|
|
Identity Management in Information Systems
Tran, Thanh Quang ; Bartík, Vladimír (referee) ; Burget, Radek (advisor)
This thesis deals with the issue of identity management on the web and the implementation of an information system that solves this issue. The proposed information system utilizes Keycloak for identity management and delegating the authentication process centrally to a third party. Thanks to Keycloak, external identity sources can be integrated using widely used protocols such as SAML 2.0 and OpenID Connect. The information system itself is built on a microservices architecture, where individual microservices are implemented in the Python programming language. The web client of the information system is implemented in the Vue.js web framework with the Vuetify extension, which is used for easy creation of the web user interface.
|
|
|
Methodology of securing API interfaces
Kuruc, Tomáš ; Zápotočný, Matej (referee) ; Sedlák, Petr (advisor)
This work focuses on analyzing, identifying, and addressing security aspects associated with Application Programming Interfaces (APIs). In today's digital environment, where APIs serve as a critical link between applications and systems, safeguarding their security becomes a critical priority. The aim of this work is to provide a holistic overview of existing security threats, security methods for APIs, and the design of a methodology that effectively enhances their resilience against cyber attacks. The work encompasses thorough literature analysis, vulnerability identification, evaluation of existing security methods, and the development of a structured methodology aimed at securing APIs across a wide spectrum of environments and applications.
|
|
|
Deployment of new versions of GNOME project
Pekník, Štefan ; Kolář, Dušan (referee) ; Křivka, Zbyněk (advisor)
Cílem této práce je modernizovat a automatizovat proces vydávání nových verzí projektů a aplikací GNOME. Díky integraci GitLab Continuous Integration (CI) pipelines a dedikovaného API se výrazně snižuje potřeba manuálního zásahu do vydávacího procesu. Výsledkem je nový pracovní postup, který je efektivnější, rychlejší a méně náchylný k chybám. Práce analyzuje aktuální skript ftpadmin, identifikuje oblasti ke zlepšení a navrhuje řešení založené na API jako jeho náhradu, které umožňuje kontrolovaný a automatizovaný proces vydávání prostřednictvím GitLab CI. Navrhované řešení nejen připravuje půdu pro budoucí zlepšení řízení vydávání GNOME, ale také může sloužit jako model pro ostatní projekty, které usilují o zefektivnění svých vydávacích procesů.
|
|
|
A software tool for checking the secure settings of the parameters of the selected database
Hlavica, Adam ; Štůsek, Martin (referee) ; Šeda, Pavel (advisor)
This thesis deals with the design and implementation of a software tool for best practice database configuration checking. The theoretical part describes database technologies, their applications and existing solutions in the field of automated database configuration checking. Furthermore, possible configurations of the PostgreSQL database system are presented with a focus on security. The practical part shows the design of a program with the necessary requirements and its implementation in Python. The final chapter focuses on a practical demonstration of the program deployment.
|
|
|
Cloud-Native Single Sign-On with OpenID Connect and Keycloak
Koval, Maksym ; Pavela, Jiří (referee) ; Malinka, Kamil (advisor)
Cílem této práce je prozkoumat principy protokolů OAuth 2.0 a OpenID Connect a vysvětlit, jak by tyto protokoly měly být implementovány v architektuře mikroslužeb. Jako demonstrační aplikace byly navrhnuty dva webové klienty Angular a dva servery Spring Boot. Práce také vysvětluje připojení Keycloak jako poskytovatele identit pro výše uvedené aplikace. Výsledkem je centralizované autentizace všech aplikací a implementace mechanismu jednotného přihlašování v cloudovém prostředí.
|
|
|
Web Application for Editing and Biometric Signing of Documents
Denk, Aram ; Burget, Radek (referee) ; Bartík, Vladimír (advisor)
The bachelor thesis deals with the design and development of a web application for editing and biometric signing of PDF documents using a signature tablet. The thesis focuses on the study of the principles of web application development which includes a comparison of JavaScript frameworks, it also studies manipulation with PDF documents and the issues surrounding biometric signatures. Existing solutions for biometric signing of documents are analyzed. Based on this analysis, the requirements for a new web application are determined and its design is carried out. This is followed by a description of the actual implementation, which is mainly done in JavaScript using the framework React. After implementation, the application is tested and the results are evaluated.
|
|
|
Design of the e-Voting system and its Legal Specifics
Váňa, Vojtěch ; Harašta, Jakub (referee) ; Loutocký, Pavel (advisor)
The thesis focuses on the design of the electronic voting system and its legal specifics. The work focused on the legal aspects of electronic voting, such as voter authentication, data security and guarantee of anonymity of votes. In the theoretical part of the thesis, a survey of the historical development of e-voting and an analysis of the experience of countries that have already implemented this system was conducted. Furthermore, the thesis shows the current situation in the Czech Republic with electronic voting and analyses the relevant legislation related to this issue. The practical part of the thesis contains a concrete proposal for an electronic voting system that combines technological innovations with legal requirements.
|
|
|
Classroom student identification using passwordless authentication
Kamenská, Veronika ; Kurečka, Radomír (referee) ; Travěnec, Jiří (advisor)
This thesis deals with the passwordless authentication of a Masaryk University student within the Simulation Centre of the Faculty of Medicine. In the introduction the concepts of authentication, passwordless authentication, multifactor authentication are explained. Subsequently, these methods are compared with respect to security and the most optimal method suitable for implementation in teaching is selected. A mobile application was created in Flutter environment which will be used by the students for authentication. At the same time, an algorithm was designed to test the application in practice. A pilot testing was carried out focused on the real deployment of the application in the teaching of the Masaryk University Simulation Centre. The results of this testing were then statistically evaluated.
|
|
|
Strong Unilateral Authentication of Low-cost Devices Involved in Internet of Things in Smart Homes
Člupek, Vlastimil
In this paper we focused on authentication of low-cost devices involved in Internet of Things (IoT) in smart homes. We proposed a unilateral authentication protocol for authentication of low-cost devices involved in IoT with a Control Unit (CU) of a smart house. The protocol allows secure transmission of secret information between communication entities. Only cryptographic primitives as Hash functions, XOR operations and Physical unclonable functions (PUFs) are necessary for execution of the protocol. Security of the proposed protocol is described.
|
|
|
A Jabber/XMPP Transport for News via the NNTP Protocol
Halfar, Patrik ; Weiss, Petr (referee) ; Rychlý, Marek (advisor)
This document mention some possibilities of information sharing over computer networks. At the beginning there is described exchange information between group of users by NetNews . Next chapter make short introduction to project Jabber/XMPP and its possibilities. Other part appropriate to possibility combination these services and comment implemented application. There are include descriptions how configure most known Jabber servers for use of this application. There are contain XML schemes of uses files too.
|
guest ::
