UNIVERSITI SAINS MALAYSIA. CMT322/CMM323 Web Engineering & Technologies [Kejuruteraan & Teknologi Web]

Similar documents
UNIVERSITI SAINS MALAYSIA. CMT322/CMM323 Web Engineering & Technologies [Kejuruteraan & Teknologi Web]

UNIVERSITI SAINS MALAYSIA. CST333 Distributed & Grid Computing [Perkomputeran Teragih & Grid]

UNIVERSITI SAINS MALAYSIA. CST332 Internet Protocols. Architecture & Routing [Protokol, Seni Bina & Penghalaan Internet]

UNIVERSITI SAINS MALAYSIA. CST232 Operating Systems [Sistem Pengendalian]

UNIVERSITI SAINS MALAYSIA. CMT422 Multimedia Information Systems & Management [Sistem & Pengurusan Maklumat Multimedia]

UNIVERSITI SAINS MALAYSIA. CST331 Principles of Parallel & Distributed Programming [Prinsip Pengaturcaraan Selari & Teragih]

UNIVERSITI SAINS MALAYSIA. CCS521 Advanced Distributed Systems Concepts and Design [Konsep dan Reka Bentuk Sistem Teragih Maju]

UNIVERSITI SAINS MALAYSIA. CPT111/CPM111 Principles of Programming [Prinsip Pengaturcaraan]

UNIVERSITI SAINS MALAYSIA. CST334 Network Monitoring & Security [Pengawasan & Keselamatan Rangkaian]

UNIVERSITI SAINS MALAYSIA. CPT344 Computer Vision & Image Processing [Penglihatan Komputer & Pemprosesan Imej]

UNIVERSITI SAINS MALAYSIA. CPT211-CPM313 Programming Language Concepts & Paradigm [Konsep & Paradigma Bahasa Pengaturcaraan]

UNIVERSITI SAINS MALAYSIA. CST131 Computer Organisation [Organisasi Komputer]

MSS 317 Coding Theory [Teori Pengekodan]

UNIVERSITI SAINS MALAYSIA. Peperiksaan Semester Pertama Sidang Akademik 2003/2004. September/Oktober 2003

UNIVERSITI SAINS MALAYSIA. CPT113 Programming Methodology & Data Structures [Metodologi Pengaturcaraan & Struktur Data]

UNIVERSITI SAINS MALAYSIA. CCS522 Advanced Data Communication & Computer Networks [Rangkaian Komputer & Komunikasi Data Lanjutan]

UNIVERSITI SAINS MALAYSIA. CCS522 Advanced Data Communication and Computer Networks [Rangkaian Komputer dan Komunikasi Data Lanjutan]

CPT111/CPM111 Principles of Programming [Prinsip Pengaturcaraan]

UNIVERSITI SAINS MALAYSIA. CST131 Computer Organisation [Organisasi Komputer]

UNIVERSITI SAINS MALAYSIA. CMT224/CMM221 Multimedia Systems [Sistem Multimedia]

UNIVERSITI SAINS MALAYSIA. CST234 Network Programming [Pengaturcaraan Rangkaian]

UNIVERSITI SAINS MALAYSIA. CST131 Computer Organisation [Organisasi Komputer]

...a- JEE ELEKTRONIK DIGIT II. UNlVERSlTl SAINS MALAYSIA. Peperiksaan Semester Kedua Sidang Akademik FebruarVMac 2003.

INSTRUCTION: This section consists of TWO (2) questions. Answer ALL questions. ARAHAN: Bahagian ini mengandungi DUA (2) soalan. Jawab SEMUA soalan.

EEE348 INTRODUCTION TO INTEGRATED CIRCUIT DESIGN (PENGANTAR REKABENTUK LITAR BERSEPADU)

INSTRUCTION: This section consists of TEN (10) structured questions. Answer ALL questions.

UNIVERSITI SAINS MALAYSIA. CPT341 Software Design & Architecture [Reka Bentuk & Seni Bina Perisian]

EEE 428 SISTEM KOMPUTER

EEE 348 PENGANTAR REKABENTUK LITAR BERSEPADU

UNIVERSITI SAINS MALAYSIA. CST331 Principles of Parallel & Distributed Programming [Prinsip Pengaturcaraan Selari & Teragih]

PANDUAN PENGGUNA (PENTADBIR SYSTEM/SYSTEM ADMINISTRATOR) (INFOTECH, BPPF DAN POLIS

INSTRUCTION: This section consists of FOUR (4) structured questions. Answer ALL questions.

INSTRUCTION: This section consists of FOUR (4) structured questions. Answer ALL questions.

UNIVERSITI SAINS MALAYSIA

INSTRUCTION: This section consists of TWO (2) structured questions. Answer ALL questions.

PANDUAN PENGGUNA (PENSYARAH)

MULTIMEDIA COLLEGE JALAN GURNEY KIRI KUALA LUMPUR

CPT211/CPM313 Programming Language Concepts & Paradigms [Konsep & Paradigma Bahasa Pengaturcaraan]

MSS 318 Discrete Mathematics [Matematik Diskret]

INSTRUCTION: This section consists of TWO (2) short answer and structured essay questions. Answer ALL questions.

UNIVERSITI SAINS MALAYSIA. CPT111 Principles of Programming [Prinsip Pengaturcaraan]

INSTRUCTION: This section consists of FOUR (4) structured questions. Answer ALL questions.

INSTRUCTION: This section consists of TWO (2) structured questions. Answer ALL questions.

Semasa buku ini ditulis XAMPP mengandungi empat versi:

UNIVERSITI SAINS MALAYSIA. CST231/CSM331 Data Communications & Networks [Komunikasi Data & Rangkaian]

MANAGE COURSE RESOURCES LABEL TEXT PAGE URL BOOK FILE FOLDER IMS CONTENT PACKAGE

ssk 2023 asas komunikasi dan rangkaian TOPIK 4.0 PENGALAMATAN RANGKAIAN Minggu 11

UNIVERSITI SAINS MALAYSIA. CMT324 Computer Graphics & Visual Computing [Grafik Komputer & Perkomputeran Visual]

PANDUAN PENGGUNA (SUPPLIER) MAINTAIN CERTIFICATES/SUPPLIER DETAILS SUPPLIER RELATIONSHIP MANAGEMENT SUPPLY CHAIN MANAGEMENT SYSTEM (SCMS)

MICROSOFT EXCEL. Membina Hamparan Elektronik Fungsi Hamparan Elektronik

UNIVERSITI SAINS MALAYSIA. CPT103/ CPM211 Struktur Data & Paradigma Pengaturcaraan

INSTRUCTION: This section consists of TWO (2) structured questions. Answer ALL questions.

PANDUAN PENGGUNA (SUPPLIER) MAINTAIN CERTIFICATES/SUPPLIER DETAILS SUPPLIER RELATIONSHIP MANAGEMENT SUPPLY CHAIN MANAGEMENT SYSTEM (SCMS)

MAT 181 Programming For Scientific Applications [Pengaturcaraan Untuk Penggunaan Sains]

PART A SULIT (EKT 221) BAHAGIAN A. Answer ALL questions. Question 1. a) Briefly explain the concept of Clock Gating.

CST432 Microprocessors & Embedded Systems [Mikropemproses & Sistem Terbenam]

UNIVERSITI SAINS MALAYSIA. CST432 Microprocessors & Embedded Systems [Mikropemproses & Sistem Terbenam]

MAT181 Programming For Scientific Applications [Pengaturcaraan Untuk Penggunaan Sains]

Panduan Menggunakan Autoresponder FreeAutobot.com

PANDUAN PENGGUNA (SUPPLIER) e-purchase ORDER FOR SERVICES

CPT212 Design & Analysis of Algorithms [Reka Bentuk & Analisis Algoritma]

Pengguna akan diberikan Username dan Password oleh Administrator untuk login sebagai admin/conference Manager bagi conference yang akan diadakan.

FIRST TIME LOGIN & SELF REGISTRATION USER GUIDE LOG MASUK KALI PERTAMA & PENDAFTARAN SENDIRI PANDUAN PENGGUNA

Panduan Pengguna Autodesk Education Community

UNIVERSITI SAINS MALAYSIA. CST232 Operating Systems [Sistem Pengendalian]

INSTRUCTION: This section consists of FOUR (4) questions. Answer ALL questions. ARAHAN: Bahagian ini mengandungi EMPAT (4) soalan. Jawab SEMUA soalan.

DOKUMEN TIDAK TERKAWAL

INSTRUCTION: This section consists of TWO (2) questions. Answer ALL questions. ARAHAN: Bahagian ini mengandungi DUA (2) soalan. Jawab SEMUA soalan.

Pengenalan Sistem Maklumat Dalam Pendidikan

UNIVERSITI SAINS MALAYSIA. CIT502 Pengaturcaraan dan Kejuruteraan Perisian Berorientasi Objek

INSTRUCTION: This section consists of TWO (2) structured questions. Answer ALL questions.

REGISTRATION GUIDE MCIS CUSTOMER PORTAL. Page 1

MULTIMEDIA COLLEGE JALAN GURNEY KIRI KUALA LUMPUR

TEKNOLOGI, GADJET & KEIBUBAPAAN

UNIVERSITI SAINS MALAYSIA. CCS513 Computer Vision and Image Analysis [Penglihatan Komputer dan Analisis Imej]

EEE 355 ROBOTIC & AUTOMATION [Robotik & Pengautomatan]

1. Akses untuk koperasi adalah melalui

CREATING USER ID AND PASSWORD : NOTA PENTING NOTA PENTING SEBELUM MEMULAKAN PROSES CREATE USER ID & PASSWORD

EEM 312 ROBOTIK & PENGLIHATAN MESIN

INSTRUCTION: This section consists of FOUR (4) structured questions. Answer ALL questions.

UNIVERSITI SAINS MALAYSIA. CPT212 Design & Analysis of Algorithms [Reka Bentuk & Analisis Algoritma]

UNIVERSITI SAINS MALAYSIA. CCS523 Computer Security & Cryptography [Keselamatan Komputer & Kriptografi]

UNIVERSITI SAINS MALAYSIA. CCS523 Computer Security & Cryptography [Keselamatan Komputer & Kriptografi]

UNIVERSITI SAINS MALAYSIA EEE 355 ROBOT DAN PENGAUTOMATAN

INSTRUCTION: This section consists of TWO (2)short answers and TWO (2) structured essays. Answer ALL questions.

UNIVERSITI SAINS MALAYSIA. CST334 Network Monitoring & Security [Pengawasan & Keselamatan Rangkaian]

COMBINING TABLES. Akademi Audit Negara. CAATs ASAS ACL / 1

UNIVERSITI SAINS MALAYSIA. CPT103 Struktur Data & Paradigma Pengaturcaraan

ISU DAN CABARAN PELAKSANAAN SISTEM PENGURUSAN KESELAMATAN MAKLUMAT (ISMS) 15 Jun 2016 Dewan Taklimat Serdang

LOGICAL OPERATORS AND ITS APPLICATION IN DETERMINING VULNERABLE WEBSITES CAUSED BY SQL INJECTION AMONG UTM FACULTY WEBSITES NURUL FARIHA BINTI MOKHTER

UNIVERSITI SAINS MALAYSIA. CPT103/CPM211 Struktur Data & Paradigma Pengaturcaraan

AN IMPROVED PACKET FORWARDING APPROACH FOR SOURCE LOCATION PRIVACY IN WIRELESS SENSORS NETWORK MOHAMMAD ALI NASSIRI ABRISHAMCHI

INSTRUCTION: This section consists of TWO (2) structured questions. Answer ALL questions.

CCS592 Advanced Algorithms and Complexity [Algoritma Lanjutan & Kekompleksan]

Registration of Supplier (ROS) TM Supplier Registration Renewal via SUS Portal (Pembaharuan Pendaftaran Pembekal TM melalui SUS Portal)

Registration of Supplier (ROS) TM Supplier Registration Renewal via SUS Portal (Pembaharuan Pendaftaran Pembekal TM melalui SUS Portal)

VIRTUAL PRIVATE NETWORK: ARCHITECTURE AND IMPLEMENTATIONS

IMPLEMENTATION OF UNMANNED AERIAL VEHICLE MOVING OBJECT DETECTION ALGORITHM ON INTEL ATOM EMBEDDED SYSTEM

UNIVERSITI SAINS MALAYSIA. CPT101 Prinsip-Prinsip Pengaturcaraan

MAT 181 Programming For Scientific Applications [Pengaturcaraan Untuk Penggunaan Sains]

Transcription:

UNIVERSITI SAINS MALAYSIA First Semester Examination 2011/2012 Academic Session January 2012 CMT322/CMM323 Web Engineering & Technologies [Kejuruteraan & Teknologi Web] Duration : 2 hours [Masa : 2 jam] INSTRUCTIONS TO CANDIDATE: [ARAHAN KEPADA CALON:] Please ensure that this examination paper contains FOUR questions in NINE printed pages before you begin the examination. [Sila pastikan bahawa kertas peperiksaan ini mengandungi EMPAT soalan di dalam SEMBILAN muka surat yang bercetak sebelum anda memulakan peperiksaan ini.] Answer ALL questions. Please write your answers according to the sequence of the questions. [Jawab SEMUA soalan. Sila tulis jawapan anda mengikut turutan soalan.] You may answer the questions either in English or in Bahasa Malaysia. [Anda dibenarkan menjawab soalan sama ada dalam bahasa Inggeris atau bahasa Malaysia.] In the event of any discrepancies, the English version shall be used. [Sekiranya terdapat sebarang percanggahan pada soalan peperiksaan, versi bahasa Inggeris hendaklah diguna pakai.]...2/-

- 2-1. (a) Discuss a one (1) challenge faced with stakeholders and a one (1) challenge faced with web developers during the requirement gathering. Why is agile framework adopted for building industry-quality Web-based application? Discuss two (2) reasons. What is the difference between analysis modeling and design modeling? Give an example for each modeling. Consider a website that provides live updates of traffic conditions within a city area. Explain whether you believe the design of this website would be best implemented using server-side or client-side functionality. (d) Consider the following scenario: You are working for a web development company and have been given responsibility for developing a web-based system for the Roads and Traffic Authority to be called TrafficMate. The system will allow users to register their email address and particular traffic routes and times (e.g. the path which they might normally drive home from work and the likely times which this might happen). Whenever the users return to the website, it will automatically include information on traffic conditions along that route. The system will also automatically email them if the route is expected to have traffic problems during the time they normally travel along it. Note: If the scenario contains insufficient information, you should make a suitable assumption which you should state in your answer. Explain one (1) technical issue which you would need to address in the design of a system such as this. Draw an information design for the TrafficMate using Web Modelling Language (WebML). Your information design should include: Data model (equivalent to entity-relationship (ER) model). Hypertext model. (15/100)...3/-

- 3-2. (a) What are the methods adopted in order to prevent SQL Injections being used by the attackers to attack the vulnerability of the scripting languages? Discuss three (3) methods. (9/100) For data-aspect architectures, the data is grouped into either of three architectural categories: (1) structured data of kind held in database; (2) documents of the kind used in document management systems; and (3) multimedia data of the kind held in media servers. What are the factors that influence the architecture and design of multimedia Web application? Discuss two (2) factors. One of the distinct applications for multimedia data streaming is making existing contents available on demand, example, video-on-demand. Discuss two (2) major concerns regarding this application and a way to keep such systems scalable to the desired number of users. (11/100) 3. (a) What is the difference between change management and content management? Also discuss the two (2) attributes of change. Web usage/access analysis is a process of assessing and analyzing the use of Web application. Usage analysis serves to measure a Web application s success by evaluating various indicators. Discuss two (2) usage analysis techniques; indicating how they work. Give an advantage of each technique. Performance tests are designed to simulate real-world loading situations. As the number of simultaneous Web application users grow, or the number of online transactions increases, or the amount of data (downloaded or uploaded) increases, performance testing is required. What are the two (2) objectives of performance testing? What is the difference between load testing and stress testing? Under what type of testing, streaming and push content testing being performed? What does push content mean?...4/-

- 4-4. (a) Given the following requirements, please indicate either session or cookie is suitable to store the data across pages in each of the cases below. Requirement Remember the username when user login again Method that will store the data on Web server To implement the keep me signed in feature (iv) Method that allow developer to define the expire time of the data (v) Method that will be terminated when Internet browser is closed (vi) To store data that need high security (such as shopping cart s data) Answer (3/100) Set a PHP cookie with name of username and value of Sally ; that will expire exactly at 8.00 a.m. on 24 th December 2011. On the same page, Set a PHP cookie with name usercert to fetch the value stored in the array $_POST ["certificate"]. This cookie will be expired after two hours. One important security feature of website nowadays is the user authentication based on username and password. The source codes of the login page.html are shown as follows: <html> <head> <title>loginform</title> </head> <body> <form action="login.php" name=="loginform" method="post"> <b>username:</b><input type="text" name="fusername" size="20" maxlength="20"> <b>password</b><input type="password" name="fpassword" size="20" maxlength="20"> <input type="submit" name="log" value="enter"> </form> </body>...5/-

- 5 - You are required to develop a new page of PHP script to do the following: Connect to the MySQL server with the MySQL username admin. The password for this MySQL account is adminpassword. The server name is SQLserver and the database name is usermanagement. The registered member s information is stored in the database as shown below: Table: member Column Type Null Index loginname Varchar(20) No Primary Password Varchar(25) No - (iv) (v) Verify the username and password submitted by the user. If both username and password are correct, use session method to authenticate the user and allow him/her to navigate across member area. If the username or password is incorrect, give a proper message to the user and direct the user to the login page.html. (12/100)...6/-

KERTAS SOALAN DALAM VERSI BAHASA MALAYSIA - 6-1. (a) Bincangkan satu (1) cabaran yang dihadapi oleh pemegang amanah dan satu (1) cabaran yang dihadapi oleh pembangun laman web semasa pengumpulan keperluan. Kenapa kerangka lincah digunapakai dalam membangunkan aplikasi berdasarkan web bertaraf industri? Bincangkan dua (2) sebab. Apakah perbezaan antara pemodelan analisis dengan pemodelan reka bentuk? Berikan satu contoh bagi setiap pemodelan. Pertimbangkan satu tapak web yang akan membekalkan maklumat terkini secara langsung keadaan trafik dalam sebuah kawasan bandar. Terangkan sama ada anda percaya reka bentuk laman web ini terbaik dilaksanakan menggunakan fungsian server-side atau client-side. (d) Pertimbangkan senario berikut: Anda bekerja untuk satu syarikat pembangunan web dan syarikat tersebut diberikan tanggungjawab untuk membangunkan sistem Autoriti Jalan dan Trafik yang dipanggil TrafficMate. Sistem tersebut akan membenarkan pengguna untuk mendaftar alamat emel mereka dan laluan trafik khusus dan masa (contoh: laluan yang mereka selalunya lalui ke rumah daripada tempat kerja dan masa-masa yang ianya berlaku.) Apabila para pengguna kembali ke laman web tersebut, ia akan memasukkan maklumat berkenaan keadaan trafik sepanjang laluan tersebut secara automatik. Sistem tersebut juga akan menghantar emel secara automatik kepada mereka jika laluan tersebut dijangka akan mengalami masalah trafik semasa mereka melakukan perjalanan. Nota: Jika senario ini tidak mengandungi maklumat yang cukup, anda harus membuat andaian yang bersesuaian dan nyatakan andaian ini dalam jawapan anda. Terangkan satu (1) isu teknikal yang anda perlu utarakan dalam reka bentuk sistem seperti ini. Lakarkan reka bentuk untuk TrafficMate menggunakan bahasa permodelan Web (WebML). Maklumat reka bentuk anda harus meliputi: Model data (setara dengan model hubungan-entiti (ER)). Model hiperteks. (15/100)...7/-

- 7-2. (a) Apakah cara-cara yang akan digunakan dalam usaha membenteras SQL Injections daripada dapat digunakan oleh penyerang untuk menyerang kelemahan yang ada pada bahasa scripting? Bincangkan tiga (3) cara. (9/100) Untuk seni bina aspek-data, data dikelompokkan ke salah satu daripada kategori seni bina berikut: (1) data berstruktur yang disimpan dalam pangkalan data; (2) dokumen yang digunakan dalam sistem pengurusan dokumen; dan (3) data multimedia yang disimpan dalam pelayan media. Apakah faktor-faktor yang mempengaruhi seni bina dan reka bentuk multimedia aplikasi web? Bincangkan dua (2) faktor. Salah satu aplikasi yang terserlah untuk aliran data multimedia ialah menjadikan kandungan maujud boleh sedia apabila diperlukan, contohnya, video-on-demand. Bincangkan dua (2) kepedulian mengenai aplikasi ini dan satu (1) cara untuk menjadikan sistem tersebut berskala kepada bilangan pengguna yang dikehendaki. (11/100) 3. (a) Apakah perbezaan antara pengurusan perubahan dengan pengurusan kandungan? Dan bincangkan dua (2) ciri-ciri perubahan. Analisis penggunaan capaian web adalah suatu proses penilaian dan penganalisaan penggunaan aplikasi web. Ia bertujuan untuk mengukur kejayaan aplikasi Web dengan menilai pelbagai indikator. Bincangkan dua (2) teknik analisis penggunaan; tunjukkan bagaimana mereka berfungsi. Berikan satu (1) kelebihan setiap teknik tersebut. Ujian prestasi direka untuk mengsimulasi situasi pemuatan dunia-sebenar. Apabila pengguna serentak aplikasi Web bertambah; atau bilangan transaksi dalam talian bertambah; atau jumlah data (muat-turun atau muat-naik) bertambah, ujian prestasi diperlukan. Apakah dua (2) objektif ujian prestasi? Apakah perbezaan antara ujian beban dan ujian tekanan? Di bawah ujian apakah, ujian streaming dan push content akan dilaksanakan? Apakah makna push content?...8/-

- 8-4. (a) Diberikan keperluan seperti di bawah, tentukan sama ada session atau cookie sesuai untuk menyimpan data di halaman dalam setiap kes di bawah. Requirement Remember the username when user login again Method that will store the data on Web server To implement the keep me signed in feature (iv) Method that allow developer to define the expire time of the data (v) Method that will be terminated when Internet browser is closed (vi) To store data that need high security (such as shopping cart s data) Answer (3/100) Tetapkan cookie PHP dengan nama username dan nilai Sally ; yang akan luput pada 8.00 a.m. pada 24 Disember 2011. Dalam halaman yang sama, tetapkan cookie PHP dengan nama usercert untuk mencapai nilai yang disimpan dalam $_POST ["certificate"] array. Cookie ini akan luput selepas dua jam. Salah satu ciri sekuriti laman web yang penting hari ini ialah pengesahan pengguna berdasarkan kepada nama pengguna dan kata laluan. Kod sumber kepada login page.html adalah ditunjukkan seperti di bawah: <html> <head> <title>loginform</title> </head> <body> <form action="login.php" name=="loginform" method="post"> <b>username:</b><input type="text" name="fusername" size="20" maxlength="20"> <b>password</b><input type="password" name="fpassword" size="20" maxlength="20"> <input type="submit" name="log" value="enter"> </form> </body>...9/-

- 9 - Anda dikehendaki membangunkan satu halaman skrip PHP untuk melaksanakan perkara berikut: Sambungkan kepada pelayan MySQL dengan nama pengguna MySQL admin. Kata laluan untuk akaun MySQL ini ialah adminpassword. Nama pelayan ialah SQLserver dan nama pangkalan data ialah usermanagement. Maklumat ahli berdaftar disimpan dalam pangkalan data seperti yang ditunjukkan di bawah: Table: member Column Type Null Index loginname Varchar(20) No Primary Password Varchar(25) No - (iv) (v) Pastikan nama pengguna dan kata laluan yang diajukan oleh pengguna. Jika kedua-dua nama pengguna dan kata laluan tersebut betul, gunakan kaedah sesi untuk mengesahkan pengguna tersebut dan membenarkan dia belayar melintasi kawasan ahli. Jika nama pengguna atau kata laluan tidak betul, berikan mesej yang bersesuaian kepada pengguna dan arahkan pengguna kepada login page.html. (12/100) - ooooooo -

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback