|
|
Identity management in the SaaS environment
Krčma, Marek ; Mészáros, Jan (advisor) ; Buchalcevová, Alena (referee)
This bachelor thesis deals with the identity management in the SaaS environment. The first part of the thesis defines and connects the areas which identity management is related. These areas are: cloud computing, authentication and authorization, legislation and standards. In areas of cloud computing, authentication and authorization is taken emphasis on security issues. The next part of the thesis compares three authentication and authorization standards (OpenID, OAuth and SAML) that are appropriate solution of the identity management in SaaS applications. The thesis defines the specifics for each standard and specifies the requirements for effective implementation. The last part describes how to implement OpenID authentication standard in an existing web application.
|
|
| |
|
| |
|
|
Password management systems
Karády, Gabriel ; Pavlíček, Luboš (advisor) ; Gála, Libor (referee)
The purpose of this thesis is to describe and compare password managers for users and small teams on different software and hardware platforms. It deals with the problem area of passwords in general, user habits, and comfort and password quality. It further introduces and categorizes password managers and compares a few of them by several criteria, from security -- used encryption and its cryptanalysis, user protection from malware -- through usability -- the abilities and ease of use of the tool, its integration with applications and the operating system -- up to teamwork enhancements -- synchronization abilities and sharing of both single passwords and password databases.
|
|
|
Internal Certification Authority
Kolb, Jiří ; Pavlíček, Luboš (advisor) ; Bumbala, Jan (referee)
With the rising number of internet users emerged the need for mutual authentication and secure communication. In the open environment of the Internet, this service is provided by a trusted third party using asymetric cryptography. This trusted third party - called Certification Authority - provides identification of the communication partners and the security of their communication through certificates it issues. Many large companies use certification authorities today. The goal of my thesis is the design and implementation of a CA for a small company, along with an evaluation of the benefits of introducing this new technology.
|
|
|
Electronic Banking
Bessenyey, Ilona ; Zetek, Pavel (advisor)
This thesis deals with the electronic banking and issues related to direct banking. It analyzes the spectrum of direct banking products offered by the Czech banking sector, such as payment cards, telephone banking, mobile banking, internet banking, PDA banking, self-service banking area and television banking. The thesis also describes the risks of direct banking and tries to predict future development of electronic banking.
|
|
|
SAML and XACML as a New Way of Identity Management
Brechlerová, Dagmar
Today, the number of websites that are offering personalised web content ( some special information for somebody) are growing rapidly. To provide personalised content,websites require users to identify themselves, which is typically done by giving the user an account with an associated user name and password or other secure information. Security Assertion Markup Language (SAML) is an open standard defined by the OASIS. SAML provides a common language that online entities can use to universally share and exchange security information. Extensible Access Control Markup Language (XACML) is an XML based language for access control. The policy language is used to express acces control policies who can do what. SAML and XACML can be used for very complex identity management, for acces control policy. This paper is about the possibility how to use XACML and SAML for identity management. One model of authetication and authorization by XACML and SAML is presented here, too
|
|
|
Network access control
Kalina, Tomáš ; Pavlíček, Luboš (advisor) ; Knapovský, Miroslav (referee)
This bachelor's work discusses IT issues of network access control. The first part deals with the theoretical background of network access control. There are explained various ways of authenticating and authorization users. Thanks these function, it is possible to prevent unauthorized persons access to computer networks. Knowledge of these technologies is essential for understanding the next part of the work. The remaining part of the work is concerned with recommendations and draft network access control for various model situations, especially for the college of University of Economics, Prague. Specific examples are given for network infrastructure based on device of the 3com company.
|
|
|
OpenID user authentication, implementation and support in PHP
Sokol, Vojtěch ; Pavlíček, Luboš (advisor) ; Gála, Libor (referee)
This bachelor work is focused on the user authentication on internet using the OpenID. The OpenID communication protocol is described and also other similar technologies are mentioned. The work introduces implementation methods within the PHP environment and lists which libraries are available and what are the possibilities of the most frequently used PHP frameworks to implement the OpenID authentication.
|
|
|
Electronic signature for emails subscribing
Rychetský, Filip ; Toman, Prokop (advisor) ; Brechlerová, Dagmar (referee)
Práce se zabývá využitím elektronického podpisu k podepisování emailových zpráv a to přehlednou a jasnou formou s praktickými příklady. Zahrnuje obecnou charakteristiku elektronického podpisu jako takového, věnuje se kryptografickým základům, aby čtenář věděl, jakými metodami a principy je podpis zajištěn, a konkrétními možnostmi podepisování s důrazem na jednu variantu. Tato podrobněji popsaná varianta je konfrontována s dalšími možnostmi, zejména v oblasti výhod a nedostatků.
|
guest ::
