Secure Password Manager
The project is to develop a web-based password manager that enables users to securely store and manage their sensitive website credentials. This password manager will be designed to offer a user-friendly experience while focusing on robust encryption and application security. Users will access their stored credentials through a secure master password and multi-factor authentication, which acts as the gateway to their encrypted vault. Additionally, there's a stretch goal of creating a web browser extension for auto-detect and auto-fill functionality.
Objectives
The project's primary objectives and deliverables include:
- A fully functional web-based password manager that allows users to register, log in/out, and securely store their website credentials in an encrypted vault.
- Multi-factor authentication when the user logs in with their master password.
- A password suggestion feature that generates strong, unique passwords based on user input.
- Robust encryption and security mechanisms to protect user data in the vault.
- Secure hosting of the application in the cloud.
- Documentation and user guides for the application.
- A stretch goal: The development of a web browser extension that can auto-detect and auto-fill login credentials on websites.
Motivations
The motivation behind this project stems from the growing need for secure password management solutions in today's digital age. Passwords are a fundamental aspect of online security, and many people struggle with creating and managing strong, unique passwords for various websites. While there are existing password managers, a fully open-source, non-commercial option would be more accessible to people of all incomes and allow users to vet our security measures themselves. This project aims to simplify and enhance password management while addressing real-life problems:
- Impact: This project directly impacts individuals who want to safeguard their online accounts by offering them a secure and convenient way to manage their passwords.
- Helpfulness: It's helpful as it promotes better password practices, reduces the risk of password-related breaches, and enhances overall online security.
- Problem Solving: It addresses the problem of password-related security breaches due to weak or reused passwords by providing a secure and user-friendly solution.
Qualifications
Minimum Qualifications:
To successfully complete this project, the team should possess or acquire the following skills and knowledge:
- Web development skills, including proficiency in web languages (HTML, CSS, JavaScript), and experience with front-end web frameworks like React, Angular, or Vue.js.
- Knowledge of back-end development and database management, possibly with technologies like Spring Boot, Node.js, Flask, Django, FastAPI, or Ruby on Rails.
- Understanding of cryptography principles, encryption algorithms, and secure data storage techniques.
- Proficiency in Version Control System (e.g., Git/GitHub) for code versioning and collaboration.
- Familiarity with cloud hosting platforms (e.g., AWS, Azure, or Google Cloud).
- Awareness of web security best practices and experience in securing web applications against common threats.
- Collaboration and project management skills for effective teamwork and project coordination.
- For the stretch goal of the browser extension, knowledge of browser extension development (e.g., Chrome Extensions or Firefox Add-ons) would be beneficial.
None Listed
Details
Project Partner:
Samarendra Hedaoo
NDA/IPA:No Agreement Required
Number Groups:1
Project Status:Accepting Applicants