MARC details
| 000 -LEADER |
|---|
| fixed length control field |
02697nam a2200277 4500 |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| Qualifying information |
hardback |
| 040 ## - CATALOGING SOURCE |
|---|
| Original cataloging agency |
Universiti Teknologi Brunei |
| Language of cataloging |
eng |
| Transcribing agency |
UTB |
| 084 ## - BOOK Call Number |
|---|
| Classification number |
UTB 120 REPORT, THESIS & DISSERTATION |
| -- |
RTDS 280 |
| 100 1# - MAIN ENTRY--PERSONAL NAME |
|---|
| Personal name |
Nurul Intan Baizura Bte Hj Emran |
| Relator term |
Author |
| 245 10 - TITLE STATEMENT |
|---|
| Title |
Security Testing of Applications Based on Threat Modelling / |
| Statement of responsibility, etc. |
Nurul Intan Baizura Bte Hj Emran |
| 260 ## - PUBLICATION, DISTRIBUTION, ETC. (IMPRINT) |
|---|
| Place of publication, distribution, etc. |
Brunei Darussalam : |
| Name of publisher, distributor, etc. |
Universiti Teknologi Brunei , |
| Date of publication, distribution, etc. |
© 2019 . |
| 300 ## - PHYSICAL DESCRIPTION |
|---|
| Extent |
x, 249 Pages : |
| Other physical details |
color illustrations , photographs, charts ; |
| Dimensions |
30 cm. |
| 500 ## - GENERAL NOTE |
|---|
| General note |
Report submitted for the degree of Bsc in Computer Network and Security Universiti Teknologi Brunei. |
| 500 ## - GENERAL NOTE |
|---|
| General note |
Abstract<br/>Mobile devices have outnumbered PCs and laptops to become the prime medium for accessing content and services. Due to its ability to handle many useful and creative applications, enterprises are rapidly adopting innovative applications to transform their business capabilities as the mobile presence is critical for businesses to attract new customers. While Android, the most popular open-source mobile platform, has its own set of permissions to protect the device and resources, however, it does not provide a security framework to defend against any attack. Hence, it is imperative to make the applications more secure and reliable. In this project a threat modelling process will be conducted on local existing applications from Google Play Store with objectives to identify the possible threats and vulnerabilities with reference to OWASP top 10 security risks. These vulnerabilities are then to be rated according to its risk of exploitation, among several application for comparisons by using DREAD. Penetration testing were also carried out to test the security of the application by following the freely available mobile security testing guide by OWASP. Microsoft's STRIDE tools are the features used for threat modelling process and an open source tools such as Kali Linux, Burpsuite, MobSF and Drozer etc for implementing the penetration testing. |
| 504 ## - Bibliography, Etc. Note |
|---|
| Bibliography, Etc. Note |
Includes bibliography references. |
| 610 #4 - SUBJECT ADDED ENTRY--CORPORATE NAME |
|---|
| Form subdivision |
FInal Year Project |
| Corporate name or jurisdiction name as entry element |
Unievrsiti Teknologi Brunei |
| 650 #4 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name entry element |
Application software |
| General subdivision |
Testing. |
| 650 #4 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name entry element |
Computer security. |
| 650 #4 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name entry element |
Threat modeling (Computer security) |
| 710 ## - ADDED ENTRY--CORPORATE NAME |
|---|
| Corporate name or jurisdiction name as entry element |
Universiti Teknologi Brunei |
| Subordinate unit |
School of Business Computer Network and Security |
| 942 ## - ADDED ENTRY ELEMENTS (KOHA) |
|---|
| Source of classification or shelving scheme |
Local Classification |
| Suppress in OPAC |
No |
| Koha item type |
Reports, Thesis & Dissertation Students |
| 998 ## - LOCAL CONTROL INFORMATION (RLIN) |
|---|
| Internal field |
Reports, Thesis & Dissertation |
| CC (RLIN) |
850421 : 0020237 c. 1_UTB |
| Internal field |
Universiti Teknologi Brunei |
| 998 ## - LOCAL CONTROL INFORMATION (RLIN) |
|---|
| Internal field |
CD- ROM |
| CC (RLIN) |
850422 : CD no. RTDS CD 30 UTB |
| Internal field |
Universiti Teknologi Brunei |
