BOY SCOUT MEDICAL RECORD SYSTEM FOR BLUE RIDGE MOUNTAIN COUNCIL By John Kurlak, Pat Whelan, Zack Greer, and Mauricio De La Barra April 30, 2012CS 4624:

Slides:

Advertisements

Similar presentations

PHP SQL. Connection code:- mysql_connect("server", "username", "password"); Connect to the Database Server with the authorised user and password. Eg $connect.

Advertisements

Easy DCR Development Control Regulation Online Building Permission System.

Terrapin Trader Transformation by Oliver Stohr - Olga Kuznetsova Tyler Cordrey - Brett Holbert December 9, 2008.

Course for teachers covering: HTML, CSS, JavaScript, JQuery PHP, PHP/MySQL

By Brian Vees.  SQL Injection  Username Enumeration  Cross Site Scripting (XSS)  Remote Code Execution  String Formatting Vulnerabilities.

CADDLAB Medical Imaging on Remote Compute Servers.

Reference and Instruction Automated Statistics Gathering and Reporting System Members: Patrick Chen (pyc7) Soo-Yung Cho (sc444) Gregg Herlacher (gah24)

WHAT IS PHP PHP is an HTML-embedded scripting language primarily used for dynamic Web applications.

Final Year Project Presentation E-PM: A N O NLINE P ROJECT M ANAGER By: Pankaj Goel.

Web-based Document Management System By Group 3 Xinyi Dong Matthew Downs Joshua Ferguson Sriram Gopinath Sayan Kole.

Preventing SQL Injection ~example of SQL injection $user = $_POST[‘user’]; $pass = $_POST[‘pass’]; $query = DELETE FROM Users WHERE user = ‘$user’ AND.

MU Bulletin Board Member: Carol Lim Yi Wang Lei Wen Mentor: John Boyer Programmer/Analyst of MSA/ Student Life.

Course review BTM 395: Internet Programming. What you have learnt in this course.

By Daniel Siassi.  XHTML  For Structure  CSS  For Stylization of Structure  SQL Database  Store Customer, Calendar, and Order Data  PHP  Server-side.

Lecture 14 – Web Security SFDV3011 – Advanced Web Development 1.

About Dynamic Sites (Front End / Back End Implementations) by Janssen & Associates Affordable Website Solutions for Individuals and Small Businesses.

Social Network for Behavior Change Team #11: Gavin Monroe Nicholas Schramm Davendra Jayasingam Client: Yolanda Coil Advisor: Simanta Mitra.

Online Music Store MSE Project Presentation I Presented by: Reshma Sawant Major Professor: Dr. Daniel Andresen.

Project Proposal Interface Design Website Coding Website Testing & Launching Website Maintenance.

EndNote Web In the ISI Web of Knowledge.

Elockbox Team08 Fall2014 Jian Lei Role(s): Project Manager / Builder Da Lu Role(s): Prototyper / System/Software Architect Cheng Role(s):Feasibility Analyst.

Accessing MySQL with PHP IDIA 618 Fall 2014 Bridget M. Blodgett.

JavaScript – Quiz #9 Lecture Code:

Feedback #2 (under assignments) Lecture Code:

Technology & Management Club Development Software Overview.

CSE Waitlist Made By: Peng Hu, Zhicheng Lin, Mark Mosby, Robert Pittman, and Derek Robati.

By Matt Baker Eric Sprauve Stephen Cauterucio. The Problem Advisors create a sign-up sheet to be posted on the door of their office. These sign-up sheets.

Accessing Your MySQL Database from the Web with PHP (Ch 11) 1.

Prof Frankl, Spring 2008CS Polytechnic University 1 Overview of Web database applications with PHP.

*********** Enter your Enter your password Click here to Sign In.

Okalo Daniel Ikhena Dr. V. Z. Këpuska December 7, 2007.

SQL INJECTIONS Presented By: Eloy Viteri. What is SQL Injection An SQL injection attack is executed when a web page allows users to enter text into a.

GOAL User Interactive Web Interface Update Pages by Club Officers Two Level of Authentication.

Web Design: Basic to Advanced Techniques Fall 2010 Mondays 7-9pm 200 Sutardja-Dai Hall Introduction to PHP.

Security Considerations Steve Perry

FP6 IT System 1 ELECTRONIC PROPOSAL SUBMISSION SYSTEM.

Final Project Presentation on Website design for Educational purpose on “Ethiopian National Heritage” By Fitsum F. Abebe Course teachers and facilitators.

Web Design and Development. World Wide Web  World Wide Web (WWW or W3), collection of globally distributed text and multimedia documents and files 

Identification Of Requirements From a Given Problem Statement.

Rolando Gaytan Clay Schumacher Josh Weisskopf Cory Simon Aaron Steil (Reiman Gardens) – Client Dr. Tien Nguyen - Advisor.

Syllabus Management System Matt Bernstein, Paul Capelli, Jared Segal.

The basics of knowing the difference CLIENT VS. SERVER.

Preventing MySQL Injection Sonja Parson COSC 5010 Security Presentation April 26, 2005.

What Is XSS ? ! Cross-site scripting (XSS) is a type of computer security vulnerability typically found in Web applications. XSS enables attackers to.

Creating Databases applications for the Web: week 2 Basic HTML review, forms HW: Identify unique source for asp, php, Open Source, MySql, Access.

INFO 344 Web Tools And Development CK Wang University of Washington Spring 2014.

Engineering Projects In Community Service Matt Mooney Community Based Research University of Notre Dame.

Organizing Your Project Soumyajit Dutta. Create Project Folder 1.Create Project Document and Backup Folders Project Name Project DocumentsProject Backup.

Presented By Shrikant Ravindra Kamble MCA 3 rd year.

Basics Components of Web Design & Development Basics, Components, Design and Development.

CAESked Computer Aided Engineering Scheduler. Introduction Team Members: Chris Fruin & Jerry Grochowski What CAESked is: Web based class scheduling application.

Zac Fenigshtien  Introduction: 3 Tier Architecture  SQL Injection ◦ Parameter Sandboxing ◦ Blacklisting, Whitelisting.

Equipment and Help Call Management System (EHCMS) PresentedBy Kevin Hsu 3/13/2003.

Introduction The concept of a web framework originates from the basic idea that every web application obtains its foundations from a similar set of guidelines.

Web Marketing Project Eric DEBOURG Thomas CREVOISIER Joffrey TERRADE

Introduction to Dynamic Web Programming

Michael Liu, Andrew Chuba, Divya Sengar, James Wong, Alan Kai

Uplode Simple file storage CWEB Final Project

ELECTRONIC PROPOSAL SUBMISSION SYSTEM

Performance and User Experience Improvements to the ASU/NASA Space Grant Website

Website Development Basics with PHP MySQL

VT microaggressions.cs.vt.edu

PHP Overview PHP: Hypertext Preprocessor Server-Side Scripting

Database Driven Websites

…and web frameworks in general

Developed by: Hong Fan Jason Overbey Zack Sheffield Lynda Yang

Web Systems Development (CSC-215)

Login & administration page

Web Programming Language

…and web frameworks in general

Presentation transcript:

BOY SCOUT MEDICAL RECORD SYSTEM FOR BLUE RIDGE MOUNTAIN COUNCIL By John Kurlak, Pat Whelan, Zack Greer, and Mauricio De La Barra April 30, 2012CS 4624: Multimedia, Hypertext, and Information Access

Overview  Project motivation  Our solution  Problems we encountered  Lessons we learned  Demonstration

Project Motivation  Current system  Five forms  Lots of repeated information  On paper  Proposed system  One form  Automatic data propagation  Online  Automated backups  Digital photos

Preliminary Steps  Contacted client (Greg Harmon)  Architected solution  Mapped out database  Normalized database

Database Design  Tables  address  driverInformation  emergencyContact  employee  employerReportForm  firstAidLog  healthOfficer  incidentInformationEntry  incidentInformationReport  incidentLog  othersToIncident  patientCareReport  person  photo  scout  user  vehicleInformation  witnessesToIncident

Website Design/Solution  Drafted design in Photoshop  Coded everything up  Used HTML5, CSS, JavaScript (jQuery), Object-Oriented PHP, and MySQL  Wrote over 120 pages of code

Features  Features  Online injury forms Input validation Automatic data propagation Photo uploader  User account system Login Register Change Password Delete User Logout

Features (Continued)  Features  View Reports Downloadable Printable  Search Reports  Manual and automated data backups Compressed with gzip

Features (Continued)  Features  Offline form saving and delayed submission Used HTML5 application cache feature  Automatic output minification  Client- and server-side user input validation  Robust error handling  Secure phpass library (per-user, salted bcrypt password hashes) to combat rainbow tables and password crackers Prepared SQL queries to prevent SQL injections Sanitized output to prevent XSS attacks

Problems We Encountered  Learning curve regarding domain knowledge  Indecisiveness about architectural decisions  Application versus website  MySQL versus PostgreSQL  Tediousness of creating the database and normalizing it  Non-responsiveness of technical contact  Brokenness of HTML5 application cache technology

Lessons We Learned  It is good to obtain domain knowledge before starting work  Constant collaboration with a client is necessary  Drafting a plan with milestones and tasks is helpful for meeting deadlines  Writing modular code is extremely beneficial  Good documentation is mandatory

Demonstration  Website!

References  Images   ogo.gif ogo.gif  copy.jpg copy.jpg  curity_enterprise/ipad02.jpg curity_enterprise/ipad02.jpg  earch-icon.png earch-icon.png  PG PG