Monitorování pracovních stanic Cisco akademie / Monitoring of workstations in Cisco academy laboratory

Hrabal, Zdeněk

January 2009

This thesis deals with design and implementation of a Web page that allows the manipulation with data on a server and workstation in the laboratory. It is also possible to get more information of these stations, such as installed on the virtual systems, free space on a drive or the contents of the directory. Details of the stations provide scripts written by Bc. Jiří Homolka in a Bash language. For this reason, the work also deals with the issue of scripts to run in various modes - in the background or in the pseudoterminal. Part of this work is the formation of the database structure, which allows to trace the activities on the workstations and show the history. The web is accessible form the Internet so there was given an attention to the security and protection against attempts of unauthorized intrusion. Therefore the system can login only registered users with appropriate rights or new accounts can be created or existing modified.

Web site security maturity of the European Union and its member states : A survey study on the compliance with best practices of DNSSEC, HSTS, HTTPS, TLS-version, and certificate validation types

Rapp, Axel

January 2021

With e-governance steadily growing, citizen-to-state communication via Web sites is as well, placing enormous trust in the protocols designed to handle this communication in a secure manner. Since breaching any of the protocols enabling Web site communication could yield benefits to a malicious attacker and bring harm to end-users, the battle between hackers and information security professionals is ongoing and never-ending. This phenomenon is the main reason why it is of importance to adhere to the latest best practices established by specialized independent organizations. Best practice compliance is important for any organization, but maybe most of all for our governing authorities, which we should hold to the highest standard possible due to the nature of their societal responsibility to protect the public. This report aims to, by conducting a quantitative survey, study the Web sites of the governments and government agencies of the member states of the European Union, as well as Web sites controlled by the European Union to assess to what degree their domains comply with the current best practices of DNSSEC, HSTS, HTTPS, SSL/TLS, and certificate validation types. The findings presented in this paper show that there are significant differences in compliance level between the different parameters measured, where HTTPS best practice deployment was the highest (96%) and HSTS best practice deployment was the lowest (3%). Further, when comparing the average best practice compliance by country, Denmark and the Netherlands performed the best, while Cyprus had the lowest average.

Web site security

information security

e-governance

best practice

DNSSEC

HSTS

HTTPS

SSL

TLS

certificate validation

Information Systems, Social aspects