2.

3 System Review
By convergence of the world into a global village, entails various civil registration systems but
there is no one general prototype that can be applied to all types of Situation. We have several
management systems with varying degrees of functionalities depending on the user or customer
needs. Several systems has gone thousand miles has become so common for not only providing
certificates but also for population statistics. Due to the fast paced nature of the world today,
Civil department is considered as one of the first choice among several modes of registration to
save time due to increase in population. The first nationwide universal system of civil
registration was introduced in 1979 via the Births and Deaths Compulsory Registration Decree
39. This was further modified in 1992 by another decree. The modification gave the
responsibility for civil registration to the National Population
In this survey the researcher particularly focused on those web-based civil registration systems
offering online registration because such system are more and more entering everyday live
Furthermore, the researcher choose those approaches offering unique features with respect to
context-awareness and adaptation. Each of the five selected approaches is described in the
following in a separate sub-section according to the evaluation framework thus giving an overall
understanding of each approach.

2.3.1 Savanna civil registration system
Savanna civil registration System was evolved from its founding in Kerala in 1995 as a
technology implemented based on web-based platform that will allow registration of birth,
marriage and death statistics to the county population, it emerge as the leading inside resource
for improving the civil department work efficiently. At the time other countries were operating
manually buy doing registration using hard books. Kerala focused on online registration. The
system runs on server in which the hosting part is outsourced users uses browser specifically
internet explore 5.0 to send request from the front end.
Savanna civil registration software has been developed using the distributed systems technology
but these apps were lacking adaptability in the business process changes and reusability factor
was also too low.. The result of an assessment by the NPC showed that birth registration
coverage improved from about 18% for
2006 to 35% in 2007 (NPC, 2010). Some of the notable problems with the Savanna civil
registration system are the following among others:
The user interface for Savanna system the arrangements of menus and data fields are not
arranged properly in line which give users difficulty time during registration, Users interact with a
software application through its user interface. The main goal for interface design is to make it usable in
terms of ease of use, ease of learning, and resistance to error. The savanna Civil Registration
system not be capable of interacting some hardware and software interfaces it lacks buttons for
printing hence users can not print their certificates online. Customers are not able to share the
permissible data from the registration database in a predefined format and mechanism allow
users to input the data by themselves


Figure 2.1 Sevanna civil registration system



2.3.2 Durdans Civil registry system
The Durdan Civil Registration System (CRS) was established in 1968, where all persons alive and living in
Denmark were registered. Among many other variables, it includes individual information on personal
identification number, gender, date of birth, place of birth, place of residence, citizenship, continuously
updated information on vital status, and the identity of parents and spouses.
The system automates all core functions civil operation processes that take place within Denmark.
Durdan Civil Registration System many modules apart from the civil registration (birth, death and
marriage registration) it give an option in where individual data are permissible to be shared a long
other departments which makes it easier for the users to just create one profile and use the same
credentials to login different application on the intranet which lead to among persons born in Denmark
1960 or later the CRS contains complete information on maternal identity. Among persons born in
Denmark 1970 or later the CRS contains complete information on paternal identity. Among women born
in Denmark April 1935 or later the CRS contains complete information on all their children. Among
males born in Denmark April 1945 or later the CRS contains complete information on all their children.
The CRS contains complete information on: a) immigrations and emigrations from 1971 onwards, b)
permanent residence in a Danish municipality from 1971 onwards, c) permanent residence in a
municipality in Greenland from May 1972 onwards, and d) full address in Denmark from 1977 onwards.

Durdan Civil Registration System is designed on distributed database architecture in where the single
logical database whose parts are physical located in more than one each location is accessed through
the network it makes the large system successful since Queries and updates are largely local so the
there is no network bottleneck.

Navigation design elements such are keyboard shortcuts, menus links and other buttons all are
incorporated on the interface which give users to navigate on the interface easily and allow user to use
less time and effort needed for user to make navigation and action choices.
Durdan Civil Registration System is desktop application that runs on server where there database is
distributed with the network, the system forces users to fill the forms and submit them manually to the
nearest office where the details are keyed in the system. The system consume more time for users .

Figure 2.2 Durdans Civil registry system

2.3.3 Odisha E- Municipality
Odisha e-Governance Services Limited Bhubaneswar (OeSL) a SPV of OCAC, on behalf of Housing and
Urban Development Department, Government of Odisha plans for the implementation of an integrated
Municipal e-Governance application Software System in all ULBs of Government of Odisha along with
integration with the existing software applications. This project called Odisha e-Municipality Services has
been implemented in 103 ULBs in the state of Odisha. The 103 urban local bodies (ULBs) in Odisha,
categorized as Municipal corporations (3), Municipalities (34) and Notified Area Councils (66). They are
constituted by State Government.
The system automates all core functions of civil registration that take place in the country it is an
online system that can be acceded through the internet. Reduce time and cost for people to access
civil registration systems, It consist of birth registration within municipality or rural areas, the
death rate within the urban area or rural areas and also gives the overall population Odisha civil
registration system runs on sql server which enable multiple accesses of users, The interface of
the system is colorfully which attracts users and it has icon representation like printer icon which
shows printing the improves the understanding of users hence increase the efficiency of the
system, Problems displaying multilingual characters. The user is unable to enter some Unicode national
characters as input, or characters are corrupted during registration the codes should be made easy for
the users.

Figure 2.3 Odisha civil Registration system

2.4 System Critique
In this section, the researcher briefly summarizes the results of comparison by pointing out the
major issues of approaches surveyed by reporting on lessons learned
Sevanna civil registration system is a Multi-specialty system that consists of various modules.
These include: certificate search, state registration clock, online form submission official
verification, graphical representation and vital statistics, The system enable customers to submit
details and search for their certificates using end user application specifically internet explore
5.0 the system does not run on any other type of browser or different version which is a
limitation some users. Changamwe civil registration system will be developed in platform that
will run on all browsers in order to give user wide option to use browser of there choice. The
user interface for Savanna system the arrangements of menus and data fields are not arranged
properly in line which give users difficulty time during registration, After logging in to the Web
user interface, the whole navigation bar is expanded. Additionally, when clicking a given panel, the tabs
with panel names are not visible. This gives users difficult time since the interface should be user-
friendly so that it can be easy for users to learn Users interact with a software application through its
user interface hence changamwe civil registration will come up with user friendly user interface
Odisha E- Municipality its an online system that allows people to submit their details of birth
registration and death registration, during the submission of details on their forms you are
requested to type the code provided on the space provided in order to prove that the submission
is done by human being, the code does not appear well the characters cannot be seen nicely
hence gives users difficulty time for trying frequent times, changamwe civil registration will
provide clear characters that will enable user to pass the test quickly and submit the details on
time these will improve the efficiency of the system.
Durdans Civil registry system that consists of various modules like: birth registration, Death
registration and population analysis but the details are submitted on manual forms in which the
officers key the details in the system because the at the system is desktop application data cant be
accessed online changamwe civil registration will be online system in which individual create
their profiles and submit details and then print the certificate online. Web applications are
flexible. It can be accessed from any computer no matter where you are. This is due to the fact
that a web application only exists online. Furthermore, the above systems only manage data that
is within the changamwe sub-county manages existing records and also information about the
population




2.5 Summary
After analyzing existing system to see which of there feature were useful and how they could
be improved, there was also a small amount of research done into finding out what users of
existing systems felt would improve the service offered to them. From this research the
requirement for this project where drawn up.
It was decided when the website was produced for this project will allow users to sign up to the
site enabling them to update the details, check for certificates and will also enable the county to
use the population within the county for future planning.



















CHAPTER 3
METHODOLOGY/ ANALYSIS & DESIGN
3.1 Introduction
This chapter involves the analysis of the methodology technique put in use to aid in the creation
of the proposed system and the successful development and implementation of the system. The
methodology that will be used is Water fall method.
3.2 Development Approach

The methodology that will be used through out the development process will be a variation on
the waterfall life cycle. As the requirements for the project are unlikely to change dramatically
this methodology will fit the project. If the project looked like the requirements would be
changing often a more agile methodology would have been chosen. The waterfall lifecycle
works by following a strict path through the development process not moving on to the next
stage until the previous stage has been completed. The stages for this project will be:
The first stage of the project will involve researching into existing systems, user expectation and
then drawing up the requirements of the project.
Once we have the functional requirements have been decided upon the second stage will
involve research into the non-functional requirements of the project for instance security and
accessibility.
Once the functional and non-functional requirements have been decided upon and the
technologies to be used has been decided the system will be design. Once the design process
has been completed the implementation stage can begin, although there will be no formal test
driven development for this project when new features are added or code is edited the system
will be tested to ensure that no bugs have been introduced into the program. Once the
implementation has been completed the entire system will be thoroughly tested.

Figure 3.1 the waterfall model


3.2 REQUIREMENT SPECIFICATION

The following functional requirements were decided upon.
1. Allow registration of users
2. Allow someone to register to become a user.
3. The system will send out automated emails to validated users.
4. The user signup form should test that the form is filled in by a human and not a computer
program.
5. Allow admin/staff users to add:
certificates
Users
Assign staff for specific tasks
Task description
6. Allow admin/staff users to edit and delete:
Users details
Staff Job categories
7. The System will allow for semi automated emails, including:
Job update in the system

8. The system will allow registered users to search for their certificates availability by:
Date
Category
Certificate number

9. A registered user should be able to edit some of their information
Contact Details
Address
Telephone Number
Email address
Marital status
Password
10. The system will allow admin/staff users to make changes to certain settings
Including:
Database
Username
Password
Database Name
Style and Formatting, without having to edit any PHP or CSS code.
11. The system should be simple to use for every staff
3.2.1 Security
Programming for the Internet requires programmers to consider different security issues that
may not necessarily be a problem when programming for single machine programs. Problems
can occur when a perfectly innocent user types in some invalid content into a form on your
website or a malicious user of the site takes advantage of holes in your security to gain access
to sensitive data or delete/edit your database.

Good practice PHP programming involves checking all user input, including checking that a user
has not entered incorrect data. Programmers should test not only for invalid input, for instance a
user entering an invalid date, or a string when an int is required, but also that a user is not
entering malicious content into your form.

3.2.2 Structured Query Language (SQL) Injection
A malicious user of your site may attempt to replace your SQL query with their own by entering
their own SQL statements in to the form field on your website. This could allow the malicious
user to add, edit or delete data in your database when they should not be able to.
SQL queries are so insecure because most of the time they require a user to make a selection
or enter a string on a form to complete the SQL statement before it is used to query the
database. Most users will use a form or search facility on a website as they are intended to be
used. However a malicious user see web forms as an opportunity to attempt to create their own
SQL statements and use your program to query their SQL statements on your database,
instead of your intended SQL statement.

Preventing SQL Injection
The main way to protect a website again SQL injection attacks is to ensure that SQL statements
are constructed carefully when the variables are received from the users. This can be done by
removing any characters that can be used by malicious users to construct their own SQL
statement to be queried on your database. Implementing layers of abstraction between user
input and the SQL statement being queried on a database there are methods available in PHP
for assisting with this.

3.2.3 Cross Site Scripting (XSS)
For this method of hacking a hacker uses forms on your website to introduce malicious markup
or client side script (i.e. Java Script or VB Script) then relies on other users of the site activating
the code. A cross site can be used for session hijacking and stealing users account details.
There are two types of Cross Site Scripting (XSS). The first is remote site to Application site.
This type of attack is not initiated on your site but from a link on another website or in an email.
A user is convinced to fill in a form or follow a link which contains the malicious code. This code
now has its affect on the page the user is forwarded to. The second type of XSS attack is
application site to same or remote site. This method relies on what the malicious user enter into
a form on your website being displayed to other users of your site. The malicious user enters
the markup or script into a form and that information is subsequently displayed elsewhere. The
malicious user then waits for another user of the site to activate the script by following a link or
with extra coding even just hovering over a link.











Preventing XSS
The use of POST requests makes a site more secure from XSS attack than using GET
requests. So web site developers should use POST requests as much as possible to strengthen
their websites again XSS attacks. Another method of protecting against XSS attacks is to not
allow any HTML markup to be entered into forms on a website unless it is absolutely necessary.
Any HTML markup can simply be removed by the program processing the incoming data. If
HTML input is required then rather than allowing all tags to be used filter, input and remove
certain tags, for instance:
<applet>
<embed>
<script>
<object>
Scripts should also remove attributes from the tags as these can contain Java Script.Programs
should allow filter and URLs that are inputted. Normal procedure for many web applications is to
remove any GET variables from the end of the URL.
3.3 LOGICAL DESIGN