Geodesic
Development of an approach to ensuring information security
News of the Kabardin-Balkar scientific center of RAS, Tome 26 (2024) no. 1, pp. 39-47.

Voir la notice de l'article provenant de la source Math-Net.Ru

The aim of the research is to formulate general principles for ensuring information security in web-oriented information systems. The paper describes the main concepts of the Web Cryptography API interface, as well as presents practical aspects of using cryptographic methods to ensure data security in web-oriented information systems. The proposed approach, based on the introduction of a secure system for generating and storing users private keys through the use of the asynchronous ECDSA encryption algorithm via the Web Cryptography API interface, combined with encrypting private keys with passphrases and additional user authentication, allows a high level of protection of private keys from unauthorized access.
Keywords: Web Cryptography API, cryptography, electronic signature, electronic document management, ECDSA 
@article{IZKAB_2024_26_1_a3,
     author = {M. V. Stupina},
     title = {Development of an approach to ensuring information security},
     journal = {News of the Kabardin-Balkar scientific center of RAS},
     pages = {39--47},
     publisher = {mathdoc},
     volume = {26},
     number = {1},
     year = {2024},
     language = {ru},
     url = {http://geodesic.mathdoc.fr/item/IZKAB_2024_26_1_a3/}
}
TY  - JOUR
AU  - M. V. Stupina
TI  - Development of an approach to ensuring information security
JO  - News of the Kabardin-Balkar scientific center of RAS
PY  - 2024
SP  - 39
EP  - 47
VL  - 26
IS  - 1
PB  - mathdoc
UR  - http://geodesic.mathdoc.fr/item/IZKAB_2024_26_1_a3/
LA  - ru
ID  - IZKAB_2024_26_1_a3
ER  - 
%0 Journal Article
%A M. V. Stupina
%T Development of an approach to ensuring information security
%J News of the Kabardin-Balkar scientific center of RAS
%D 2024
%P 39-47
%V 26
%N 1
%I mathdoc
%U http://geodesic.mathdoc.fr/item/IZKAB_2024_26_1_a3/
%G ru
%F IZKAB_2024_26_1_a3
M. V. Stupina. Development of an approach to ensuring information security. News of the Kabardin-Balkar scientific center of RAS, Tome 26 (2024) no. 1, pp. 39-47. http://geodesic.mathdoc.fr/item/IZKAB_2024_26_1_a3/

[1] E. T. Mekhdiev, E. A. Plekhanova, “Development of electronic document management systems in the digital economy”, Discussion, 2023, no. 1 (116), 58–70 (In Russian) | DOI | DOI

[2] E. I. Goncharov, T. V. Shatkovskaya, “Problems of using digital signatures in electronic document management in Russia”, North Caucasian Legal Bulletin, 2020, no. 2, 97–103 (In Russian) | DOI

[3] A. S. Baranov, “Use of cryptographic information protection tools in organizations”, International Scientific Research Journal, 2020, no. 6-1(96), 131–133 (In Russian) | DOI | MR

[4] M. D. Bylinskiy, “Protecting JavaScript applications using the Web Cryptographs Api”, Bulletin of the Baltic Federal University. I. Kant. Series: Physics, mathematics and technical sciences, 2022, no. 1, 53–60 (In Russian)

[5] K. Cairns, H. Halpin, G. Steel, “Security Analysis of the W3C Web Cryptography API”, Proceedings of Security Standardisation Research (SSR), 2017, 112–140 (Gaithersberg) | DOI

[6] P. Wichmann, M. Blochberger, H. Federrath, “Web Cryptography API”, In Proceedings of the 17th International Conference on Availability, Prevalence and Possible Developer Mistakes., Reliability and Security (ARES '22). Association for Computing Machinery, 2022, 1–10 (New York) | DOI

[7] A. Samir, M. Abo-Taleb, Shalaby, M. Nabil, S. Elramly, “A Side-Channel Attack Resistive ECDSA”, Journal of Physics: Conference Series, International Conference on Advanced Information Systems and Engineering, Cairo, Egypt, 2019, 112–140 | DOI