Razvoj s certifikati varovane spletne trgovine
diplomsko delo
Abstract
Spletne trgovine vsako leto privabijo več kupcev. Pri programiranju tovrstnih aplikacij moramo biti pozorni na dve stvari: na realizacijo funkcionalnosti ter zagotavljanje varnosti. V tej diplomski nalogi je razvita spletna trgovina s tremi moduli (modul za kupce, prodajalce ter za naročanje pri dobaviteljih). Pri razvoju je poseben poudarek namenjen zagotavljanju varnosti. Pri tem smo upoštevali priporočila organizacije OWASP. Implementirana je obramba proti injekcijam, XSS, CSRF ter proti napadom, ki izkoriščajo napačno upravljanje z avtentikacijo in sejami. Poleg tega so izdelani samopodpisani certifikati X.509, ki so potrebni za prijavo v zaledni sistem.
Keywords
spletna trgovina;varnost;OWASP;Apachi;X.509;računalništvo;računalništvo in informatika;univerzitetni študij;diplomske naloge;
Data
| Language: | Slovenian |
|---|---|
| Year of publishing: | 2015 |
| Typology: | 2.11 - Undergraduate Thesis |
| Organization: | UL FRI - Faculty of Computer and Information Science |
| Publisher: | [P. Rot] |
| UDC: | 004.738.5.056:339.371.4(043.2) |
| COBISS: |
1536485315
|
| Views: | 882 |
| Downloads: | 175 |
| Average score: | 0 (0 votes) |
| Metadata: |
|
Other data
| Secondary language: | English |
|---|---|
| Secondary title: | Development of a web store protected with certificates |
| Secondary abstract: | Each year web stores attract more customers. When programming these types of applications we have to consider two things: implementation of functionality and ensuring web security. A web store with three modules has been developed in the following thesis (a module for buyers, sellers and also for managing supplies). Special emphasis during development is placed on security. We also considered the guidelines from the OWASP organization. A defense against injection, XSS and CSRF has been implemented, as well as against attacks that exploit the broken authentication and session management. In addition, self-signed certificates X.509 were created which are necessary for signing in back-end system. |
| Secondary keywords: | web store;security;OWASP;Apachi;X.509;computer science;computer and information science;diploma; |
| File type: | application/pdf |
| Type (COBISS): | Bachelor thesis/paper |
| Study programme: | 1000468 |
| Embargo end date (OpenAIRE): | 1970-01-01 |
| Thesis comment: | Univ. v Ljubljani, Fak. za računalništvo in informatiko |
| Pages: | 53 f. |
| ID: | 8890078 |
Recommended works:
Razvoj s certifikati varovane spletne trgovine
2015,
diplomsko delo
Izdelava spletne trgovine
2015,
no subtitle data available
Izdelava in optimizacija spletne trgovine
2020,
diplomsko delo
Prenova spletne trgovine za proizvodno in marketinško podjetje
2017,
diplomsko delo univerzitetnega študija Organizacija in management informacijskih sistemov
Načrtovanje in oglaševanje spletne trgovine Gru Design
2019,
no subtitle data available