izpis_h1_title_alt

Angular in SPA - varna izmenjava podatkov med uporabniki
ID Tomakić, Tilen (Author), ID Trebar, Mira (Mentor) More about this mentor... This link opens in a new window

.pdfPDF - Presentation file, Download (3,53 MB)
MD5: EC02A690874B8246E3C85523FEEFE354
PID: 20.500.12556/rul/3b5f2768-bbac-4d6d-a1e0-a0b6f62fda87

Abstract
Uporabniki spletnih aplikacij nimajo druge izbire kot zaupati zalednim storitvam za oblačno hrambo podatkov, da bodo varovale njihove podatke. Pred vdori jih je v praksi praktično nemogoče zaščititi. V diplomskem delu je predstavljena možnost šifriranja (angl. encryption) podatkov znotraj spletne aplikacije. Taka rešitev prenese zaščito podatkov iz zaledja (angl. backend) na stran odjemalca. S tem sta zagotovljeni varnost in integriteta podatkov, tudi če ima napadalec dostop do zaledne storitve. Podatkov ne more dešifrirati (angl. decrypt) ali spreminjati, ker zaledne storitve ne potrebujejo ključa. Opisana rešitev poleg zaščite omogoča tudi varno izmenjavo podatkov. V ta namen je predstavljen postopek hrambe in izmenjave ključev med uporabniki. Rešitev je uporabljena v spletni aplikaciji KalPass. Zasnovana je na osnovi tehnologije SPA (angl. Single-page application) ob podpori ogrodja Angular. Predstavljen je proces zaščite in izmenjave podatkov, izpostavljene pa so tudi slabosti tovrstne zaščite v SPA.

Language:Slovenian
Keywords:varna izmenjava podatkov, Angular, SPA, zaledna storitev, kriptografija, skrbnik gesel
Work type:Bachelor thesis/paper
Organization:FRI - Faculty of Computer and Information Science
Year:2017
PID:20.500.12556/RUL-94588 This link opens in a new window
Publication date in RUL:05.09.2017
Views:1164
Downloads:697
Metadata:XML RDF-CHPDL DC-XML DC-RDF
:
Copy citation
Share:Bookmark and Share

Secondary language

Language:English
Title:Angular and SPA - secure data exchange between users
Abstract:
Web application users have no other option than to trust backend services of cloud data storage that they will protect their data. In practice, it is actually impossible to protect them from web attacks. This thesis presents the possibility of encrypting data within a web application. The proposed solution shifts responsibility of protecting data from the backend to the client side. This ensures both, the security and the integrity of the data, even if the attacker has access to the backend service. Attackers cannot decrypt or modify data because the key is not available to the backend system. Beside the protection, this solution also offers secure data exchange among users specified as a process of storage and exchange of keys. In the end, the implementation of KalPass web application presents data protection and exchange by using SPA technology and Angular framework.

Keywords:secure data sharing, Angular, SPA, backend service, cryptografy, password manager

Similar documents

Similar works from RUL:
Similar works from other Slovenian collections:

Back