Bakery E-commerce Web Application - Implements RSA Encryption

Wong, Chun Ming (2023) Bakery E-commerce Web Application - Implements RSA Encryption. Final Year Project (Bachelor), Tunku Abdul Rahman University of Management and Technology.

Text RIS_Wong Chun Ming_Fulltext.pdf Restricted to Registered users only Download (2MB)

Abstract

With the increasing reliance on technology and the acceleration of the COVID-19 pandemic, many things have gone online in recent years. As a result, the security of web applications and mobile apps is crucial. According to the OWASP Top 10 Security Risks, injection attacks remain a top security risk for web applications in 2021, and developers must consider implementing security measures to prevent them. This study implemented RSA encryption on databases to protect against injection attacks and provide a secure platform for consumers to purchase products online. This project examines how to enhance the security of the e-commerce website and how the RSA encryption algorithm and two-step verification(2SV) can be designed and implemented. The main focus is to point out the RSA encryption algorithm's effectiveness and two-step verification (2SV), which helps improve the security for protecting the user data and their account. The project cover will be divided into two parts which are the customer side and the admin side. For the customer, RSA encryption algorithms and two-step verification (2SV) will be implemented to enhance the web applications' security. The project will use the waterfall model because it follows a step-by-step process through different stages, including requirements analysis, system design, implementation of secure functionality, testing, deployment, and maintenance. Encrypting sensitive data, such as passwords or personal information, using the RSA algorithm makes it much more difficult for attackers to access or manipulate this data. Besides that, implementing two-step verification (2SV) can provide an additional layer of security by requiring users to provide a second form of authentication, such as a code sent to their email, before accessing their account. In short, this project aims to demonstrate how the RSA encryption algorithm and two-step verification (2SV) can play a role in preventing injection attacks in the field of information technology and security.