Report Writing and Documentation User and System Requirements
Gathering and Analysis
Conventional web-based encryption tools are limited to protect storage files
Lack of lightweight data encryption algorithms
Lack of support file sharing and data integrity features 1.
2.
3.
Abstract
Final Year Project (Computer Science)
Problem Statement
Methodology
Objectives
To investigate a lightweight encryption algorithm in terms of computation speed and ciphertext size by using a systematic review approach and experimental
To design and develop a lightweight web-based encryption tool that capable to protect the document’s confidentiality and integrity by using the waterfall approach
To evaluate the system usability performance of the developed lightweight web-based encryption tool by using the System Usability Scale (SUS) approach.
1.
2.
3.
SECURING DOCUMENTS WITH LIGHTWEIGHT WEB-BASED FILE ENCRYPTION APPLICATION
WAN NORAZLIN BINTI ABDULLAH (BI18110278) DR TAN SOO FUN
bi18110278@student.ums.edu.my soofun@ums.edu.my
The Movement Control Order (MCO) and work from home (WFH) practices due to the COVID-19 pandemic resulted in a significant increase use of online file sharing and storage services. Data security becomes a concern as the actions currently taken to secure data are more towards data-in-transmission, such as the “SSL/TLS Handshake” that ensures a certified and secured peer transmission. The lack of security for data-at-rest in storage services however has resulted in data breaches caused by unauthorized access. Hence, this project proposes a lightweight web-based encryption tool as a solution to protect the confidentiality and integrity of cloud storage. The methodology applied in this project is the waterfall approach, will comprises seven phases. Lightweight encryption algorithms are investigated by benchmarking their performance in terms of computation speed and ciphertext size. After identifying the best algorithm, a lightweight web-based encryption application with PHP programming and JavaScript that protects the confidentiality and integrity of cloud storage is designed and developed. The web-based encryption application is then evaluated for its performance by using the System Usability Scale (SUS) approach.
Conclusion
Implementations
WFH culture has increased the use of online file sharing and storage, especially during the pandemic. This has caused concerns over data security in storage services during data-at-rest. Thus, encryption tools has been the alternative, where files are encrypted prior sharing and storing. This project aims to provide a web-based encryption application that can provide easy encryption and decryption with lightweight encryption algorithm, including a secure file sharing feature. The project includes three objectives, which are achieved throughout Project I and II. The first objective was achieved during the first and third phase of the project. The second objective was achieved during the fourth and fifth phase of the project. Meanwhile, the third objective is achieved on the sixth phase of the project. There are constraints within the system, such as the master key being affected upon password reset and the slow transaction during file sharing. These constraints can be overcomed by implementing a much more robust system architecture. The future works of this project may include improving the UI/UX of the system and the development of a mobile version of the system.
Implementation of Lightweight Encryption Algorithm
Design of web-based File Encryption Tool
Implementation of Web-based File Encryption Tool
Testing and Evaluation
Literature Review
Module: User Registration and Authentication Description: Allows users to have online account and helps in authentication procedures Solves Problem Statement: 1
Module: User Account Management Description: Allows user to manage encrypted files, and modify basic information.
Deletes stored encrypted files after 14days or upon deactivation.
Solves Problem Statement: 1
Module: File Sharing Management Description: Allows user to share and view files among other users. Records, updates and deletes sharing sessions after 48 hours.
Solves Problem Statement: 3
Module: Web-based Encryption Tool Description: Allows user to encrypt/decrypt files that are uploaded into web application.
Solves Problem Statement: 2&3
Module: Email Notification Description: Send emails to users for authentication, and notification purposes.
Solves Problem Statement: 1&3
Module: Contact List and Access Policy Management Description: Allows users to add, unfriend and block other users accounts.
Solves Problem Statement: 3