NEXT Chapter 19 Security Issues

Security is an important issue for modern IT system. System administrator and security administrator are responsible for safeguard’s organization data and computing infrastructure.

Password Encryption: Whatever security measures taken, in any case if anyone with destructive or malicious mind gets access to the database he can temper the critical data. To restrict it we’ve used encrypting algorithm facilitated to us by Microsoft ASP.Net .

Two algorithms’ are there

    • SHA1- It takes the password and encrypt it in a string of 40 characters

    • MD5- It takes the password and encrypt it in a string of 32characters

The beauty of these Algos are that whatever be the length of password the length of converted string remains same.

However a question arise here that if this thing is that good then why didn’t we used it for storing each and every data????

The answer lies in the fact that not all data are needed to be encrypted as long as we keep the critical data(like password encrypted and safe). It will only increase the load on server and network with no additional advantage. So we’ve not used this encryption Algo on all data blindly.

We have implemented different approach related to security issue for our project “Online Examination” :

Authorization:

Super Admin has authorized to give permission to admin for the registration of the students.

Authentication:

Only registered students can appear for the examination. Every registered student has different and unique UserId.

Information Integrity:

Only Super admin has right in the modification of the information. There is no possibility by the end user or unauthorized user of hacking the information.

Detection:

Super Admin will have a bank up of the project. Also there is a complex and alphanumeric password for admin and student. Super admin itself has a complex and alphanumeric password. There is a option for changing the password by all the admin and itself after every month.