NoteLocker: Simple secure storage service

Petros Zaris, Harald Gjermundrød

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Abstract

Over the past decade, the Web has been transformed from a collection of static HTML pages to a complex, distributed computing platform, as evidenced of the success are sites such as Facebook and YouTube. This transformation has been enabled primarily by the continuous development of Web applications. Inevitably-due to the Internet architecture-Web applications must rely on the servers so as to process and store confidential or user sensitive information. However, anyone who gains access to the server whether is a curious administrator, an attacker or even the government may obtain the data stored on the server or the server's database. This paper investigates ways to improve client-side security, through encryption, to keep user data private in the face of threats of various Web server compromises. A Web Application for online-note taking named Note Locker has been developed for this purpose by combining not only multiple security mechanisms but also modern Web development techniques to achieve confidentiality, integrity and a high level of user experience. The application is developed using open source products and eliminates possible attacks such as eavesdropping, sniffing, wiretapping, man-in-the-middle, and session hijacking of sensitive data by encrypting the data on the client side before sent for storage on the server.

Original languageEnglish
Title of host publicationProceedings - 16th IEEE International Conference on High Performance Computing and Communications, HPCC 2014, 11th IEEE International Conference on Embedded Software and Systems, ICESS 2014 and 6th International Symposium on Cyberspace Safety and Security, CSS 2014
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages1205-1212
Number of pages8
ISBN (Electronic)9781479961238
DOIs
Publication statusPublished - 9 Mar 2014
Event16th IEEE International Conference on High Performance Computing and Communications, HPCC 2014, 11th IEEE International Conference on Embedded Software and Systems, ICESS 2014 and 6th International Symposium on Cyberspace Safety and Security, CSS 2014 - Paris, France
Duration: 20 Aug 201422 Aug 2014

Other

Other16th IEEE International Conference on High Performance Computing and Communications, HPCC 2014, 11th IEEE International Conference on Embedded Software and Systems, ICESS 2014 and 6th International Symposium on Cyberspace Safety and Security, CSS 2014
CountryFrance
CityParis
Period20/08/1422/08/14

Fingerprint Dive into the research topics of 'NoteLocker: Simple secure storage service'. Together they form a unique fingerprint.

  • Cite this

    Zaris, P., & Gjermundrød, H. (2014). NoteLocker: Simple secure storage service. In Proceedings - 16th IEEE International Conference on High Performance Computing and Communications, HPCC 2014, 11th IEEE International Conference on Embedded Software and Systems, ICESS 2014 and 6th International Symposium on Cyberspace Safety and Security, CSS 2014 (pp. 1205-1212). [7056896] Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/HPCC.2014.197