| dc.creator |
Hamad, Mbarouk Khamis Omar |
|
| dc.date |
2019-08-19T08:57:08Z |
|
| dc.date |
2019-08-19T08:57:08Z |
|
| dc.date |
2018 |
|
| dc.date.accessioned |
2022-10-20T13:46:57Z |
|
| dc.date.available |
2022-10-20T13:46:57Z |
|
| dc.identifier |
Hamad, M. K. O. (2018). Improving authentication security in PHP web based applications: A case study of court case management system in Zanzibar. (Master's dissertation) The University of Dodoma, Dodoma. |
|
| dc.identifier |
http://hdl.handle.net/20.500.12661/875 |
|
| dc.identifier.uri |
http://hdl.handle.net/20.500.12661/875 |
|
| dc.description |
Dissertation (MSc Information Technology) |
|
| dc.description |
The focus of this dissertation was Improving Authentication Security Mechanism in Web Based Applications: A Case Study of Court Case Management System in Zanzibar. The study focused on two objectives. The first objective was to analyze the weaknesses of authentication security mechanism on the existing web based CMS. The second one was to devise the secured web based CMS prototype. Three techniques were used in collecting data. These are document review, penetration tests and observation. Document review was used to review different reports, code review, published papers and recommended websites. Penetration test was used to test both the client-side and back-end of the system and observation was used to observe the implementation of SHA1 and MD5 encryption as a default mechanism in ZCMS. The data were collected in Zanzibar high court laboratory.
The researcher found that the username and password based login are widely used approaches to authentication for accessing information in web based systems where an unauthorized user may use SQL malicious code to inject and harm the system.
The researcher analyzed the existed information security patch and control mechanisms by using penetration test methods. He tested both the client-side and back-end of the system. The results indicated that there are vulnerabilities to the existed authentication mechanisms. To handle the problem the researcher has considered password_hash function technology and strong password controlled mechanism as a solution for aforementioned challenge. This technology provided the suitable mechanisms to protect unauthorized operations on electronic case information by enforcing encryption which results in stronger authentication. |
|
| dc.language |
en |
|
| dc.publisher |
The University of Dodoma |
|
| dc.subject |
Authentication security |
|
| dc.subject |
Web based applications |
|
| dc.subject |
Management system |
|
| dc.subject |
Zanzibar |
|
| dc.subject |
CMS prototype |
|
| dc.subject |
Security patch |
|
| dc.subject |
Control mechanisms |
|
| dc.title |
Improving authentication security in PHP web based applications: A case study of court case management system in Zanzibar |
|
| dc.type |
Dissertation |
|