Projekt
Web Shop Under Attack
The course includes one project assignment. This is a programming project in which you will create a small but essentially fully functional web shop. You will secure your web shop against some common web threats, and you will demonstrate how some of these attacks work and how to mitigate them.
The project must be completed in groups of 3-4 people. In order to be assigned to a group use the following link: https://eitf05.eit.lth.se/
Note: If you wish to work with a partner it is enough that one of you registers.
Your group will produce and hand in three deliverables:
- a written report bundle,
- source code and configuration files httpd.conf and php.ini for your web shop,
- material for the oral presentation.
The project groups are divided into small clusters of 3 (or 2) project groups, and you will make an oral presentation in English for Pegah and the groups in your cluster.
You will both provide and receive feedback on written and oral presentations, as specified in the detailed project instructions below.
Project documents
Detailed project instructions: TBA
Functionality review form: TBA
Contribution statement form: TBA
Action list
TBA, book presentation time for your cluster (agree on a time, time slots listed below), email Pegah.
TBA, book functionality review time for your review groups.
TBA, mail your report to your reviewers, cc Pegah.
TBA, mail your reviews to your peers, cc Pegah.
TBA, mail your report bundle to Urkund, mail your code and configuration files for both web server and PHP to Pegah.
Day before scheduled presentation by 23.59, mail presentation slides (pdf) to Pegah.
Grouping
See separate grouping menu TBA for project group and cluster definitions.
Functionality reviews
Functionality reviews are performed by the project groups pairwise, according to the detailed project description and the functionality review form. All group members must participate and teacher attendance is mandatory. The following dates and times have been reserved.
TBA.
How to book a time slot for the functionality review? TBA.
Office hours
Pegah is available at her office in E:3116c for IRL consultation when at office on Wednesdays and Fridays. Please respect these office hours (or office days)!
At other hours, you may use Pegah's 24/7 mailing service. That is, you can email your question to Pegah at any time, and Pegah will answer as soon as it is conveniently possible to do so.
Available slots for oral presentation (room TBA):
If you need only the presentation slides that you handed in (pdf format), Pegah will bring those.
You may then use Pegah's computer for your presentation, if you wish to.
If you want to use anything other than a pdf presentation, bring your own computer.
There is a projector in TBA with HDMI and VGA connectors.
TBA.
How to book a time slot for presentation? Email Pegah.
Booked presentation slots (cluster-sorted):
Booked presentation slots (time-sorted):