https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4143 2026-03-29T06:14:34Z https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4254 Title: Generate Navigations to Guide and Automate Endotracheal Intubation Process Authors: Wanigasekara, R.M.R.; Siyambalapitiya, S.D.M.H.; Dissanayake, S.D.S.H. Abstract: In the medical field, Endotracheal Intubation is an emergency procedure that’s performed on people who are unconscious or who cannot breathe on their own. The endotracheal tube which is put through the mouth or nose serves as an open passage through the upper airway. The purpose of Endotracheal Intubation is to permit air to pass freely to and from the lungs to ventilate the lungs. Many complications can occur in the Nasotracheal Intubation process such as bleeding, infections, damages to the voice box (larynx), thyroid gland, vocal cords and windpipe (trachea), or pharynx. To overcome the consequences, we propose a system to guide and automate endotracheal intubation by providing the physician with necessary navigations for moving the intubation tube. This study is a proof of concept to prove that generating navigations using a trained model based on Convolution Neural Network has practical potential. In the proposed system, different anatomical landmarks along the path from nose to carina are identified, captured images are preprocessed and use a Convolution Neural Network based on image classification to predict the class of each anatomical landmark. The proposed system has been trained using the training dataset of 9753 images, and the performance of the system was evaluated using the testing dataset of 2438 images. The results, obtained using the pre-trained model, show that the system correctly classified 2385 out of 2438 (97.8%). 2021-07-28T00:00:00Z https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4253 Title: Framework for Secure Coding :An algorithmic approach for real-time detection of secure coding guideline violations Authors: Dasanayake, S.L.; Mudalige, A.; Perera, M.L.T. Abstract: Secure Software Development refers to the process of developing software applications with minimised security vulnerabilities. In the release or maintenance phase of the Software Development Life Cycle(SDLC), fixing specific bugs is very expensive than correcting such issues during the coding or development phase. Therefore it is essential to minimise these software defects within the coding phase itself by adhering to a set of coding best practices that are referred as secure coding guidelines. Following of these guidelines has been a challenging and timeconsuming task due to the lack of knowledge among developers regarding such guidelines and the fact that currently there exists only a manual mechanism of checking these guidelines using a checklist. This dissertation proposes a plugin-based framework for IntelliJ IDEA Integrated Development Environment that focuses on developing a mechanism to automate the process of detecting secure coding guideline violations found in the source code of a software application. The framework is based on the secure coding guidelines introduced by Software Engineering Institute Computer Emergency Response Team (SEI CERT) known as the SEI CERT secure coding rules. These secure coding rules include guidelines for avoiding coding and implementation errors, as well as low-level design errors. In order to implement the secure coding rules, the rules were classified into three granularity levels namely Method, Class and Package level. A total of 15 secure coding rules, five from each granularity level have been implemented in this framework in the form of violation detection algorithms. The source code fragments associated with each violation detection algorithm are obtained via the Abstract Syntax Tree generated by the parser and are stored in data structures such as ArrayLists and HashMaps. Violation detection algorithms use these stored source code fragments to detect secure coding rule violations. A significant feature of this framework is the extensibility mechanism in which violation detection algorithms could be added with minimal effort during future development of the framework. Performance optimisation has also been achieved to minimise resource consumption and reduce latency, by improved system design with the support of software design patterns. Apart from detecting secure coding rule violations in the source code, the framework will also provide the necessary countermeasures to overcome those violations. In addition, the framework could be used as a teaching tool for users who are unaware of the secure coding rules due to its features such as tooltips, tools windows, syntax highlighting. Using this framework, a software developer would be able to adhere to secure coding rules and ensure the security aspect of a software application. The secure coding plugin-based framework has been deployed to the JetBrains plugin repository enabling to be downloaded by the required users. 2021-07-28T00:00:00Z https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4230 Title: Secure CodeCity A Framework For Security Vulnerability Visualization Authors: Abeysinghe, A.A.T.G.; Shalika, M.A.S.; Ahamed, M.S.N.; Mufarrij, S.M. Abstract: The conventional practice in the software industry towards the resolution of security issues, is to discover those issues during the testing phase of the Software Development Life Cycle and to implement software patches in order to conceal those issues.Such resolutions have resulted in an upsurge of effort and resources,while being unable to eliminate the root symptoms of the security issues. By obliterating the pitfalls of the above approach,an approach which provides a significant focus on integrating Security with each phase of the software development process has been emerged.This approach is named as Secure Software Development Approach, and is known to be leading to the development of more secure and reliable systems.On the other hand,the fundamental idea behind software visualization is to create visual interfaces in order to help developers in understanding different aspects of a source code.Software Visualization has currently become a major topic in the world of research where a large scale effort to find effective software visualization mechanisms, is undertaken by scientific community.Although Secure Software Development and Software Visualization are sturdy approaches inimitably, Secure Software Development does not incorporate intensive software visualization mechanisms such as metaphors in order to manifest the critical information of security issues in software.The purpose of this research is to bridge the aforementioned gap by introducing software visualization to software security. The research was commenced by analyzing the existing visualization models, for the visualization of security issues in a source code. It was discovered that the ‘CodeCity’ model can be well aligned with the purpose of security vulnerability visualization. Therefore ‘CodeCity’ was selected as the software visualization approach in visualizing security vulnerability information of a particular source code.The research was conducted based on OWASP security vulnerability categorization and related countermeasures. To embrace the aforementioned purpose, a novel framework named ‘Secure CodeCity’ was proposed. The resulting “Secure CodeCity” visualization focuses on providing a structural overview of the software system, while unveiling security vulnerability information in each levels of the software projects in an attractive and effective manner. This solution proposes several functionalities which will assist programmers in resolving software security issues while following the Secure Software Development approach. 2021-07-26T00:00:00Z