Analysis

In the Analysis Phase of a new project the company completes a review of client business processes and system requirements. The key deliverable of this Phase is typically a Functional Requirements document (FRD). Clients are asked to review and sign-off on this document prior to moving forward in the project. Key events in the Analysis Phase are:

• Project preparation & planning
• Conduct of requirements gathering interviews & workshops
• Preparation & review of functional requirements

Design

In the Design Phase, the proposed system design will be delivered in the form of an System Design Document (SDD) and accompanying software demonstrations. An Implementation Proposal, including a go-forward budget & project schedule, will be presented to client steering committee members. The client is asked to sign off on the final design and Implementation Proposal prior to moving to the Development & Testing Phase. Key events in the Design Phase include:

• Conduct JAD (Joint Application Design) sessions with project team members
• Prototype user interfaces, screens
• Finalize Data Migration & System Integration plans
• Prepare System Test Plan
• Prepare and Present the System Design Document (SDD)
• Sign off on SDD and Implementation Proposal
• Detailed Software Design & Build Plan Preparation

Development & Testing

In the Development & Testing phase, Clients are asked to test each Build as delivered. Key events in the Development & Testing phase are:

• Coding and internal testing
• Internal system integration testing
• Test User Training
• System Integration Testing

Deployment

In the Deployment Phase the system is fully implemented at the client site and all user training is completed. Key events in the Deployment Phase are:

• Finalize User Documentation
• Finalize System Set-up
• User Training
• Acceptance walk-through
• Parallel run
• Go Live

Progress Tracking

During the analysis, design, development and testing stages, progress will be monitored through weekly progress and review meetings. In these meetings the schedules are verified and proper measures will be taken if the project execution is behind the schedule. Project Manager will submit the progress report on project status.

On Going Support

Once the system is deployed, Web Synergies will be available to ensure that the business objectives are achieved, implemented features & functions are understood, and users are properly trained. Web Synergies's first line of support is its experienced consultants through telephone support. In some cases, Web Synergies will send professional services staff to your site.

Database Programming

Web Synergies has proven experience in database programming for enterprise level applications and web applications. Each and every application developed has lots of database programming aspects. Web Synergies staff are experts in writing database procedures, functions and packages to produce excellent performance based systems.

Web Synergies staff has excellent skills in SQL, PL/SQL programming independently and experience in using the MS SQL Server 6.5/7.0/2000, Oracle, MySQL projects, and PostGreSQL.

Security Policy

Web Synergies adopts best practices in implementing security policies with regards to its projects, E.g., for Singaporebased projects, Web Synergies will follow Singapore Infocomm Development Authority (IDA) security standards for its implementations.

Server side security will be implemented for all privileged sections of the website using session controls and application level IDs. Cookies are not recommended to clients as they can sometimes compromise security.

Passwords are encrypted and stored into the database using a COM proprietary component which will not have decryption program/algorithm for increased security. Administrators also cannot see the password and DBA also not able to view the passwords in the database. This will make the clients feel happy and confident that the personal data cannot be trapped.

For network security, Web Synergies proposes Secure Sockets Layer (SSL) for personal and confidential information to securely transmit over the network.

Web Synergies implements database level security for most of the privileged pages. This is third level of authentication besides the web server and network security. Web Synergies also implements restrictions on the number of attempts via a login, so that trial-and-error methods to trap or hack system accounts cannot be employed.

Web Synergies also implements a new security measure for corporate applications: unauthorized access of corporate systems via former employees will be blocked via security token implementation. In this, the token is the third authentication information required for the system to get in, besides username and password. This token will be generated by the system every week and sent to the respective corporate email addresses. If the email address is not active or cannot be accessed by a former employee, access to the system is made virtually impossible. This will prevent up to 98% of tentative intrusions.

Staging Environment

Web Synergies manages its own development servers at its head office. These servers will be connected to a 512k line with 8 static IPs. The company has separate testing servers which are open to Internet for clients in order to fully test their applications before they are moving to staging or production servers.

Web Synergies' development/testing/staging servers are Windows NT, Windows 2000, Windows 2003 and Linux. They are installed with different web servers to cater to the various needs of the different projects we are handling.

They are running with IIS 4.0, 5.0 and 6.0, Apache, Weblogic 7.0 and JBoss. The company's also own other development/testing servers running with Cold Fusion applications, as well as database servers with MS SQL Server, Oracle 8.x and MySQL, PostGreSQL being used for different projects.

Web Synergies' staging servers are hosted by either 1-Net Singapore, Pacific Internet, and /or Pacific Supernet.