Investigating Secure Implementation of Government Web based Systems in Tanzania

Simple item page
dc.contributor.authorKondoro, Aron
dc.contributor.authorMtebe, Joel
dc.date.accessioned2019-04-15T18:42:49Z
dc.date.available2019-04-15T18:42:49Z
dc.date.issued2018-08
dc.description.abstractThe government of Tanzania has been adopting various webbased systems to improve public services to its citizens. With these systems being online, security and privacy have started to play a key role. Many systems use HTTP over Transport Layer Security (HTTPS) to secure their web front ends. However, many HTTPS implementations still suffer from several security and privacy problems. This study investigated the security of HTTPS implementations government webbased systems in Tanzania. Using a sample of 74 government web-based systems, an automated tool testssl was used to check for well-known HTTPS/SSL vulnerabilities, configuration mistakes, support for outdated and vulnerable protocols, and adherence to HTTPS best practices. Results show that 43% of web systems have serious HTTPS security issues due to vulnerabilities, and configuration mistakes. These issues can lead to system com- promise, disclosure of sensitive information, and loss of privacy to citizens. The study highlights these security issues that may have been overlooked and offers suggestions that may prevent them in the futureen_US
dc.identifier.urihttp://hdl.handle.net/20.500.11810/5183
dc.titleInvestigating Secure Implementation of Government Web based Systems in Tanzaniaen_US
dc.typeJournal Articleen_US
Files
Original bundle
Now showing 1 - 1 of 1
Thumbnail Image
Name:
kondoro-2018-ijca-917712.pdf
Size:
531.35 KB
Format:
Adobe Portable Document Format
Description:
Download
License bundle
Now showing 1 - 1 of 1
No Thumbnail Available
Name:
license.txt
Size:
1.71 KB
Format:
Item-specific license agreed upon to submission
Description:
Download
Collections
Department of Computer Science and Engineering