Abstract
Over the past decade, the Web has been transformed from a collection of static HTML pages to a complex, distributed computing platform, as evidenced of the success are sites such as Facebook and YouTube. This transformation has been enabled primarily by the continuous development of Web applications. Inevitably-due to the Internet architecture-Web applications must rely on the servers so as to process and store confidential or user sensitive information. However, anyone who gains access to the server whether is a curious administrator, an attacker or even the government may obtain the data stored on the server or the server's database. This paper investigates ways to improve client-side security, through encryption, to keep user data private in the face of threats of various Web server compromises. A Web Application for online-note taking named Note Locker has been developed for this purpose by combining not only multiple security mechanisms but also modern Web development techniques to achieve confidentiality, integrity and a high level of user experience. The application is developed using open source products and eliminates possible attacks such as eavesdropping, sniffing, wiretapping, man-in-the-middle, and session hijacking of sensitive data by encrypting the data on the client side before sent for storage on the server.
Original language | English |
---|---|
Title of host publication | Proceedings - 16th IEEE International Conference on High Performance Computing and Communications, HPCC 2014, 11th IEEE International Conference on Embedded Software and Systems, ICESS 2014 and 6th International Symposium on Cyberspace Safety and Security, CSS 2014 |
Publisher | Institute of Electrical and Electronics Engineers Inc. |
Pages | 1205-1212 |
Number of pages | 8 |
ISBN (Electronic) | 9781479961238 |
DOIs | |
Publication status | Published - 9 Mar 2014 |
Event | 16th IEEE International Conference on High Performance Computing and Communications, HPCC 2014, 11th IEEE International Conference on Embedded Software and Systems, ICESS 2014 and 6th International Symposium on Cyberspace Safety and Security, CSS 2014 - Paris, France Duration: 20 Aug 2014 → 22 Aug 2014 |
Other
Other | 16th IEEE International Conference on High Performance Computing and Communications, HPCC 2014, 11th IEEE International Conference on Embedded Software and Systems, ICESS 2014 and 6th International Symposium on Cyberspace Safety and Security, CSS 2014 |
---|---|
Country/Territory | France |
City | Paris |
Period | 20/08/14 → 22/08/14 |