Dr. Drew Hwang, CIS, Cal Poly Pomona
Home
101
WDD
ECOMM
SWA
SP
Secure Web Development
Home
Basics
Offense
Defense
SDLC
Code
Access
Parameter
Perimeter
Browser
Industry
Resource
Home
Description
Topics
Tools
Final
Exercises
Browser Proxy
SQL Injection
Messageboard XSS
Session Hijacking
Individual Projects
Input Validation
Defending SQL Injection
CAPTCHA Integration
Cryptography/Hashing
Access Control
Defending CSRF
Team Projects
Security Requirements
Issues in SWA
Print
Project: Encryption/Hash
Description
Using either encryption or hash, develop an ASP.net website (do not use the login control) that allows users to safely register their credential (i.e., username and password) and later login using the self-created credential.
Requirements
Create a function
that:
allow users to create their own credentials,
hashes or encrypts the user credential, and
saves the user credentials into the user credential table.
Create another function to:
enable user login
hash or decrypt the user credential,
authenticate the hashed or decrypted user credential, and
returns a message indicating whether or the login succeeds.
Do NOT use ASP.net's Login control
Grading
Register: 50%
Login: 50%
News in the Making
(source:
cgisecurity.com
)