technologies Computing Science Thompson Rivers University

Web Servers (IIS and Apache)

Web Application Development Using PHP

Presentation transcript:

Online Translation Service Capstone Design Eunyoung Ku Jason Roberts Jennifer Pitts Gregory Woodburn Kim Tran

System Overview A system is needed to facilitate the interactions between the customers, translators, and managers of an online translation service. Must be implemented as a web interface to extend the service to users worldwide.

Users Customer Receive translation quotes Upload documents, specifying document information such as target and original languages and urgency of translation Monitor progress of submissions Download translated documents upon completion Provide quality ratings for completed translations

Users Translator View recent document submissions Download documents to translate Submit translated version of the document

Users Manager Add new users to the system Remove users from the system View customer activity summaries View translator productivity reports

Server and Development Environment Apache HTTP server for Windows XP MySQL Database Server Server side scripting in PHP World Wide Web Consortium’s XHTML and CSS compliance

Security Requirements Protect user’s identities by securing database as well as sessions MySQL server configured to only accept local connections using named pipes Limited session lifetime Server behind a firewall to minimize malicious traffic Uploaded documents stored in binary format in MySQL tables

Customer Requirements Simple, easy to use interfaces for all user classes Professional, trustworthy appearance Several methods for contacting the service and providing feedback add to trustworthiness Multilingual support for all three interfaces

Database Design

GUI Design Professional Look and Feel with CSS Lack of images greatly decreases download time

Session Design

Session Design URL Rewriting or Cookies?

System Implementation ERD for 1 st Prototype

System Implementation Protecting against SQL Injection Attacks This login would allow access to any invalid user. For security, the special characters in the values must be escaped. Other injection attacks may force the system to display sensitive data.

System Implementation Form Validation Important for data driven applications Ensure uploaded files are of proper type MIME typeExtensionDescription application/pdf.pdfAdobe Portable Document File application/msword.docMicrosoft Word Document application/rtf.rtfRich Text Format application/html.htm or.htmlHyper Text Markup Language text/plain.txtPlain text

Login and Registration

Customer Interface

Customer - Upload

Customer - View Order Status

Translator Interface

Translator - Download

Translator - Return Document

Manager Interface

Manager - Add User

Manager – Remove User

Manager – View Transactions

Manager – Productivity Summary

System Testing Repeated attempts to break the site and cause errors Explore every possible scenario a user may encounter Simulate everyday use of system Providing “bad input” to verify system will not allow the user to present errors

System Testing After verifying the input produced desirable results within one user interface, test the results caused by the same input within the other interfaces Some not so obvious errors are caught by checking the web server and database server logs

Future Work Multilingual support for all user interfaces Separate database tables for each user class to simplify user interfaces Addition of a new user class: Admin or Super user Support for monetary transactions (Pay Pal, Credit Card, etc)

Future Work Secure Sockets Layer (SSL) Support to cater to corporations and small businesses Extended user interfaces including translation support system Professional web hosting or dedicated server

Questions?