Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • harvard-cite-them-right
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Säkerställa information för myndigheter i ett kontrollsystem för kassaregister: En studie med fokus på sårbarhetsanalys
University of Borås, Faculty of Librarianship, Information, Education and IT.
2021 (Swedish)Independent thesis Basic level (degree of Bachelor), 10 credits / 15 HE creditsStudent thesisAlternative title
Secure information for authorities in a cash register control system : A study focusing on vulnerability analysis (English)
Abstract [en]

With a control system for cash registers, the Swedish Tax Agency intends to make transaction data available in a more flexible way by transferring data to a database server. The transaction data of the control system are private and must be protected. However, systems that are connected to a network can be vulnerable to cybersecurity attacks where attackers use security vulnerabilities to steal, modify, and destroy private and sensitive information. To contribute to new knowledge, the aim of this thesis was to research and present which type of vulnerabilities could be present in a control system for cash registers. In addition, an appropriate method that could be used in future research was created for the use of penetration tests in a control system or similar systems. To gather empirical data, an observation of the use of the penetration tests as well as the results obtained by the tests were made. The results of the penetration tests showed that, the data generally are transferred in a secure manner but a severe type of vulnerability in the Oracle database server was also found. In this study, the exploitation of the vulnerability was left out of scope. We have not proven that the vulnerability who was found could be exploited and whether confidentiality, integrity and availability could be compromised in the event of a successful attack.

Place, publisher, year, edition, pages
2021.
Keywords [sv]
Informationsarkitektur, Informationssäkerhet, Cybersäkerhet, Kontrollsystem, Konfidentialitet, Integritet, Tillgänglighet, Penetrationstest
National Category
Information Studies
Identifiers
URN: urn:nbn:se:hb:diva-26564OAI: oai:DiVA.org:hb-26564DiVA, id: diva2:1600019
Available from: 2021-10-07 Created: 2021-10-04 Last updated: 2022-03-02Bibliographically approved

Open Access in DiVA

fulltext(1088 kB)212 downloads
File information
File name FULLTEXT01.pdfFile size 1088 kBChecksum SHA-512
5da443d0028dc52cb3c4cec09836f391dbf6eac8b6a3ce69c830a169b71a8d5340940626c7208e06046d3603711ddab16161d89fdcbca1dae2cfa57ae69e9b4a
Type fulltextMimetype application/pdf

By organisation
Faculty of Librarianship, Information, Education and IT
Information Studies

Search outside of DiVA

GoogleGoogle Scholar
Total: 212 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 192 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • harvard-cite-them-right
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf