Software security

Prompt

A business you are working with has a public key that they are hoping to distribute to clients. Their clients want to download the public key from a website and verify the key with a checksum. To accomplish this, you will need to code a simple string checksum verification program. In addition, you will need to document your process by completing the provided template.

Algorithm Cipher: Review the scenario and the Java Security Standard Algorithm Names, which is a standard list of algorithm ciphers provided by Oracle. Recommend an appropriate encryption algorithm cipher that avoids collisions. Document your recommendation in the template provided.

Justification: Justify your reasoning for the recommended algorithm cipher by providing a brief, high-level overview of the encryption algorithm cipher. Consider what it means to avoid collisions. Why is this important? Document your recommendation in the template provided.

Generate Checksum: Refactor the code to encrypt a text string and generate a checksum verification. First, download the code base and upload it to Eclipse as a new project. Refactor the code to add your first and last name as a unique data string. You will submit your refactored code for your instructor to review. Then generate the checksum by following these steps:

1. Create an object of MessageDigest class using the java.security.MessageDigest library.
2. Initialize the object with your selection for an appropriate algorithm cipher.
3. Use the digest() method of the class to generate a hash value of byte type from the unique data string (your first and last name).
4. Convert the hash value to hex using the bytesToHex function.
5. Create a RESTFul route using the @RequestMapping method to generate and return the required information, which includes the hash value, to the web browser.

Verification: Demonstrate that a hash value has been created for the unique text string (your first and last name) by executing the Java code. Then use your web browser to connect to the RESTful API server. This should show your first and last name as the unique data string in the browser, the name of the algorithm cipher you used, and the checksum hash value. Capture a screenshot of the web browser with your unique information and add it to the template provided. An example of the expected output is shown below:

Guidelines for Submission

Submit (1) your refactored code and (2) the completed Checksum Verification Assignment Template that contains all the necessary elements as identified in the prompt and rubric.