Social networking using web services

Chakravaram, Vijay

January 1900

Master of Science / Department of Computing and Information Sciences / Daniel Andresen / Web services have expanded to become popular in application development. Web services technology represents an important way of communication between different applications across different platforms. Unlike traditional client/server models, such as a Web application or Web page system, Web services do not provide the user with a GUI. Instead, Web services share business logic, functionality and data through a programmatic interface across a network. Web services are services or functionalities that are exposed to the internet and serves as online or web APIs. These services which are online APIs can be called from your code and use the results in your applications to offer specific functionality to users. This project consists of two applications the client and the server application. The server application is an online REST API (Web Services developed using REpresentational State Transfer (REST) protocol) which provides all the functionalities as a service across the network that are required to develop a social networking web application. The client application is similar to any other social networking web application where you can create a profile, delete profile, send messages to your friends, post things, like and comment a post. This applications sends request to the server application using HTTP requests and get the responses. These responses are then consumed in the application to provide the required functionalities to the end user.

Web Services

Hibernate

Java

JSP

Social Networking

RESTful API

Inter-patient electrocardiogram heartbeat classification with 2-D convolutional neural network

Ye, Kun

25 January 2021

Advanced computer technologies can transform the traditional electrocardiogram (ECG) monitoring system for better efficiency and accuracy. ECG records a heart's electrical activity using electrodes placed on the skin, and it has become an essential tool for arrhythmia detection. The complexity comes from the variety of patients' heartbeats and massive amounts of information for humans to process correctly. The first part of the thesis presents an image based two-dimensional convolution neural network (CNN) to classify the arrhythmia heartbeats with inter-patient paradigm. It includes a new data pre-processing method. The inter-patient paradigm simulates the practical use case of an ECG heartbeat classifier. Compared to the reported work in the literature, the proposed solution achieves superior experiment results. The rest of the thesis introduces the remote ECG monitoring system. The RESTful API design concepts of the system are described. The proposed API supports an efficient and secure way of interaction between each module in this remote monitoring system. / Graduate

ECG

arrhythmia

inter-patient paradigm

RESTful API design

Automatisering av aktiv lyssnare processen inom examensarbetesseminarium : En utökning av lärplattformen Canvas / Automation of the active listner process in a degree project seminar : An extension of the Canvas learning management system

Kuvaja Rabhi, Karim

January 2019

I dagsläget när studenter från Kungliga Tekniska Högskolan (KTH) ska genomföra en examensarbetspresentation ska det finnas aktiva lyssnare på plats. Aktiva lyssnare är andra studenter som också utför examensarbeten och som lyssnar på presentationen och ställer frågor. Detta är ett obligatoriskt moment som alla studenter genomför under sina examensarbeten. Problemet med detta moment är att det inte genomförs på ett smidigt sätt, för att få sitt deltagande godkänt får man en underskrift på ett papper av examinatorn på plats som bevis på delaktighet. Skulle detta papper tappas bort finns inga bevis på delaktighet. I detta examensarbete ska närvaroprocessen göras smidigare, både för studenter och för examinatorer, med hjälp av digitalisering. Som student ska det vara enkelt att ställa frågor till presentatören, dessa frågor kommer vara en del av grunden för närvarokontrollen. För examinatorer ska närvarokontrollen av aktiv lyssnare deltagandet förenklas. Med hjälp av lärplattformen Canvas, som KTH använder sig av, ska det bli lättare för examinatorer att ta närvaro på studenter. Studenter ska med hjälp av en gruppfunktion i Canvas kunna välja vilken presentation de vill delta i genom att gå med i en grupp som representerar en vald presentationen. Canvas har också en diskussionsfunktion som gör det möjligt för aktiva lyssnare att ställa sina frågor om presentationen, frågorna kommer sedan vara ett underlägg för närvaro och deltagande under presentationen. Canvas kan med sitt applikationsprogrammeringsgränssnitt användas med programmeringsspråket Ruby, vilket är tänkta ska användas, för att digitalisera och förenkla aktiv lyssnare processen. Detta projekt har tagit fram en process som endast använder Canvas för bevis på närvaro och delaktighet som aktiv lyssnare under en presentation. Som aktiv lyssnare behöver man endast gå med i en grupp som representerar en presentation och publicera en fråga i en diskussionstråd i gruppen för att få delmomentet godkänt. Med denna process behöver varken studenter eller examinatorer hantera osmidigt pappersarbete. Resultatet är fullt fungerande och har testats på en fiktiv Canvasdomän och skulle i teorin kunna användas på KTH. / In today’s degree project presentations at the Royal Institute of Technology (KTH), there must be active listeners on site. Active listeners are other students who are also doing degree projects. They listen to the presentation and ask questions to the presenter. This is a mandatory assignment for every degree project student. The problem with this assignment is that the process of getting once attendance approved is implemented in an old-fashioned way, a signature from the examiner on site on a piece of paper is the only proof of participation. If the piece of paper is lost a student has no proof of participation. In this thesis the attendance process for active listeners will be improved both for students and examiners with the help of digitalization. As a student it should be easy to ask your questions to the presenter, these questions will then be a part of the attendance. As an examiner the attendance and active listening participation will be made easier to document and record. With the help of the learning management system Canvas, which KTH uses, attendance control for examiners will be made easier. Students will with the help of a group function in Canvas be able to choose which presentation they want to attend to by joining a group which represents a chosen presentation. With the help of a discussion function in Canvas, active listeners will post their questions to the presenter, the questions will then be used as a proof of attendance and participation during the presentation. With its application programming interface, Canvas can be used with the programming language Ruby, which is intended to be used to digitalize and simplify the active listening process. This project has developed a process that only uses Canvas for proof of presence and participation as an active listener. As an active listener, you only need to join a group representing a presentation and post a question in a discussion thread in said group to pass the assignment. With this process neither students nor examiners need to handle clumsy paperwork. The results are fully functional and have been tested against a custom Canvas domain and could in theory be used at KTH.

Canvas RESTful API

Ruby

automatization

digitalization

active listener

Canvas RESTful API

Ruby

automatisering

digitalisering

aktiv lyssnare

Communication Systems

Kommunikationssystem

Server-side design and implementation of a web-based streaming platform / Design och implementation av serversidan för en webbaserad streamingplattform

Rosenqvist, Fredrik

January 2015

Over the past 10 years online video streaming has seen a tremendous increase in popularity, as it has become a great source of both entertainment and education. This increase in popularity has led to demands for higher quality streams, shorter buffering time and service adaptivity, based on the user’s personal prerequisites. These demands together with a constant increase in Internet usage have posed several challenges for streaming service providers to overcome. Within this master thesis an exploratory research and development project has been conducted. The project’s purpose has been to investigate common approaches, standards and trends related to establishing a multimedia streaming service. Based on the results from these investigations, the purpose has furthermore been to design and implement a proof-of-concept streaming server fulfilling the thesis internship company’s needs and requirements. Research has concluded that there are at least five vital components, which have to be carefully considered in order to establish a successful streaming service. These vital components are; the service system structure, the service application programming interface (API), the service hosting solution, the service data storage solution and finally the actual streaming module. Based on results from conducted investigations of common design approaches for each vital component, decisions for the thesis project implementation have been made. The resulting system has been built using the event-based system structure framework Node.js. A representational state transfer (REST) API has furthermore been implemented for managing client request routing. The resulting system has been implemented on a self-hosted server solution even though this is neither a preferred choice in theory nor common practice. The decision has however been made due to future plans at the thesis internship company of investing in a corporate-wide cloud-based server solution. For the service data storage solution the relation-based database management system MySQL has been implemented. For the final recognized vital component, the streaming module, support for HTTP-based multimedia streams has been implemented. This choice of technique has been made due to the many benefits brought on by using HTTP, such as cost efficiency and bandwidth optimization. The use of HTTP is also currently a trending choice of technique Thesis for Master’s Degree at HIT and LiU within the streaming community due to the recently published standard MPEG-DASH.

Streaming

HTTP-based streaming

MPEG-DASH

NodeJS

RESTful API

Computer Engineering

Datorteknik

An Intelligent Flood Risk Assessment System using Belief Rule Base

Hridoy, Md Rafiul Sabbir

January 2017

Natural disasters disrupt our daily life and cause many sufferings. Among the various natural disasters, flood is one of the most catastrophic. Assessing flood risk helps to take necessary precautions and can save human lives. The assessment of risk involves various factors which can not be measured with hundred percent certainty. Therefore, the present methods of flood risk assessment can not assess the risk of flooding accurately.  This research rigorously investigates various types of uncertainties associated with the flood risk factors. In addition, a comprehensive study of the present flood risk assessment approaches has been conducted. Belief Rule Base expert systems are widely used to handle various of types of uncertainties. Therefore, this research considers BRBES’s approach to develop an expert system to assess the risk of flooding. In addition, to facilitate the learning procedures of BRBES, an optimal learning algorithm has been proposed. The developed BRBES has been applied taking real world case study area, located at Cox’s Bazar, Bangladesh. The training data has been collected from the case study area to obtain the trained BRB and to develop the optimal learning model. The BRBES can generate different "What-If" scenarios which enables the analysis of flood risk of an area from various perspectives which makes the system robust and sustainable. This system is said to be intelligent as it has knowledge base, inference engine as well as the learning capability.

Belief Rule Base

flood risk assessment

uncertainty

expert systems

optimization

RESTful API

Computer Systems

Datorsystem

Interconnection of Two Different Payment Systems / Sammankoppling av två olika betalningssystem

Ammouri, Kevin, Cho, Kangyoun

January 2019

Mobile money, a means of transferring payments via mobile devices, has become increasingly popular. The demand for convenient financial products or services is a crucial factor in why innovative developers want to incorporate mobile money into existing financial products/services. The goal is to provide convenient financial services that enable customers to quickly send and receive money between two mobile payment platforms. The Swedish blockchain company, Centiglobe, is searching for a system whereby payments can be made conveniently between two mobile payment platforms, specifically Alipay and M PESA. This thesis sought to develop such a system by utilizing the application programming interfaces (APIs) (provided by Alipay and M PESA) coupled with Centiglobe’s blockchain to facilitate payments between an Alipay user and an M PESA user. Solving this problem began with an initial literature study of previous work related to this topic and reading the extensive API documentation provided by Alipay and Daraja Safaricom (the developers of M PESA). Next, a flowchart was created and used as a guide throughout the development of the system. Testing the system entailed integration testing. The performance of the system was determined by measuring the execution time to make a cross system payment. A one-way transfer system was developed, as Alipay users can make a payment to M PESA users but not the reverse. The results of the integration testing shows that the system is a feasible solution. The execution time of a payment shows that it is relatively quick (~9.1 seconds); thus the performance is adequate.The conclusion is that this system is a viable solution for incorporating Alipay and M PESA as mobile payment services. Moreover, the system partially facilitates person-to-person payments between them – subject to the limitations of the Alipay API. In addition, this system provides a foundation for other inter-platform mobile payment solutions. / Mobila pengar, ett sätt att överföra betalningar via mobila enheter, har blivit alltmer populära. Efterfrågan på praktiska finansiella produkter eller tjänster är en avgörande faktor för varför innovativa utvecklare vill integrera mobila pengar i befintliga finansiella produkter / tjänster. Målet är att tillhandahålla praktiska finansiella tjänster som gör det möjligt för kunder att snabbt skicka och ta emot pengar mellan två mobila betalningsplattformar. Det svenska blockchainföretaget Centiglobe söker ett system där betalningar kan göras bekvämt mellan två mobila betalningsplattofrmar, särskilt Alipay och M-PESA. Denna avhandling försökte utveckla ett sådant system genom att använda applikationspogrammerinsgränssnitt (API) (tillhandahållet av Alipay och M-PESA) i kombination med Centiglobe’s blockchain för att underlätta betalningar mellan en Alipay-användare och en M-PESA-användare. Lösningen av detta problem började med en första litteraturstudie av tidigare arbeten relaterat till detta ämne samt en omfattande läsning av API-dokmentationen från Alipay och Daraja Safaricom (utvecklarna av M-PESA). Därefter skapades ett flödesschema och detta användes som en guide under hela utvecklingen av systemet. Testning av systemet medförde integrationstestning. Systemets prestanda bestämdes genom att mäta exekveringstiden för att göra ett tvärsystemsbetalning. Ett envägsöverföringssystem utvecklades, eftersom Alipay-användare kan göra en betalning till M-PESA-användare men inte tvärtom. Resultaten av integrationstestningen visar att systemet är en genomförbar lösning. Utbetalningstiden för en betalning visar att den är relativt snabb (~9.1 sekunder); därav en lagom prestanda. Slutsatsen är att detta system är en lönsam lösning för att integrera Alipay och M-PESA som mobila betalningstjänster. Dessutom underlättar systemet delvis personliga betalningar mellan dem – med förbehåll för begräsningarna i Alipay API. Dessutom erbjuder detta system en grund för andra mobila betalningslösningar mellan plattformarna.

Alipay

M PESA

API

Integration

Blockchain

Alipay

M PESA

RESTful API

Integration

Blockchain

Communication Systems

Kommunikationssystem

Building a semantic RESTFul API for achieving interoperability between a pharmacist and a doctor using JENA and FUSEKI

Sigwele, Tshiamo, Naveed, A., Hu, Yim Fun, Ali, M., Hou, Jiachen, Susanto, Misfa, Fitriawan, H.

05 January 2020

Yes / Interoperability within different healthcare systems (clinics/hospitals/pharmacies) remains an issue of further research due to a barrier in sharing of the patient’s Electronic Health Record (EHR) information. To solve this problem, cross healthcare system collaboration is required. This paper proposes an interoperability framework that enables a pharmacist to access an electronic version of the patient’s prescription from the doctor using a RESTFul API with ease. Semantic technology standards like Web Ontology Language (OWL), RDF (Resource Description Framework) and SPARQL (SPARQL Protocol and RDF Query Language) were used to implement the framework using JENA semantic framework tool to demonstrate how interoperability is achieved between a pharmacy and a clinic JENA was used to generate the ontology models for the pharmacy called pharmacy.rdf and clinic called clinic.rdf. The two models contain all the information from the two isolated systems. The JENA reasoner was used to merge the two ontology models into a single model.rdf file for easy querying with SPARQL. The model.rdf file was uploaded into a triple store database created using FUSEKI server. SPARQL Endpoint generated from FUSEKI was used to query the triple store database using a RESTFul API. The system was able to query the triple store database and output the results containing the prescription name and its details in JSON and XML formats which can be read by both machines and humans. / Supported by a Institutional Links grant, ID 261865161, under the Newton-Ristekdikti Fund partnership. The grant is funded by the UK Department for Business, Energy and Industrial Strategy and Indonesia Ministry of Research, Technology and Higher Education and delivered by the British Council.

Interoperability

Healthcare systems

Cross healthcare system collaboration

RESTFul API

Semantic technology

Návrh laboratorních úloh v oblasti programovatelnosti sítí / Design of laboratory exercises in the field of network programmability

Dubovyi, Dmytro

January 2020

The aim of the graduation thesis is to evaluate the current development in the field of SDN and the possibility of programmability of SDN elements using the application programming interface. The first theoretical chapter describes the following: the basic architecture of SDN, the traffic within SDN between its individual layers, the communication protocols Southbound interface and Northbound interface. The second chapter of the thesis deals with the programmability of SDN elements with the help of API. The third theoretical chapter describes the current development in the field of SDN. The practical part of the thesis is devoted to creation of two laboratory tasks dealing with the programming of the SDN API. Laboratory tasks include BIG-IP programming from F5 Network and routers from Arista Network. Programming is done using Python via REST API for BIG-IP, or eAPI for Arista EOS. The Ansible setup tool is also used for the same purpose.

Evaluating GraphQL over REST within an .NET Web API : A controlled experiment conducted by integrating with the Swedish Companies Registration Office

Marjanovic, Rickard

January 2022

It is only a matter of time before the Swedish Companies Registration Office makes digital registration of annual reports/auditors reports mandatory. At the time of writing, there are only ten public integrators currently able to handle this requirement. In collaboration with one of the big four accounting firms, this project aims to evaluate performance of the response time while using GraphQL versus REST in Web APIs. The application under test is a .NET application integrating to the Swedish Companies Registration Office API. Through a controlled experiment using two different GraphQL frameworks, HotChocolate and GraphQL for .NET, this thesis provides a knowledge base for the partnered accounting firm, developers and other stakeholders that are evaluating the use of GraphQL in their future applications. Results  from the experiment indicate that HotChocolate in its current version is not only faster than its competitor GraphQL for .NET, but also faster than REST. This is surprising, given that other related work seems to suggest that this is not always the case. Testing of GraphQL for .NET gives a more traditional result when compared to other related work. Given the results, a senior developer of HotChocolate was contacted to gain insight to why the framework outperforms not only GraphQL for .NET but also REST. The senior developer states that a large amount of effort has been put in to make the GraphQL execution engine more optimized, something that is corroborated by this thesis experiment. HotChocolate is also periodically measuring and comparing performance benchmarks to other libraries to conclude on its performance in different scenarios. The analysis of the experiment concluded that there exists another important variable previously not identified in other research, more precisely the chosen framework, that has a large impact on performance and can impact both memory allocation and response time.

Swedish Companies Registration Office

Controlled Experiment

Clean Architecture

RESTful API

GraphQL

HotChocolate

GraphQL for .NET.

Engineering and Technology

Teknik och teknologier

Functional and Security Testing of a Mobile Client-Server Application / Funktionell och säkerhetstestning av en mobilapplikation bestående av en klient- och serversida

Holmberg, Daniel, Nyberg, Victor

January 2018

Today’s massive usage of smartphones has put a high demand on all application developers in the matter of security. For us to be able to keep using all existing and new applications, a process that removes significant security vulnerabilities is essential. To remove these vulnerabilities, the applications have to be tested. In this thesis, we identify six methods for functional and security testing of client-server applications running Android and Python Flask. Regarding functional testing, we implement Espresso testing and RESTful API testing. In regards to the security testing of the system, we do not only implement fuzz testing, sniffing, reverse engineering and SQL injection testing on a system developed by a student group in a parallel project, but also discover a significant security vulnerability that directly affects the integrity and reliability of this system. Out of the six identified testing techniques, reverse engineering exposed the vulnerability. In conjunction with this, we verified that the system’s functionality works as it is supposed to.

Security

Android

Mobile application

Python

Flask

Server

Software testing

Functional testing

Reverse engineering

Fuzz testing

Monkey testing

RESTful API testing

Sniffing

SQL injection

Confidentiality

Integrity

Availability

Reliability

Espresso

Postman

Wireshark

dex2jar

Apktool

JD-GUI

Computer and Information Sciences

Data- och informationsvetenskap