Browsing by Author "Perera, G. L. A. K. N"

Filter results by typing the first few letters
Now showing 1 - 3 of 3
  • Thumbnail Image
    PublicationEmbargo
    Cloud Native Efficient Solution for API Migration Across Environments For Agile Integration Enterprises
    (IEEE, 2019-12-05) Jayakody, A; Perera, A. K. A; Perera, G. L. A. K. N
    This paper describes an approach to minimize the effort and time in recreating Application programming interface artifacts and facilitate cross-collaboration and efficient migration across heterogeneous platforms environments without any significant post-migration changes and additional effort. The current software development evolution came up with the Agile concept of developing and delivering products in milestones based approach software development organizations are now maintaining separate environments for development, quality assurance, and production. These environments execute independently and have their deployments and own methods of traffic control. When moving Application programming interface artifacts from one environment to another, all the created APIs need to migrate across different environments to test the exact functionality and behavior of the application. Our motivation is to minimize the effort and time in recreating APIs and facilitate accurate and efficient migration across different environments without any significant post-migration changes and additional effort.
  • Thumbnail Image
    PublicationOpen Access
    Efficient API Migration across Environments
    (2017) Jayakody, A; Perera, A. K. A; Perera, G. L. A. K. N; Wijayaweera, V. P; Ali, M. A. M. A
    Development organization maintain separate environments for development, quality assurance and production etc. These environments execute independently and have their deployments, and own methods of traffics controlling that are handled locally. Under such a process Application programming interface (API) artifacts allowed to be created only at development environment, tested in QA (Quality Assurance) environment and then would promote to the production environment prior releasing to the market. When moving API management products from one environment to another, all the created APIs need to migrate across different environments to test the exact functionality and behavior of the application. Purpose of this implemented tool is to minimize the effort and time in recreating APIs and facilitate the accurate and efficient migration across different environments without any major post migration changes and additional effort. Most of the API managing products as well as API publishers engaging with API imports and exports of APIs will be the beneficiary parties of this product. Firm analysis of the current migration techniques uses by trending API Management products reveled major sieve point that needed to be address. Final tool will be an executable file which can be plug and play via the command line interface. This tool can be used by any REST (Representational state transfer) based API managing applications without major configuration changes. Other than import and export functionality, tool equipped with built-in authentication mechanism to ensure the security of the publisher proprietary of the APIs, API subscription and single cluster deployment via minikube and Google cloud
  • Thumbnail Image
    PublicationEmbargo
    Web-application Security Evaluation as a Service with Cloud Native Environment Support
    (IEEE, 2019-12-05) Jayakody, A; Perera, A. K. A; Perera, G. L. A. K. N
    This paper describes an approach automating the vulnerability scanning and security testing with the cloud-native solution, which provides a self-contained environment that spins up the scanners and configuration settings in a single click. With the advancement of technology, it's hard to say a web application is 100% secure from vulnerabilities and attacks from the outside world. So it is a must to confirm the security of the applications. If the sensitive data, it holds leaked to the hackers or intruders, it can even harm a whole nation. There are security scanning scanners and standards introduced by the security bodies. Web security testers are consuming a considerable amount of time to do the manual testing on web application security testing because of the configurations and the environments set up is a time-consuming work. This advanced research tool is capable of running a dynamic security scan and do a dependency check as a package to identify the security loopholes without any prior knowledge on security testing. This paper presents test results and evaluation results to prove the proposed concepts.