Utveckling och säkerhetsutvärdering av en flexibel autentiseringslösning
(2021) EITL05 20211Department of Electrical and Information Technology
- Abstract (Swedish)
- This thesis work was done in collaboration with Knowit Experience in Malmö. Its main goal was to evaluate and develop an authentication module for the company’s e-commerce platform.
Semi-structured interviews were held with software developers at the company to better understand their needs. Based around these needs an evaluation regarding price and usability was conducted for the authentication services Auth0 and Okta. Okta was chosen for implementation. The interviews also produced a requirements specification. This specification was used to design a module using class diagrams and sequence diagrams. The module was then developed using agile methods.
This thesis work produced an ASP.NET module that generalizes configuration for... (More) - This thesis work was done in collaboration with Knowit Experience in Malmö. Its main goal was to evaluate and develop an authentication module for the company’s e-commerce platform.
Semi-structured interviews were held with software developers at the company to better understand their needs. Based around these needs an evaluation regarding price and usability was conducted for the authentication services Auth0 and Okta. Okta was chosen for implementation. The interviews also produced a requirements specification. This specification was used to design a module using class diagrams and sequence diagrams. The module was then developed using agile methods.
This thesis work produced an ASP.NET module that generalizes configuration for authentication using an arbitrary OpenID Connect service. A security test specification based on OWASP Web Security Testing Guide was also produced. Finally, the application was evaluated using this test specification. (Less)
Please use this url to cite or link to this publication:
http://lup.lub.lu.se/student-papers/record/9051720
- author
- Jönsson, Emil LU and Nilsson, Andreas
- supervisor
- organization
- alternative title
- Development and security evaluation of a flexible authentication solution
- course
- EITL05 20211
- year
- 2021
- type
- M2 - Bachelor Degree
- subject
- keywords
- OAuth2, OpenID Connect, EPiServer, elicitation, penetration test.
- report number
- LU/LTH-EIT 2021-819
- language
- Swedish
- id
- 9051720
- date added to LUP
- 2021-06-15 11:39:03
- date last changed
- 2021-06-15 11:39:03
@misc{9051720, abstract = {{This thesis work was done in collaboration with Knowit Experience in Malmö. Its main goal was to evaluate and develop an authentication module for the company’s e-commerce platform. Semi-structured interviews were held with software developers at the company to better understand their needs. Based around these needs an evaluation regarding price and usability was conducted for the authentication services Auth0 and Okta. Okta was chosen for implementation. The interviews also produced a requirements specification. This specification was used to design a module using class diagrams and sequence diagrams. The module was then developed using agile methods. This thesis work produced an ASP.NET module that generalizes configuration for authentication using an arbitrary OpenID Connect service. A security test specification based on OWASP Web Security Testing Guide was also produced. Finally, the application was evaluated using this test specification.}}, author = {{Jönsson, Emil and Nilsson, Andreas}}, language = {{swe}}, note = {{Student Paper}}, title = {{Utveckling och säkerhetsutvärdering av en flexibel autentiseringslösning}}, year = {{2021}}, }