Кафедри

Постійне посилання на розділhttps://repository.kpi.kharkov.ua/handle/KhPI-Press/35393

Переглянути

Результати пошуку

Зараз показуємо 1 - 5 з 5
  • Ескіз
    Документ
    Towards Effectiveness Assessment of Domain Modelling Methods and Tools in SPL Development
    (German Informatics Society, 2018) Tkachuk, Mykola; Gamzayev, Rustam; Martinkus, Iryna; Sokol, Volodymyr; Tovstokorenko, Oleh
    Domain-driven design (DDD) and especially the usage of domain modelling methods (DMM) are modern approaches to improve software quality, and a way to develop software product lines (SPL). To emphasize advantages of DDD and DMM usage, a 3-level design scheme is proposed, which reflects also variability issues in the framework. According to this metaphor the main attention is paid to the phases of logical domain modelling and physical modelling, with usage of two alternative DMM-methods: JODA and ODM approaches. The algorithmic model for an efficiency coefficient estimation of alternative DMM usage is proposed, which utilizes structured data resources, expert methods and metrics used in SPL development processes. A feasibility study for the proposed approach is provided and the obtained experimental results are discussed, which allow to make positive conclusions about this research and to outline its further steps to be done.
  • Ескіз
    Документ
    Знання-орієнтована інформаційна технологія для управління варіабельністю на етапі доменного аналізу у розробці програмного забезпечення
    (Національний технічний університет "Харківський політехнічний інститут", 2020) Gamzayev, Rustam; Tkachuk, Mykola; Shevkoplias, Daria
    The subject matter of this paper is a research of issues related to the variability management at the stage of domain analysis (DA) in the full life cycle (FLC) of software products line (SPL). The main goal of this research work is the elaboration of a new knowledge-based information technology to support a variability management in DA as a most complex and weak-formalized stage in FLC of SPL. In order to reach this goal the following tasks were formulated and resolved: to analyze the variability issues in FLC on the example of the modern agile-development approach-in the Scrum-methodology; to study how the methods of knowledge handling can be used to support some users and domain-experts activities withinthe DA phase with respect to software variability modeling; to make the motivated choice of the suitable CASE-tools to elaborate an appropriate IT solution to support the knowledge-oriented approach to DA; to present this IT-solution in a structured form,to consider some its implementation issues, and to discuss the first testing results. The methodsused in this research are: domain-driven design approach to software development, repertory grids method and ontologies for expert’s knowledge handling, IDEF0 notation for specification of the proposed IT solution, feature-oriented domain analysis (FODA) for variability modeling. Conclusions:the results of this research shownthat the special attention has to be paid to the DA in a FLC, especially with usage of knowledge-based methods. To perform this process in an effective way the repertory grids method is motivated chosen and analyzed. To support the usage of this method in DA the proposal is made to elaborate the special IT-solution using some already available CASE-tools. The essentials functionality features of two such systems: GridSuite and SOVA (Semantical and Ontological Variability Analysis) are considered, and basing on this result, the integrated IT-solution is elaborated and presented in form of the IDEF0 diagram. Finally, the main technological facets of these tools installation are studied and tested, and the test-case to show the possibility to generate the FODA-variability model for the “Smart-Home” application domain is provided.
  • Ескіз
    Документ
    Експериментальне дослідження ефективності застосування варіабельних проектних рішень на етапі супроводу програмного забезпечення систем «Розумний будинок»
    (Національний технічний університет "Харківський політехнічний інститут", 2020) Товстокоренко, Олег Юрійович; Гамзаєв, Рустам Олександрович; Ткачук, Микола Вячеславович
    У статті розглянуто поточний стан наукових публікацій за темою інтелектуалізації усіх основних процесів повного життєвого циклу (full life cycle) програмних систем (ПС), підходи для побудови варіабельних моделей для систем «Розумний дім». Проведено огляд існуючих підходів до аналізу якості побудови таких рішень. Проаналізовано Feature-Oriented Development Architecture (FODA) модель системи розумний будинок, підкреслено актуальні проблеми проектування систем розумного дому. Проаналізовано стан публікацій за тематикою оцінки якості систем типу «Розумний дім». Потім запропонований підхід експериментальної оцінки супроводжуваності системи заснований на аналізі сумарних витрат необхідних для підготовки функціоналу системи для роботи. В ході проведення експериментальних розрахунків було використано доменну модель систем «Розумний дім» в двох варіантах, з використанням інтеграційного модулю та з використання окремих пристроїв управління, окремо для кожного з виробників. Запропонований підхід для оцінки альтернативних FODA моделей заснований критерії «maintainability». В якості даних було використано час, необхідний для конфігурування програмного забезпечення для набора окремих модулів системи, та налаштування їх як єдиної системи. Отримані дані, що дозволяють прийняти рішення про вибір архітектури побудови системи ґрунтуючись на заданій доменної моделі, що містить набір пристроїв і опису наданих ними функцій. Результати роботи повинні стати основою для розробки централізованого сховища, для накопичення, аналізу та повторного використання конфігурації як окремих підмодулів систем «Розумний дім», так і цілісних систем, які відповідають певним вимогам, у результаті чого буде запропоновано комплексний підхід до підвищення якості супроводу систем «Розумний дім» на прикладі показника супроводу.
  • Ескіз
    Документ
    A fuzzy-based approach to automated defect identification in distributed software systems and software product lines
    (НТУ "ХПІ", 2018) Zinkovskyi, O. I.; Gamzayev, R. O.; Bollin, Andreas; Tkachuk, M. V.
    An approach to the improvement of the efficiency of the bug tracking process in distributed software systems and software product lines via automated identification of duplicate report groups and report groups collected from correlated bugs, combined with bug localization within a software product line is considered. A brief overview of the problem of automated report collection and aggregation is made, several existing software tools and solutions for report management and analysis are reviewed, and basic functionality of a typical report management system is identified. In addition to this, a concept of a report correlation group is introduced and an automated crash report aggregation method based on the rules for comparison of crash signatures, top frames, and frequent closed ordered sub-sets of frames of crash reports is proposed. To evaluate these rules, two separate fuzzy models are built, the first one to calculate the output of the Frequent Closed Ordered Sub-Set Comparison rule, and the second one to interpret and combine the output of all three rules and produce an integrated degree of crash report’s similarity to an existing report correlation group or to another report. A prototype of a report management system with report aggregation capabilities is developed and tested using imported from the publicly available Mozilla Crash Stats project report groups. During the experiment, a precision of 90% and a recall of 81% are achieved. Lastly, an approach to localize the largest identified report groups and represented by them bugs within a concrete software product line based on an information basis consisting of a feature model, a list of software components, and a mapping between features and components is proposed, conclusions are drawn, and goals for the future work are outlined.
  • Ескіз
    Документ
    Algorithms and software solutions for SQL injection vulnerability testing in web applications
    (НТУ "ХПІ", 2018) Arslan, Berk; Gamzayev, R. O.; Karaçuha, Ertuğrul; Tkachuk, M. V.
    Software security gains importance day by day and developers try to secure web applications as much as possible to protect confidentiality, integrity and availability that are described in the fundamental security model so-called CIA triad. SQL injection vulnerability which can violate the confidentiality and integrity principles of the CIA triad is reviewed, and SQL injection attack execution and protection techniques are explained. The common frameworks’ solutions against SQL injection vulnerability were compared, and this comparison shown the most used techniques in this domain. Error-based and time-based detection algorithms for SQL injection’s identification are developed to create a vulnerability scanner that can detect SQL attacks which cause vulnerability in web applications, and these algorithms are represented in form of UML-activity diagrams. In order to discover all possible links and forms to perform SQL injection vulnerability tests in the entire website, a web crawler is needed. Breadth-First Search (BFS) algorithm for developing the web crawler is proposed, and the appropriate pseudo code and activity diagram are provided. Besides, Common Vulnerability Scoring System (CVSS) that is used to measure severity score of attacks that can violate CIA triad principles is reviewed. Qualitative severity score rating scale of CVSS is explained. An example of CVSS calculation is represented. Necessary components of a vulnerability scanner are explained. A vulnerability scanner prototype is developed using explained algorithms. Process results of this vulnerability scanner’s usage for real web applications are represented. Conclusions are made, and goals of future work are defined.