Browse IS/STAG - Portál UTB

Skip to page content
Website UTB
Portal title page UTB
Anonymous user Login Česky
Browse IS/STAG
Login Česky
  • Welcome
  • Browse IS/STAG
  • Applicant
  • Graduate
  • Web services
  • ECTS
  • User Info
Welcome
Browse IS/STAG
Information for applicantsElectronic applicationECTS arrivals
Getting startedAlumni ClubAbsolvent - website
Web services
ECTS
User Info

1st level navigation

  • Welcome
  • Browse IS/STAG
  • Applicant
  • Graduate
  • Web services
  • ECTS
  • User Info
User disconnected from the portal due to long time of inactivity.
Please, click this link to log back in.
(Sessions are disconnected after 240 minutes of inactivity. Note that mobile devices may get disconnected even sooner).

Prohlížení IS/STAG (S025)

Help

Main menu for Browse IS/STAG

  • Programmes and specializations.
  • Courses
  • Departments
  • Lecturers
  • Students
  • Examination dates
  • Timetable events
  • Theses, selected item
  • Pre-regist. study groups
  • Rooms
  • Rooms – all year
  • Free rooms – Semester
  • Free rooms – Year
  • Capstone project
  • Times overlap
  •  
  • Title page
  • Calendar
  • Help

Search for a Thesis

Print/export:  Bookmark this link in your browser so that you may quickly load this IS/STAG page in the future.
Only logged-in user will see student personal numbers.

Dates found, count: 1

Search result paging

Found 1 records Print Export to xls List URL
  Surname Name Title Thesis status   Supervisors Reviewers Type of thesis Date of def. Title
Student Type of thesis - - - - - - - - - -
Item shown in detail Ježek Includes the selected person into the timetable overlap calculation. Petr A Security Analysis of the OpenText Content Server Electronic Document Management System A Security Analysis of the OpenText Content Server Electronic Document Management System Thesis finished and defended successfully (DUO).   Jašek Roman Kavka Libor Master's thesis 1623189600000 09.06.2021 A Security Analysis of the OpenText Content Server Electronic Document Management System Thesis finished and defended successfully (DUO).
Petr Ježek Master's thesis 0XX 0XX 0XX 0XX 0XX 0XX 0XX 0XX 0XX 0XX

Thesis info Bezpečnostní analýza systému pro správu elektronických dokumentů OpenText Content Server

  • Basic data
The document you are accessing is protected by copyright law. Unauthorised use may lead to criminal sanctions.
Name Ježek Petr Includes the selected person into the timetable overlap calculation.
Acad. Yr. 2020/2021
Assigning department AUEM
Date of defence Jun 9, 2021
Type of thesis Master's thesis
Thesis status Thesis finished and defended successfully (DUO). Thesis finished and defended successfully (DUO).
Completeness of mandatory entries - All mandatory fields for this Thesis are filled in.
Main topic Bezpečnostní analýza systému pro správu elektronických dokumentů OpenText Content Server
Main topic in English A Security Analysis of the OpenText Content Server Electronic Document Management System
Title according to student Bezpečnostní analýza systému pro správu elektronických dokumentů OpenText Content Server
English title as given by the student A Security Analysis of the OpenText Content Server Electronic Document Management System
Parallel name -
Subtitle -
Thesis supervisor Jašek Roman, prof. Mgr. Ph.D., DBA
External examiner Kavka Libor, Ing. Ph.D.
Annotation Tato bezpečnostní analýza systému pro správu elektronických dokumentů OpenText Content Server představuje přehled možných zranitelností a jejich řešení. Záměrem bylo představit jednotlivé části systému, jejich role a vliv na bezpečnost systému. A na základě těchto informací identifikovat možné zranitelnosti. Cílem bylo prozkoumat v praxi často přehlížené nebo starší části systému, jako jsou výchozí nastavení a integrované sofwarové komponenty třetích stran. Identifikované zranitelnosti, vektory útoku, taktika a techniky byly klasifikovány pomocí standardů MITRE. Výsledkem této práce je ověřený postup jak systém dodatečně zabezpečit.
Annotation in English This Security Analysis of the OpenText Content Server Electronic Document Management System provides an overview of possible weaknesses and creates a hardening guide for their mitigation. It aims to develop a better understanding of the system components, their functional role, and how they affect system security. Such an understanding helps to recognize possible weaknesses. The focus was mainly on overlooked or legacy parts of the platform, such as default settings and integrated third-party software components. Identified weaknesses, attack vectors, adversary tactics, and techniques were classified using MITRE standards. The hardening guide with tested steps is created as an outcome of this thesis.
Keywords OpenText, Content Server, Archive Server, Archive Center, Livelink, bezpečnostní analýza, kyberbezpečnost, podnikový
Keywords in English OpenText, Content Server, Archive Server, Archive Center, Livelink, security analysis, safety analysis, cybersecurity, enterprise
Length of the covering note 89 stran
Language AN
Annotation
Tato bezpečnostní analýza systému pro správu elektronických dokumentů OpenText Content Server představuje přehled možných zranitelností a jejich řešení. Záměrem bylo představit jednotlivé části systému, jejich role a vliv na bezpečnost systému. A na základě těchto informací identifikovat možné zranitelnosti. Cílem bylo prozkoumat v praxi často přehlížené nebo starší části systému, jako jsou výchozí nastavení a integrované sofwarové komponenty třetích stran. Identifikované zranitelnosti, vektory útoku, taktika a techniky byly klasifikovány pomocí standardů MITRE. Výsledkem této práce je ověřený postup jak systém dodatečně zabezpečit.
Annotation in English
This Security Analysis of the OpenText Content Server Electronic Document Management System provides an overview of possible weaknesses and creates a hardening guide for their mitigation. It aims to develop a better understanding of the system components, their functional role, and how they affect system security. Such an understanding helps to recognize possible weaknesses. The focus was mainly on overlooked or legacy parts of the platform, such as default settings and integrated third-party software components. Identified weaknesses, attack vectors, adversary tactics, and techniques were classified using MITRE standards. The hardening guide with tested steps is created as an outcome of this thesis.
Keywords
OpenText, Content Server, Archive Server, Archive Center, Livelink, bezpečnostní analýza, kyberbezpečnost, podnikový
Keywords in English
OpenText, Content Server, Archive Server, Archive Center, Livelink, security analysis, safety analysis, cybersecurity, enterprise
Research Plan
  1. Carry out a literary search on the topic of the work.
  2. Describe the document management system and its typical configuration.
  3. Describe and categorize possible threats and attack vectors.
  4. Design methods for security analysis of potential attack vectors.
  5. Evaluate the level of risk of the identified threats.
  6. Design appropriate solutions to eliminate threats.
  7. Evaluate the chosen solution.
Research Plan
  1. Carry out a literary search on the topic of the work.
  2. Describe the document management system and its typical configuration.
  3. Describe and categorize possible threats and attack vectors.
  4. Design methods for security analysis of potential attack vectors.
  5. Evaluate the level of risk of the identified threats.
  6. Design appropriate solutions to eliminate threats.
  7. Evaluate the chosen solution.
Recommended resources
  1. HENRIQUES DE GUSM ΑO, Ana Paula, MENDONÇA SILVA, Maisa, POLETO, Thiago, CAMARA E SILVA, Lúcio and CABRAL SEIXAS COSTA, Ana Paula, 2018. Cybersecurity risk analysis model using fault tree analysis and fuzzy decision theory. International Journal of Information Management. 1 December 2018. Vol. 43, p. 248–260. DOI 10.1016/j.ijinfomgt.2018.08.008.
  2. HUBBARD, Douglas W., SEIERSEN, Richard, GEER, Daniel E. and MCCLURE, Stuart, 2016. How to Measure Anything in Cybersecurity Risk. 1st edition. Wiley.
  3. KENNEDY, David, O’GORMAN, Jim, KEARNS, Devon and AHARONI, Mati, 2011. Metasploit: The Penetration Tester’s Guide. 1st edition. No Starch Press.
  4. REGALADO, Daniel, HARRIS, Shon, HARPER, Allen, EAGLE, Chris, NESS, Jonathan, SPASOJEVIC, Branko, LINN, Ryan and SIMS, Stephen, 2018. Gray Hat Hacking: The Ethical Hacker’s Handbook, Fifth Edition. 5th edition. McGraw-Hill Education.
  5. WEAR, Sunny, 2018. Burp Suite Cookbook: Practical recipes to help you master web penetration testing with Burp Suite. 1st edition. Packt Publishing.
Recommended resources
  1. HENRIQUES DE GUSM ΑO, Ana Paula, MENDONÇA SILVA, Maisa, POLETO, Thiago, CAMARA E SILVA, Lúcio and CABRAL SEIXAS COSTA, Ana Paula, 2018. Cybersecurity risk analysis model using fault tree analysis and fuzzy decision theory. International Journal of Information Management. 1 December 2018. Vol. 43, p. 248–260. DOI 10.1016/j.ijinfomgt.2018.08.008.
  2. HUBBARD, Douglas W., SEIERSEN, Richard, GEER, Daniel E. and MCCLURE, Stuart, 2016. How to Measure Anything in Cybersecurity Risk. 1st edition. Wiley.
  3. KENNEDY, David, O’GORMAN, Jim, KEARNS, Devon and AHARONI, Mati, 2011. Metasploit: The Penetration Tester’s Guide. 1st edition. No Starch Press.
  4. REGALADO, Daniel, HARRIS, Shon, HARPER, Allen, EAGLE, Chris, NESS, Jonathan, SPASOJEVIC, Branko, LINN, Ryan and SIMS, Stephen, 2018. Gray Hat Hacking: The Ethical Hacker’s Handbook, Fifth Edition. 5th edition. McGraw-Hill Education.
  5. WEAR, Sunny, 2018. Burp Suite Cookbook: Practical recipes to help you master web penetration testing with Burp Suite. 1st edition. Packt Publishing.
Týká se praxe No
Enclosed appendices CD ROM
Appendices bound in thesis illustrations, schemes
Taken from the library No
Full text of the thesis
Appendices
Reviewer's report
Supervisor's report
Defence procedure record file