GDPR consulting including implementation of current encryption techniques for websites
Project duration: 10 months
Brief description
Consultative support in the review and introduction of GDPR compliant processes, which will be carried out in the following steps: Determination of relevant user data worth protecting on several websites of the customer; analysis, implementation and introduction of current encryption techniques for the websites and/or their existing access data. Depending on the further development plans of the websites, different encryption/hash value methods are used to protect the extensive data stock.
Supplement
Depending on the case, these algorithms are used: Rijndael, PBKDF2. The implementation has been taken over in further projects of the customer. The web applications are based partly on a two-layer, partly on a three-layer, service-oriented architecture. The development takes place in ASP.NET with C# in Visual Studio 2017, based on the .NET 4.5.2 framework. The applications are realized as modular and extensible internet applications.
Subject description
The web pages contain protected areas which can only be reached via a login mask. The encryption technique must be implemented in such a way that users do not notice any difference when logging in. The adaptation must be completely transparent and previous access data must continue to function. The access data itself has already been recorded in advance in a sufficiently complex manner.