National Repository of Grey Literature 117 records found  1 - 10nextend  jump to record: Search took 0.01 seconds. 
Multiplatform password manager with multi-factor authentication
Bilka, Tomáš ; Frolka, Jakub (referee) ; Člupek, Vlastimil (advisor)
This bachelor thesis deals with the authentication of user with key element of information security. It presents various methos of user protection and authentication. The first chapter is dedicated to diverse types of authentications, such as single-factor, two-factor, and multi-factor authentication, with emphasis on password protection and possible attacks on passwords. It also describes other security methos, such as security tokens and biometric systems. Which can be used for user authentication. The second chapter focuses on passwords managers, specifically the applications LastPass, KeePassXC and Bitwarden. The third chapter describes the design of a password manager with multi-factor authentication, its interface, and functions such as record manipulation, password generation and synchronization between devices. The security of the password manager is also discussed. The fourth chapter is devoted to the implementation of the password managers. Its security, synchronization, advantages, limitations, and possible improvements. The conclusion summarizes the main findings and results of the thesis.
Generate ICMPv6 and IPv6 packets for load testing using JMeter tool
Šulka, Samuel ; Člupek, Vlastimil (referee) ; Dvořák, Jan (advisor)
The Bachelor Thesis deals with flood attacks using generating of ICMPv6 packets in an environment without IPv4 protocol. A Trafgen configuration file was created, which had the task of sending ICMPv6 packets. For other attacks was used Scapy in Python. A plug-in modul for software Apache JMeter was created for each scenario. Scenarios were tested on real device and the results were documented in write and visual form.
Cloud storage secured with post-quantum cryptography algorithms
Kačírek, Tomáš ; Sikora, Marek (referee) ; Člupek, Vlastimil (advisor)
This bachelor thesis deals with cloud storage secured by post-quantum cryptography and its practical implementation. The theoretical and mathematical principles of post-quantum algorithms are presented. Furthermore, their possible implementations according to security requirements and libraries that work with these algorithms are discussed. Tests have been performed to determine the most efficient algorithms for ensuring two-party authentication, confidentiality and data integrity. Then the cloud and what advantages or vulnerabilities it has was discussed. The selected algorithms were then used in a practical implementation of cloud storage in a LAN.
Standardization of post-quantum cryptography
Rada, Dalibor ; Člupek, Vlastimil (referee) ; Zeman, Václav (advisor)
The topic of the bachelor thesis is the standardization of post-quantum cryptography with respect to quantum-resistant signature schemes, including a possible solution of the related public key infrastructure and a subsequent performance comparison of selected algorithms. The work discusses the main aspects of standardization by NIST and then describes selected quantum-resistant algorithms, including a mapping of the current state of standardization of post-quantum cryptography in the EU. On the basis of the theoretical part, one of the suitable public key infrastructure solutions is selected with the possibility of using post-quantum algorithms. In the next part of the work, a~performance comparison of the selected algorithms is made and a conclusion is drawn. Finally, thanks to the information from the bachelor's thesis, the design of the laboratory task is implemented.
Design and implementation of a digitally signed report in the Apache JMeter
Procházka, Martin ; Člupek, Vlastimil (referee) ; Šeda, Pavel (advisor)
This thesis focuses on the development of a plugin for Apache JMeter to automatically generate report from the results of performance testing provided by other modules. In the theoretical part, it discusses the capabilities of Apache JMeter, stress testing in general, the structure of PDF document, the theory of digital signature and relevant cryptographic requirements. The practical part deals with the implementation of the report generator. First, it introduces the content of the report, then it discusses the principles of HTML and PDF report generation. Finally, the paper discusses the insertion of a digital signature into a PDF document.
Confidentiality-preserving computations using homomorphic encryption
Rybár, Matej ; Ricci, Sara (referee) ; Člupek, Vlastimil (advisor)
Táto diplomová práca skúma homomorfné šifrovanie, zameriavajúc sa na teoretické základy, bezpečnostné princípy a praktické aplikácie. Pre svoju výkonnosť a bezpečnosť bola vybraná knižnica TFHE vo svojej Rust variante (TFHE-rs). Bol vyvinutý scenár vojenského použitia zahŕňajúci systém Military Grid Reference System (MGRS) na demonštráciu bezpečného cloudového výpočtu. Implementovali sme homomorfné algoritmy pre konverziu MGRS, výpočet druhých odmocnín, reprezentáciu IEEE 754, algoritmus pre výpočet druhých odmocnín pomocou celých čísel, algoritmus pre výpočet druhých odmocnín pomocou desatinných čísel a SHA-256 hashing. Výkonnostné testy ukázali, že homomorfný algoritmus pre výpočet druhých odmocnín vyžadoval približne 22 sekúnd a SHA-256 približne 10 sekúnd. Práca opisuje celý proces od prijatia MGRS koordinátov po vrátenie vypočítanej vzdialenosti spolu s jej hashom, pričom podrobne opisuje bezpečnú klient-server architektúru. Docker Compose simuloval cloudové prostredie, pričom Ansible automatizoval nasadzovanie. Frontend, vyvinutý pomocou React a Leaflet, poskytuje interaktívne rozhranie. Úspešná implementácia zdôrazňuje uskutočniteľnosť a význam homomorfného šifrovania pri zvyšovaní bezpečnosti dát.
Advanced tool for generating modern Slow DoS attacks
Hrůza, Tomáš ; Člupek, Vlastimil (referee) ; Sikora, Marek (advisor)
In today’s world, cyber threats are becoming increasingly sophisticated. Those threats include SDoS (Slow Denial of Service) and SDDoS (Slow Distributed Denial of Service) attacks, which employ advanced methods to disrupt normal service operations. These attacks are particularly difficult to detect and are effective because they simulate the behavior of legitimate users with slow internet connections. The topic of SDoS attacks is relatively new and not thoroughly documented. To respond to potentially newly devel- oped attacks, it is necessary to understand the principles of currently known attacks and have the practical capability to create them in order to develop effective countermeasures in the future. This thesis focuses on the development of an advanced tool for generating modern SDoS attacks. The main contribution of this work is the enhancement of the generator to create distributed attacks, the creation of an intuitive interface, and more options for monitoring the progress of individual attacks. The theoretical part introduces the topic of internet connection establishment and explains the properties of TCP and IP protocols in detail. It then clarifies the theory of secure communication over the internet using the HTTPS protocol and provides a comparison of currently used web servers. The final theoretical section addresses the topic of denial of service, discussing some types of currently known SDoS attacks, the tools that generate these attacks, and their shortcomings. Next chapter details the implementation of functionalities, which includes performance enhancements of the tool through the use of multiple processes. The developed tool features Slow Read, Slow Next, and Slow Drop attacks, as well as the ability to combine these attacks. This is followed by a description of how a local network of virtual machines was created for the purpose of testing the implemented tool. The final chapter presents the results and effectiveness of the tool in conducting SDDoS attacks against Apache and NGINX web servers in a local network.
Security Testing Tool for Industrial Devices
Pospíšil, Martin ; Člupek, Vlastimil (referee) ; Fujdiak, Radek (advisor)
The master thesis is focused on the issue of security of industrial devices in information networks. The theoretical part first describes the convergence of operational and information technologies. It then focuses on the industrial protocols Modbus TCP and OPC UA, security models, and an analysis of the current state of security testing. The practical part of the master thesis details the design and implementation of the developed tester and the methodology created for testing purposes. In conclusion, experimental testing of two industrial devices with the above communication protocols is conducted.
Design and implementation of a module for load testing of HTTPS requests in Apache JMeter
Čížek, Šimon ; Člupek, Vlastimil (referee) ; Šeda, Pavel (advisor)
The Bachelor Thesis focuses on DDoS attacks over the HTTPS protocol and their simulations from a single network interface. Based on the analysis of options for sending requests from spoofed IPv4 and IPv6, a plugin module was developed for Apache JMeter software. Subsequently, module impacts were tested using a created scenario on Nginx and Apache2 test servers. The conclusion presents the results of the generated load on both servers.
Strong Unilateral Authentication of Low-cost Devices Involved in Internet of Things in Smart Homes
Člupek, Vlastimil
In this paper we focused on authentication of low-cost devices involved in Internet of Things (IoT) in smart homes. We proposed a unilateral authentication protocol for authentication of low-cost devices involved in IoT with a Control Unit (CU) of a smart house. The protocol allows secure transmission of secret information between communication entities. Only cryptographic primitives as Hash functions, XOR operations and Physical unclonable functions (PUFs) are necessary for execution of the protocol. Security of the proposed protocol is described.

National Repository of Grey Literature : 117 records found   1 - 10nextend  jump to record:
Interested in being notified about new results for this query?
Subscribe to the RSS feed.