Browse Source

New post - quick utility for enterprise (or in- company) security

unreleased_contents
Blagovest Petrov 10 years ago
parent
commit
122f8d73b5
  1. 24
      source/_posts/2014-12-21-quick-utility-for-enterprise-security.markdown
  2. BIN
      source/images/nebopassgen.png
  3. BIN
      source/images/security_usability.png
  4. 200
      source/images/security_usability.svg

24
source/_posts/2014-12-21-quick-utility-for-enterprise-security.markdown

@ -0,0 +1,24 @@
---
layout: post
title: "Quick utility for enterprise security"
date: 2014-12-21 16:35
comments: true
categories: [IT, Security, Cloud, Utilites]
---
{% img center http://petrovs.info/images/security_usability.png Schematic of the setup %}
Security and usability are almost never mutually inclusive concepts. Expecially in the cloud apps. They are really useful but the security is controversial. Highest security means no internet and even computers..
<!-- more -->
In our company, we use OwnCloud. It's an open source application for cloud file synchronization, like DropBox and Google Drive.
OwnCloud can be used with private SSL keys but it's still not secure because it's written on PHP. I make updates regularly but a security flaw may be undiscovered for weeks or even years ([Heartbleed](http://heartbleed.com/) and [Shellshock](http://en.wikipedia.org/wiki/Shellshock_%28software_bug%29) for example).
VPN is not a solution because it separates from the point in the middle when OwnCloud is used on a smartphone or tablet.
I wrote a small application for usage inside our company. It generates an unique string from the filename and the metadata of the office documents.
{% img center http://petrovs.info/images/nebopassgen.png Schematic of the setup %}
The string can be set for a password of the document. This is not a strong security solution, but a small accurance. It's a matter of CPU time for the password to be cracked. But it's even closer to the point in the middle because nobody have to remember the passwords. Maybe it would be good if it uses Kde's Wallet, Gnome Keyring or something other in Windows, but it's still under consideration.
It's sad but I cannot make it Open Source :D

BIN
source/images/nebopassgen.png

Binary file not shown.

After

Width:  |  Height:  |  Size: 32 KiB

BIN
source/images/security_usability.png

Binary file not shown.

After

Width:  |  Height:  |  Size: 24 KiB

200
source/images/security_usability.svg

@ -0,0 +1,200 @@
<?xml version="1.0" encoding="UTF-8" standalone="no"?>
<!-- Created with Inkscape (http://www.inkscape.org/) -->
<svg
xmlns:dc="http://purl.org/dc/elements/1.1/"
xmlns:cc="http://creativecommons.org/ns#"
xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#"
xmlns:svg="http://www.w3.org/2000/svg"
xmlns="http://www.w3.org/2000/svg"
xmlns:sodipodi="http://sodipodi.sourceforge.net/DTD/sodipodi-0.dtd"
xmlns:inkscape="http://www.inkscape.org/namespaces/inkscape"
width="600"
height="450"
id="svg2"
version="1.1"
inkscape:version="0.48.4 r9939"
sodipodi:docname="security_usability.svg"
inkscape:export-filename="/home/eniac/Documents/security_usability.png"
inkscape:export-xdpi="90"
inkscape:export-ydpi="90">
<title
id="title3029">Security vs Usability</title>
<defs
id="defs4" />
<sodipodi:namedview
id="base"
pagecolor="#ffffff"
bordercolor="#666666"
borderopacity="1.0"
inkscape:pageopacity="0.0"
inkscape:pageshadow="2"
inkscape:zoom="0.7"
inkscape:cx="452.05358"
inkscape:cy="310.34708"
inkscape:document-units="px"
inkscape:current-layer="layer1"
showgrid="false"
inkscape:window-width="1366"
inkscape:window-height="729"
inkscape:window-x="0"
inkscape:window-y="15"
inkscape:window-maximized="1"
showguides="true"
inkscape:guide-bbox="true" />
<metadata
id="metadata7">
<rdf:RDF>
<cc:Work
rdf:about="">
<dc:format>image/svg+xml</dc:format>
<dc:type
rdf:resource="http://purl.org/dc/dcmitype/StillImage" />
<dc:title>Security vs Usability</dc:title>
<dc:creator>
<cc:Agent>
<dc:title>Public Domain</dc:title>
</cc:Agent>
</dc:creator>
<dc:rights>
<cc:Agent>
<dc:title>Blagovest Petrov &lt;blagovest@petrovs.info&gt;</dc:title>
</cc:Agent>
</dc:rights>
<dc:publisher>
<cc:Agent>
<dc:title>Blagovest Petrov &lt;blagovest@petrovs.info&gt;</dc:title>
</cc:Agent>
</dc:publisher>
<dc:relation>http://petrovs.info</dc:relation>
<cc:license
rdf:resource="http://creativecommons.org/licenses/publicdomain/" />
</cc:Work>
<cc:License
rdf:about="http://creativecommons.org/licenses/publicdomain/">
<cc:permits
rdf:resource="http://creativecommons.org/ns#Reproduction" />
<cc:permits
rdf:resource="http://creativecommons.org/ns#Distribution" />
<cc:permits
rdf:resource="http://creativecommons.org/ns#DerivativeWorks" />
</cc:License>
</rdf:RDF>
</metadata>
<g
inkscape:label="Layer 1"
inkscape:groupmode="layer"
id="layer1"
transform="translate(0,-602.36218)">
<path
style="fill:none;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="M 41.416254,17.654711 38.385797,411.6142"
id="path3004"
inkscape:connector-curvature="0"
transform="translate(0,602.36218)" />
<path
style="fill:none;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="m 11.111678,382.31978 520.228562,2.0203"
id="path3006"
inkscape:connector-curvature="0"
transform="translate(0,602.36218)" />
<path
style="fill:none;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="M 53.538085,368.17764 508.10673,48.969439"
id="path3008"
inkscape:connector-curvature="0"
transform="translate(0,602.36218)" />
<path
style="fill:none;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="M 56.568543,25.735931 495.9849,365.14719"
id="path3010"
inkscape:connector-curvature="0"
transform="translate(0,602.36218)" />
<text
xml:space="preserve"
style="font-size:40px;font-style:normal;font-weight:normal;line-height:125%;letter-spacing:0px;word-spacing:0px;fill:#000000;fill-opacity:1;stroke:none;font-family:Sans"
x="59.599003"
y="627.08795"
id="text3012"
sodipodi:linespacing="125%"><tspan
sodipodi:role="line"
id="tspan3014"
x="59.599003"
y="627.08795"
style="font-size:18px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-family:Ubuntu;-inkscape-font-specification:Ubuntu">High Security</tspan></text>
<text
xml:space="preserve"
style="font-size:40px;font-style:normal;font-weight:normal;line-height:125%;letter-spacing:0px;word-spacing:0px;fill:#000000;fill-opacity:1;stroke:none;font-family:Sans"
x="442.32217"
y="1017.2481"
id="text3012-1"
sodipodi:linespacing="125%"><tspan
sodipodi:role="line"
id="tspan3014-9"
x="442.32217"
y="1017.2481"
style="font-size:18px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-family:Ubuntu;-inkscape-font-specification:Ubuntu">Low Security</tspan></text>
<text
xml:space="preserve"
style="font-size:40px;font-style:normal;font-weight:normal;line-height:125%;letter-spacing:0px;word-spacing:0px;fill:#000000;fill-opacity:1;stroke:none;font-family:Sans"
x="73.616486"
y="975.83185"
id="text3012-0"
sodipodi:linespacing="125%"><tspan
sodipodi:role="line"
id="tspan3014-6"
x="73.616486"
y="975.83185"
style="font-size:18px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-family:Ubuntu;-inkscape-font-specification:Ubuntu">Good Usability</tspan></text>
<text
xml:space="preserve"
style="font-size:40px;font-style:normal;font-weight:normal;line-height:125%;letter-spacing:0px;word-spacing:0px;fill:#000000;fill-opacity:1;stroke:none;font-family:Sans"
x="391.80872"
y="629.34955"
id="text3012-0-6"
sodipodi:linespacing="125%"><tspan
sodipodi:role="line"
id="tspan3014-6-4"
x="391.80872"
y="629.34955"
style="font-size:18px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-family:Ubuntu;-inkscape-font-specification:Ubuntu">Bad Usability</tspan></text>
<text
xml:space="preserve"
style="font-size:40px;font-style:normal;font-weight:normal;line-height:125%;letter-spacing:0px;word-spacing:0px;fill:#000000;fill-opacity:1;stroke:none;font-family:Sans"
x="292.94424"
y="812.95599"
id="text3002"
sodipodi:linespacing="125%"><tspan
sodipodi:role="line"
id="tspan3004"
x="292.94424"
y="812.95599"
style="font-size:18px;font-style:normal;font-variant:normal;font-weight:normal;font-stretch:normal;font-family:Ubuntu;-inkscape-font-specification:Ubuntu"> The point of happiness and good life</tspan></text>
<path
style="fill:none;stroke:#000000;stroke-width:1.12338746px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="M 41.77298,617.93573 30.36627,637.12779"
id="path3013"
inkscape:connector-curvature="0" />
<path
style="fill:none;stroke:#000000;stroke-width:1.14817786px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="m 40.714782,617.23384 12.749214,20.89171"
id="path3017"
inkscape:connector-curvature="0" />
<path
style="fill:none;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="m 530.33009,986.11053 -18.18275,-6.06092"
id="path3019"
inkscape:connector-curvature="0" />
<path
style="fill:none;stroke:#000000;stroke-width:1px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="m 529.31994,384.34008 c -1.34687,0 -2.69374,0 -4.04061,0"
id="path3021"
inkscape:connector-curvature="0"
transform="translate(0,602.36218)" />
<path
style="fill:none;stroke:#000000;stroke-width:0.87014532px;stroke-linecap:butt;stroke-linejoin:miter;stroke-opacity:1"
d="m 531.40517,985.62718 -14.50658,12.78215"
id="path3023"
inkscape:connector-curvature="0" />
</g>
</svg>

After

Width:  |  Height:  |  Size: 8.2 KiB

Loading…
Cancel
Save