TRAP@NCI

Securing password hashes from SQL injection attacks using Image Steganography

George, Thomas Ronil (2018) Securing password hashes from SQL injection attacks using Image Steganography. Masters thesis, Dublin, National College of Ireland.

[img]
Preview
PDF (Master of Science)
Download (1MB) | Preview

Abstract

SQL injection attacks can display hashed passwords on screen and it becomes accessible to unauthorized users. With access to the hashed password, it is not very difficult to identify the algorithm that was used to hash the password and decode it. This paper is intended for back-end or full stack developers who use SQL database systems to store hashed passwords in databases for user registration and login systems. The proposed method is to obfuscate password hashes in images using steganography, and to place them in a secure location rather than a database. These steganographic images will be used again for the login process. The key motivation for this paper is that a hash, when visible is quite intriguing and can help in learning patterns and algorithms. This paper demonstrates the successful implementation of a user registration and login system using image steganography
for password storage.

Item Type: Thesis (Masters)
Subjects: Q Science > QA Mathematics > Electronic computers. Computer science
T Technology > T Technology (General) > Information Technology > Electronic computers. Computer science

Q Science > QA Mathematics > Computer software
T Technology > T Technology (General) > Information Technology > Computer software
Divisions: School of Computing > Master of Science in Cyber Security
Depositing User: CAOIMHE NI MHAICIN
Date Deposited: 31 Jan 2019 13:23
Last Modified: 31 Jan 2019 13:23
URI: http://trap.ncirl.ie/id/eprint/3562

Actions (login required)

View Item View Item