TRAP@NCI

Advanced Image Authentication Level: Technical Report

Moss, Kevin (2017) Advanced Image Authentication Level: Technical Report. Undergraduate thesis, Dublin, National College of Ireland.

[img]
Preview
PDF (Bachelor of Science)
Download (1MB) | Preview

Abstract

The problem that my system has been designed to address is that of data security i.e. the protection of sensitive data from unauthorised access, modification or deletion both in a business environment and for personal users. Different forms of data are precious to different individuals for different reason such as family photos, business secrets, medical records, financial data and user credentials for sensitive system e.g. government or state run institutions.

The technical solution implemented by my project to achieve these goals is to create a secure MVC application within visual studio 2015 using my knowledge of secure coding applications and penetration testing to create a locked down base application within which to create my advanced authentication level. The system I have developed works by having a user select and image they wish to assign to their user id, only they know which image this is. Once the user selects their image the metadata of that image is read and uploaded to the database. This metadata is then encrypted and held within the database table along with the user-id. Hashing is also implemented along with the encryption to ensure that upon logging in the user will need to select the their “Trusted Imaged” or the hashed metadata will mismatch and not allow the user to login.

The final evaluation of my system showed that it has a good peak and average response time ensuring that it has a high level of availability, the cryptography and hashing is implemented to a high standard ensuring the confidentiality of the data held within the database. The entire web application has been developed using secure coding principles as recommended by OWASP ensuring a reduced and hardened attack surface to maintain the application’s Integrity.

Item Type: Thesis (Undergraduate)
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science

Q Science > QA Mathematics > Computer software
T Technology > T Technology (General) > Information Technology > Computer software
Divisions: School of Computing > Bachelor of Science (Honours) in Computing
Depositing User: CAOIMHE NI MHAICIN
Date Deposited: 01 Nov 2017 09:27
Last Modified: 01 Nov 2017 09:27
URI: http://trap.ncirl.ie/id/eprint/2701

Actions (login required)

View Item View Item