American Journal of Information Systems
ISSN (Print): 2374-1953 ISSN (Online): 2374-1988 Website: Editor-in-chief: Sergii Kavun
Open Access
Journal Browser
American Journal of Information Systems. 2013, 1(1), 9-20
DOI: 10.12691/ajis-1-1-2
Open AccessArticle

Analyse the Risks of Ad Hoc Programming in Web Development and Develop a Metrics of Appropriate Tools

Manish Gubhaju1, and Ali Al-Sherbaz1

1The University of Northampton, Northampton, United Kingdom

Pub. Date: November 14, 2013

Cite this paper:
Manish Gubhaju and Ali Al-Sherbaz. Analyse the Risks of Ad Hoc Programming in Web Development and Develop a Metrics of Appropriate Tools. American Journal of Information Systems. 2013; 1(1):9-20. doi: 10.12691/ajis-1-1-2


Today the World Wide Web has become one of the most powerful tools for business promotion and social networking. As the use of websites and web applications to promote the businesses has increased drastically over the past few years, the complexity of managing them and protecting them from security threats has become a complicated task for the organizations. On the other hand, most of the web projects are at risk and less secure due to lack of quality programming. Although there are plenty of frameworks available for free in the market to improve the quality of programming, most of the programmers use ad hoc programming rather than using frameworks which could save their time and repeated work. The research identifies the different frameworks in PHP and .NET programming, and evaluates their benefits and drawbacks in the web application development. The research aims to help web development companies to minimize the risks involved in developing large web projects and develop a metrics of appropriate frameworks to be used for the specific projects. The study examined the way web applications were developed in different software companies and the advantages of using frameworks while developing them. The findings of the results show that it was not only the experience of developers that motivated them to use frameworks. The major conclusions and recommendations drawn from this research were that the main reasons behind web developers avoiding frameworks are that they are difficult to learn and implement. Also, the motivations factors for programmers towards using frameworks were self-efficiency, habit of learning new things and awareness about the benefits of frameworks. The research recommended companies to use appropriate frameworks to protect their projects against security threats like SQL injection and RSS injection.

PHP ASP.NET programming frameworks MVC ad-hoc programming

Creative CommonsThis work is licensed under a Creative Commons Attribution 4.0 International License. To view a copy of this license, visit


Figure of 9


[1]  Shah, D. N. (2009) A Complete Guide to Internet and Web Programming. New Delhi: Dreamtech Press.
[2]  Kappel, G., Prill, B., Reich, S. and Retschitzegger, W. (2006) Web engineering: the discipline of systematic development of web applications. Chichester: John Wiley and Sons, Ltd.
[3]  Lu, M.T. and Yeung, W.l. (1998) A framework for effective commercial Web application development. Internet Research: Electronic Networking Applications and Policy. 8 (2), 166-73.
[4]  Henney, K. (2010) 97 Things Every Programmer Should Know [e-book] Sebastopol: O'Reilly Media. Available from: University of Northampton website <> [Accessed 5th August 2011].
[5]  Kappel, G., Prill, B., Reich, S. and Retschitzegger, W. (2006) Web engineering: the discipline of systematic development of web applications. Chichester: John Wiley and Sons, Ltd.
[6]  Todd, S. (1999) A guide to the Internet and World Wide Web. Structural Survey. 17 (1), 36-41.
[7]  Ingram, P. (1996) Web developments and the Internet. Computers and Geosciences. 22 (5), 579-84.
[8]  Gralla, P. (1998) How the Internet works. 4th ed. Indianapolis: Que Corporation.
[9]  Banks, M. (2005) OCR AS GCE Applied ICT Double Award. Oxford: Heinemann Educational Publishers.
[10]  Camilleri, M. and Sollars, V. (2003) Information and communication technologies and young language learners. Kapfenberg: Council of Europe Publishing.
[11]  Severdia, R. and Crowder, K. (2009) Using Joomla: Building Powerful and Efficient Web Sites. Sebastopol: O'Reilly Media.
[12]  Bari, A. and Syam, A. (2008) CakePHP Application Development. Birmingham: Packt Publishing.
[13]  Vaswani, V. (2010) Zend Framework, A Beginner's Guide. New York: McGraw-Hill Companies.
[14]  Coggeshall, J. and Tocker, M. (2009) Zend Enterprise PHP Patterns. New York: Springer-Verlag.
[15]  Taft, D.K. (2005) Zend delivers PHP Intelligence. eWeek. 22 (3), 30.
[16]  Thomas, M. (2008) Professional CodeIgniter. Indianapolis: Wiley Publishing, Inc.
[17]  Argudo, J. and Upton, D. (2009) CodeIgniter 1.7. Birmingham: Packt Publishing.
[18]  Iglesias, M. (2011) CakePHP 1.3 Application Development Cookbook. Birmingham: Packt Publishing.
[19]  Golding, D. (2008) Beginning CakePHP: From Novice to Professional. New York: Springer-Verlag.
[20]  Freeman, A. and Sanderson, S. (2009) Pro ASP.NET MVC 3 Framework. New York: Springer Science Business Media.
[21]  Walther, S. (2010) ASP.NET MVC Framework Unleashed. New York: Pearson Education, Inc.
[22]  Bella, L.L. (2011) Careers in Web Development. New York: The Rosen Publishing Group.
[23]  Schwabe, D., Rossi, G., Esmeraldo, L. and Lyardet, F. (2001) Web Design Frameworks: An Approach to Improve Reuse in Web Applications. Web Engineering 2000. 2016 (10), 335-52.
[24]  Hasan, S.S. and Issac, R.K. (2011) An integrated approach of MAS-CommonKADS, Model–View–Controller and web application optimization strategies for web-based expert system development. Expert Systems with Applications. 38 (1), 417-28.
[25]  Khare, R. (2006) Network Security and Ethical Hacking. Beckington: Luniver Press.
[26]  Clarke, J. (2010) Web Application Security. New York: Springer-Verlag.
[27]  Softcov (2008) Softcov [online] Available from: [Accessed 29th October 2011].
[28]  Trejder (2010) Advantages and Disadvantages of Framework Programming - Yii Framework Forum [online] Available from: [Accessed 29th October 2011].
[29]  Feathers, M.C. (2005) Working Effectively with Legacy Code. New Jersey: Pearson Education.
[30]  Sinnott, R.O. (1998) Frameworks: the future of formal software development?. Computer Standards and Interfaces. 19 (7), 375-385.
[31]  Dawson, C.W. (2005) Projects in Computing and Information Systems. Harlow: Pearson Education Limited.
[32]  Ghauri, P. and Gronhaug, K. (2010) Research Methods in Business Studies. Harlow: Pearson Education Limited.
[33]  Saunders, M., Lewis, P. and Thornhill, A. (2003) Research Methods for Business Students. Harlow: Pearson Education Limited.
[34]  Lodico, M.G., Spaulding, D.T. and Voegtle, K.H. (2010) Methods in Educational Research: From Theory to Practice. 2nd ed. San Francisco: Jossey-Bass.
[35]  Thomas, R.M. (2003) Blending qualitative and quantitative research methods in theses and dissertations. California: Corwin Press.
[36]  Golafshani, N. (2003) Understanding Reliability and Validity in Qualitative Research. The Qualitative Report. 8 (4), 597-607.