Building Safe and Secure Website

What is cybersecurity?

It is a protection of internet-connected systems such as hardware, software and data from cyber-threats. The practice is used by individuals and enterprises to protect against unauthorized access to data centers and other computerized systems.

“One single vulnerabilities is all an attacker needs.” — Window Snyder

Look and Feel :

Website or else application is easily available for use in mobiles, tablets, laptops or any other devices like mega-screens or website in projectors. Like in mobiles, small screen is there and laptop has wider screen compared to mobile. So, screen adjustment should be there and this can be achieved via website or application easily. Also, font sizes and images also should be adjusted.

Technology :

Front-end : PHP, HTML, CSS, JAVASCRIPT.

Tool Used:

Notepad++ Text Editor

Flow of project :

Content of website :

Whole website is designed by following sequence : index page, features, contact us, registration page, login page, home page, deposit page, withdrawal page, check balance, logout, safety measures. Whole idea will be cleared by following images.

Want to see complete website?

Complete below video to get knowledge about how website looks like:

Hosting website on AWS :

Amazon Web Services(AWS) is a cloud platform for using different types of services without needing hardware but instead require only internet connection and one screen to see them. There are many cloud platforms like Microsoft Azure, Alibaba Cloud, IBM, Oracle cloud, Google cloud platforms(GCP) any many more. But compare to all, AWS is cheapest and also occupies 96% of total cloud platforms. First of all, I have created one VPC naming sgp having two subnets : public and private and in both of these subnets, EC2 instances are launched with inbound and outbound rules of security groups for allowing specific traffic to instances as well as NACLs(Network Access Control List) for denying specific traffic to instances along with internet gateway attached to public subnet for internet connectivity. Now, I have accessed public subnet through Putty software as instances are Linux AMI and also have accessed private instance through public subnet by using the concept of Bastion Host to make website more secure.

Database Service and enabling security services :

I have used Amazon RDS(Relational Database Service) and in that have used MySQL database to store information related to users and also try to enable security features provided by AWS like AWS WAF(Web Application Firewall) to prevent against SQL injection, AWS Shield to prevent against DDos(Distributed Denial of Service) attacks and has two levels as standard and advanced in which, advance level provides protection as well as detection, AWS SSO(Single Sign-On) service which provides unauthorized accesses from multiple users to same account and many more are available fo use. We can also create MySQL database tables through access of private EC2 instance.

Git Hub Link :

https://github.com/JanviAjudiya/Building-Secure-Website-on-AWS

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store