Survey Analysis

How often do you access university websites?

If you answer "Never" please skip the survey else continue  Always

 Sometimes  Never

The main objective of this question was to know how often lecturers access university websites. From this developer will get an idea about how frequently the current system (university websites) are been accessed by the users. Before developing the system for university developer need to know about the usage of the current system by the users.

Most of the lecturers always access university website but few of them working as part time lecturers access these website sometimes.

From the above graph and table developer concluded that most of the lectures always use university websites to login into their accounts. But part time university lecturers some time access university website as they are not required to mark attendance or check schedule regularly. So the system that developer will design might be implemented into the university websites which will be used regularly by the university lectures and other staff members.

Question1 No. of response Percentage Always 31 91% Sometimes 3 9% Never 0 0%

Result Chart Question 2

Actual user response Objective

What is the main purpose for using university website?

The main objective for this question was to know the purpose of using university websites by the lecturers. From this developer will get an idea about usability and functionality of current system .

Maximum number of lecturers frequently uses the university websites for web mail, web attendance and schedules as compared to library and web results.

Number of users

Number of users Number of users

Question-2 Frequently used Seldom Never Webmail 20 11 2 Web attendance 30 0 2 Web results 6 16 11 Library 11 11 11 Schedules 30 2 1 Conclusion

From the analysis above developer concluded that maximum lecturer use web space intranet for web-attendance and for checking time schedules. There are some services like web results and library which users do not prefer to use much as compared to other. The analysis above also shows about the usability of the system on regular basis.

Conclusion of analysis Result Chart & table Question 3

Objective

What are the major issues you face while login into university website  GUI problem (Hard to understand the interface of the system)

 Security (Sometimes you forget your password or accounts get compromised)  Performance (Delay in time while logging in)

 Others please specify

The main objective of this question was to know about issue faced by the lecturers while using university website. From this question developer will get an idea about the issues faced by users so that developer should design such a system which can minimize the issues related to current system

People may select more than one checkbox, so percentages may add up to more than 100%

From the analysis developer concluded that, the system interface should be user friendly so that users can easily access the information. There is an ardent need to implement the system that can minimize the issues regarding university websites. Implementing fingerprint web authentication system will help in minimize the security and performance issues faced by the users. Using this system it will also effect in increase in performance in the current system. The graphical user interface for the system will be designed in a very user friendly layout so that users can easily get access to their information.

Question4 No. of response Percentage GUI 12 35% Security 26 76% Performance 26 76% Others 3 9%

While using university websites maximum users face issue regarding security (either they forget their passwords or their accounts get compromised) and performance (delay in time). Some lecturer faces GUI problems while using current system as it is hard to understand the interface of the system.

Conclusion of analysis Result Chart & table Question 4

Actual user response Objective

Logging into university websites using only username and passwords, do you think it is secure as username and passwords can be easily acquired / hacked

o Agree with the above statement o Disagree with the above statement

The main objective of the question was to know what users think about login security in current system. The current system only uses username and passwords to login into their accounts. From this developer will get an idea about what users think about current system as it is secure or not to login into their accounts.

Maximum number of users disagrees with the statement as they think that it is not secure to login into the accounts using only username and passwords as they can be easily acquired.

From the above analysis developer concluded that most of the users are not satisfied by the current system login functionality as it only uses username and password the users thinks that level of authentication while logging is not strong. So, yes there is a need of a system which should be highly secure. The security can be implemented to the university website by using fingerprint web authentication system which will increase the level of authentication for the user using university websites for logging into their accounts.

Question4 No. of response

Percentage

Agree 13 38%

Disagree 21 62%

Logging into university websites using only username and passwords, do you think it is secure as username and passwords can be easily acquired / hacked

Disagree (21)

Conclusion of analysis Result Chart & table Question 5

Actual user response Objective

Do you think implementing biometric technology on university websites will increase security?

 Yes  May be  No

The main objective of this question was to understand what user thinks about implementing the biometric technology for increase in security to university websites

Most of users think that implementing biometric technology will help in increase in security of the university websites. As now these days information security is becoming an issue.

Do you think implementing biometric technology on university websites will increase security? Question4 No. of response Percentage Yes 24 71% May be 10 29% No 0 0%

From the analysis developer concluded implementing biometric technology will help in increase in security. And more even using fingerprint technology also helps the users to have fast and accurate access to the system.

Conclusion of analysis Question 6

Actual user response Objective

What type of functionality do you think will be best for increase in security?  Using username and fingerprint

 Using only fingerprint

 Using username , security question and fingerprint

Before developing the system the developer should know about which level of security should be implemented for login into the current system. From this question developer will also understand about what are the user’s requirements for login into the current system.

There was not much variation between the user’s response options but as most of the user suggested to implement the username, fingerprint and security question for login functionality of the system. Question6 No. of response Percentage Username & finger print 13 38% Only Fingerprint 11 32% Username , fingerprint & security question 10 29%

What type of functionality do you think will be best for increase in security?

From the above analysis developer concluded that for login into the current system username and fingerprint will be much better as it will easy to use and users need not spend much time

Conclusion of analysis Result Chart & table Question 7

Actual user response Objective

"The system will authenticate the university lecturers or staff members using their fingerprint to login into their university website accounts."

 Yes  May be  No

Do you require training for using this system?

The main objective of the question was to know about the requirement for the new system for the users. From this question developer will able to know whether the users need some sort of training or user manual for the new system or not.

Not much variation was found in user’s response as most of the users require training for the usage of new system.

Question4 No. of response Percentage Yes 10 29% May be 9 26% No 12 35%

"The system will authenticate the university lecturers or staff members using their fingerprint to login into their university website accounts."

Do you require training or user manual for using this system?

According to the analysis of users response developer decided to design a user manual for the new system. If further assistance is required by the users then developer might conduct training program for the users.

Conclusion of analysis Question 8

Actual user response Objective

Conclusion from survey

From the survey analysis developer concluded that the maximum number of users are familiar with biometric technology. The usage of the current system is very high and users always use the system, so the proposed system might be implemented to the current system which will provide them better security. The proposed system will also minimize the performance and security issues faced by the users. As the target users are university lecturers and staff members, training and user manual will be provided for the new system.

From this question developer will be able to know about the other technologies used for increase in website security and will also be able to compare the security potential among the other technologies with the fingerprint web authentication system

Please suggest any other technology or system except biometrics to increase in security for websites

The level of authentication is very good. TAC Number (like the ones used by banks),

Questions that only the user know the answer, Security Devices that generate a security number (used by HSBC), digital signatures, third party verification

You can also have an add-on for the passwords to login into the websites.

The cost/benefit ratio and need for deployment of fingerprint readers for login needs to be considered very carefully.

Alternatives approaches can be explored such as one-time pin via SMS for really critical applications may be a simpler option. Image-based password, one-time password

From the users response and comments developer concluded that the level of authentication used in the system is good and to increase the security potential the secondary login can have the virtual keyboard or SMS pin sending technique which is widely used in most of the banking websites.

7.1 Interview 7.1.1 Introduction

The interview was successfully conducted with project manager of CTI Group Malaysia. The interview was conducted on 19th April 2011 at 10:00 AM. The developer had pre planned the interview session with the project manager. The interview was recorded for the documentation purpose and developer had designed questions for the interview. The interviewee had tremendous experience for more than 14 years in Information in IT industry and also had done some of the project related to biometric technology. The developer chose the project manager for CTI Group because the current system running in the university was developed by the CTI group and interviewee was the project manager for the system that has been implemented in the university. So much information can be gathered regarding the current system which will be helpful for the developer to analyse the current system.

7.1.2 Objective

The main objective to conduct the interview was to gather detailed information about the current system. From the interview developer will able to know about which programming language and methodology should be suitable for the development of biometric fingerprint system. The interview was conducted focusing on technical aspects of the current and proposed system.

Question 2 Interviewer response Question 3 Interviewer response Question 1 Interviewer response 7.1.3 Interview Analysis

The conversation before recording is mentioned in Appendix C

Kindly Specify your

Job Title and work experience

The interviewer is currently working as Project Manager in CTI group. The interviewer has more than 14 years of experience in IT related projects. The interviewer also worked in overseas related to the information security systems.

Have you worked on any project related to websites like web-space or intranet APIIT

Yes, currently we are working on new version of web-space with better GUI and using https for increase in security. It will be very soon used by APIIT University; even we have developed a training program for the lecturers and university staff members regarding new web-space

Yes, currently also we are working on a new version of web-space with better GUI and using https for increase in security. It will soon be used by APIIT University; even we have developed a training program for the lecturers and university staff members regarding new web-space

As my system is based on fingerprint web authentication system, do you think that this system will enhance security and performance as compared to other technologies?

Yes, it can be a further step taken forward towards the security, as it can avoid the sniffer

Interviewee Response

Interviewee Response

63 Question 4 Interviewee response Question 5 Interviewee response Question 6 Interviewer response

Is there any other technology that can be used as solution for current problems in the current system?

Yes, we can implement the SMS gateway that can send SMS to the lectures every time they need to login into their accounts. But as this technology will be very expensive, we cannot think to implement such a system for the university websites.

Have you done any projects based on biometric technology used by websites?

No, I did not use biometric technology on websites but Yes, I did work on biometric projects. The project was designed for the government of Iraq which was regarding voting system. As a part of team member we need to develop the system using C and C++ languages as by that time C# was not used widely and was also having some bugs.

As your system was based on biometric fingerprint technology, can that system be implemented as online voting system?

Yes, but they need to design the entire system again for E-Voting systems. The database can remain the same as the user for E-voting system will be same.

Question 7

Interviewee response

Question 8

Interviewee response

Which programming language should be used for the designing the biometric web based system?

Selecting a programming language does not matter a lot because the functionality of the system will remain the same. As you are working on web based technology I would prefer using dot net language like Asp.net for the web designing. You can use MS SQL database for the designing the database. Using .net programming also limits you to Microsoft windows based but if you are using java language it can work on any platform. But using Asp.net is still better as java language it is more difficult to design the web based system as compared to Asp.net.

As my system will using biometric finger print technology, which type of database should be used for the web based biometric system

Selecting a database for the system also depends upon the device like if you scan the fingerprint, it will convert it into the image format. You need to check the compatibility of the biometric fingerprint device. I would prefer using MS-SQL because as your system is web based MS-SQL provides much functionality as compared to MS-Access. You can also use MS-Access but the functionality will be limited to the system.

Question 9

Interviewee response

Conclusion for interview

Which methodology do you follow in the IT projects?

“I would suggest you to use waterfall methodology for your system because using this methodology the process in the project will be well organized without finishing the first step you cannot move to the next step. E.g: Our team was assigned to the develop a system for accounts for APIIT but before the clients requirements were defined we started the project , as the clients requirements does not match , we need to go back and start the project again which causes wastage of time , money and resources. Using waterfall methodology we process the project in a well-organized or structured manner.

Most of IT project use CMMI level 3 or level 5, this requires lots of documentations which also include 41 pages of forms. It takes lots of time and resources to start and project using CMMI, as per my experience each and every project by the end comes to the waterfall methodology as they need to think again in the well-structured way to complete the project within the given time frame.”

The interview was successfully conducted with the project manager of CTI Group. As per the expert views and advice regarding my system the developer will choose ASP.Net as a programming language for developing the system because as this system is web based and using this programming language it will be better to develop the system and also provides much functionality as compared to other programming languages. The developer will use MS-SQL database for the system as it is also compatible with the hardware biometric device and using this database will be much better as compared to MS-Access. For the project, developer will choose waterfall methodology as this methodology also is well structured in each and every stage and before completing previous stage the process cannot move further.

Overall Conclusion for primary research

As per the primary research developer had great experience in questionnaires and survey. Developer had the opportunity to learn more about the biometrics and is now clear with the requirements of the system. As part of interview, developer decided to work on biometrics live fingerprint device for the project. Developer will have a clear idea about the programming language used, storing data in the database and fetching information from the biometric devices. Developer needs to work on the software development kit (SDK) that comes with the devices itself. The SDK will help the developer in development and functionality of the system. From the survey developer concluded that there is less security provide in the current system and some of the users sometimes face problems in the current system. For implementing the new system the developer will look forwards towards the performance of the system. For further assistance of the users developer might provide a user manual for the proposed system.

8 Design

8.0 Design Principles

Visibility:

The design should consist of all system functionality and tasks available. The design should be visible to users without distracting them with unnecessary information. Good design should not provide users with many different alternatives neither confuse them with the given functionality. The visibility of the design is possible when you know how to operate the system or device. The visibility of the design shows the inner and outer functionality of the working system. The functions should be clear and should also able to differentiate between other functions available in the system. The visibility depends upon the human behavior like on a video or a web it is easy to achieve visibility.

Feedback:

The design should able to keep users up-to-date about the actions and explanation, design should