Sen-Tarng Lai

An Interface Design Secure Measurement Model for Improving Web App Security

In the internet age, the high efficiency and high profit activities must incorporate with the internet. Web Applications (Web App) is an important IT product in the internet age. However, the network intrusions and security vulnerabilities have continued to threaten the operation of Web App. In order to avoid Web App security vulnerabilities and defects cause user significant loss, how to improve security of Web App has become a topic worthy of further exploration. In Web App development process, interface design is a critical operation. However, it is also the major factors to inject the security vulnerabilities and defects. For this, four layers of Web App interface design will be discussed in this paper. And based on inspections of interface design, proposes an Interface Design Secure Measurement (IDSM) model. Applying IDSM model, the security vulnerabilities and defects of interface design can be identified. And assist in timely to adjust and revise the security vulnerabilities and defects of interface design, effectively and concretely enhance the Web App security.

Applying Continuous Integration for Reducing Web Applications Development Risks

In order to project resource manage and time control, large or complex software system need be modularized. Software system is decomposed into subsystems, functional modules and basis components. Finally, all tested components have to integrate to be the complete system. Applying IID (Interactive Incremental Development) mechanism, agile development model becomes the practical method to reduce software project failure rate. Continuous integration (CI) is an IID implementation concept which can effectively reduce software development risk. Web app with high change characteristic is suitable to use agile development model as the development methodology. The paper depth surveys CI operating environment and advantages. Introducing CI concept can make up the development change impacts of Web app. For this, the paper proposes a Web Applications Continuous Integration Procedure (WACIP) to assist the system integration operating. WACIP with CI makes Web app can be deployed quickly, increase stakeholder communication frequency, improve staff morale, and effectively reduce Web app development risks.

A Security Threats Measurement Model for Reducing Cloud Computing Security Risk

Cloud computing is the trend of information resources sharing and also an important tool for enterprises or organizations to enhance competitiveness. Users have the flexibility to adjust request and configuration. However, network security and resource sharing issues have continued to threaten the operation of cloud computing, making cloud computing security encounter serious test. How to evaluate cloud computing security has become a topic worthy of further exploration. Combining system, management and technique three levels security factors, this paper proposes a Security Threats Measurement Model (STMM). Applying the STMM, security of cloud computing system environment can be effectively evaluated and cloud computing security defects and problems can be concretely identified. Based on the evaluation results, the user can choice the higher security service provider or request the service provider security improvement actions.

A Software Security Requirement Quality Improvement Procedure to Increase E-Commerce Security

In the digital and network age, e-commerce is an important business transaction system. However, the network intrusion, malicious users, virus attack and system security vulnerabilities have continued to threaten the operation of the e-commerce, making e-commerce security encounter serious test. In order to avoid system security flaws and defects caused user significant loss, how to increase security of e-commerce has become a topic worthy of further exploration. The paper investigates critical e-commerce software security requirement (SSR), based on SSR discusses quality impact factors of e-commerce security and proposes a SSR Quality Measurement (SSRQM) model. Combining improvement operation with SSRQM model, the paper establishes a SSR Quality Improvement Procedure (SSRQIP). Applying SSRQIP, the problem and defect of SSR quality can be identified. And assist in timely to adjust and revise the defects of SSR quality, enhance the e-commerce security effectively.

A Micro Services Quality Measurement Model for Improving the Efficiency and Quality of DevOps

DevOps is an important practice environment and future operation trend for software development and maintenance. DevOps has important features that are continuous integration, continuous delivery, automation and high efficiency to increase enterprise market competition. Micro services architecture is a critical item for keeping the advantages of DevOps environment. In addition, micro services have many advantages than monolithic applications in software development and maintenance. However, many challenges of micro services architecture need to be overcome. Quantified quality characteristics can identify and assist to improve the defects of micro services that affect the efficiency and quality of DevOps operation. In this paper, the authors propose the Micro Services Quality Measurement (MSQM) Model to evaluate and identify work process defects of micro services. Based on MSQM model, the quality improvement procedure is designed for improving micro services work process defects and increasing the overall DevOps operation efficiency and application quality.

A Banking Chatbot Security Control Procedure for Protecting User Data Security and Privacy

The rise of AI has prompted the financial business to enter the intelligent financial technology (FinTech). Chatbot with AI technologies is an important member of FinTech. The financial industry is actively introducing chatbot to enhance the market competitive advantage. Many banks and card issuers in the United States have introduced or developed chatbots from 2017 to increase user convenience and assist business promotion of financial institutions. However, chatbot with AI features may infringe customer security and personal privacy. Security has become an important issue that Chatbot must pay attention to. In order to improve the security of chatbot, this paper analyzes the security strategies of e-commerce (EC), and combines the AI security principles to plan the Chatbot Security Control Procedure (CSCP). CSCP uses security specifications confirmation, specifications implementation, inspection activity and improvement manners four stages to monitor chatbot. Banking chatbot with CSPS can hold advantages of chatbots, reduce the security risk, and concretely protect customer data security and personal privacy.

An Iterative and Incremental Data Preprocessing Procedure for Improving the Risk of Big Data Project.

Big data applications can enhance the market competitive advantages of enterprises and organizations and can improve people’s quality of life. However, by the impact of many factors, failure rate of big data project is higher than the IT project. In order to reduce the risk of failure, big data projects must overcome a serial of challenges. Ambiguous requirements, poor data quality, and lacking changeability and extensity will directly affect the results of big data analytics, and even cause the wrong decision, inaccurate prediction and improper planning. Making the big data projects have potential failure risk. For this, this paper applies iterative and incremental development (IID) into the data preprocessing, draws up the iterative and incremental data quality improvement (IIDQI) procedure. Applied IIDQI procedure, iterative detects and identifies the defects of data quality, and incrementally strengthen big data quality and control the factors of failure risk. Iterative inspection activities can effectively enhance data quality, communication efficiency, and requirements precision to reduce the risk of big data project failure.

A Critical Quality Measurement Model for Managing and Controlling Big Data Project Risks

The failure rate of big data application projects is higher than 50%, and even exceed the large-scale IT projects. Ambiguous objective and lack changeability, extensibility and intercommunication ability are major risk factors of the big data applications. The critical quality defects of development process should be timely identified and improved to reduce the high risk. Iterative big data development quality management and control measures can timely improve the project development defects and transfer the risks. In this paper, based on the spiral software development model, proposes the critical quality measurement (CQM) model, and develops the risk management and control (RMC) procedure. Big data development process combines RMC procedure with CQM model that can timely identify development quality defects. Iterative identified quality defects can timely avoid the development risks extension and effectively reduce the loss of high failure risk of big data project.

A Version Control-Based Continuous Testing Frame for Improving the IID Process Efficiency and Quality

In order to effectively manage resource, control time and reduce development risk, small scale or high changeable software project very suitable use IID (Iterative Incremental Development) process. Applying IID process, agile development model becomes the practical method to reduce software project failure rate. Continuous testing is an IID implementation concept which can timely identify the quality defects and effectively reduce software development risk. However, continuous testing and building the workable version need to spend more time and human resources. It is a major flaw of IID. For improving the continuous testing efficiency, the paper depth surveys test cases and version control. Enhancing test cases version control and testing tools frame can make up IID drawbacks and increase IID process efficiency and quality. For this, the paper proposes the Version Control-based Continuous Testing Frame (VCCTF) to assist new version integration and deployment operation. Combining IID and VCCTF makes software process problems and quality defects can be timely identified, deploy new version quickly, increase IID process efficiency and quality, and reduce software project risk.

Data Preprocessing Quality Management Procedure for Improving Big Data Applications Efficiency and Practicality

Diversification applications of network fully combined with the people’s daily activities and life. All network activities generate and record the large amount of data that implies the business values of enterprises and organizations. Collecting, analyzing and visualizing the large amount of data, intelligent information may be efficiently extracted. Big data applications can help enterprises enhance market competitiveness advantages, and assist government units improve the people daily life quality. However, big data collected from network and IoT (Internet of Things) environment existed many quality defects and problems to be resolved. Data quality of big data will directly impact the analysis results of big data, and may cause wrong decisions, inaccurate predication, imperfect planning and arrangements. Data preprocessing is an important procedure of big data applications. How to ensure data preprocessing tasks quality has become a concern issue of big data applications. Based on the review activities, this paper proposes the Preprocessing Tasks Quality Measurement (PTQM) model to identify the quality defects of data preprocessing tasks. Applying Data Preprocessing Quality Management (DPQM) procedure timely modifies the preprocessing tasks quality defects to increase the big data applications efficiency and practicality.