logo

Database

Need

Enforcement of strong, unique credentials for system access

Context

• Usage of Java for building scalable and robust applications

• Usage of javax.servlet.http.HttpServletRequest for handling HTTP requests in Java Servlets

• Usage of HttpServletResponse for handling HTTP responses in Java Servlets

• Usage of javax.servlet.ServletException for handling servlet exceptions in Java web applications

• Handling IOException in Java Input/Output operations

• Usage of javax.servlet.RequestDispatcher for dispatching requests to server-side resources

Description

1. Non compliant code

import javax.servlet.http.*;
import javax.servlet.*;
import java.io.*;

public class LoginServlet extends HttpServlet {
    
    protected void doPost(HttpServletRequest request, HttpServletResponse response) throws ServletException, IOException {
        String password = request.getParameter("password");...

The above code is a simple servlet that handles login requests. It checks if the username and password provided in the request match the default credentials, which are both set to "admin". This is a clear example of a system with enabled default credentials vulnerability. The default credentials "admin" for both username and password are hard-coded into the system. These credentials are weak and can be easily guessed or discovered, posing a serious security threat. An attacker could easily gain access to the system by using these default credentials, potentially leading to unauthorized access to sensitive data or functionality. This vulnerability can be exploited through a simple brute force attack, where the attacker tries different combinations of commonly used usernames and passwords until they find a match. Because the credentials are set to "admin", a very common default credential, it wouldn't take long for an attacker to gain access. In addition, the use of hard-coded credentials in the source code also means that every instance of this application will have the same default credentials, making it even easier for an attacker to gain unauthorized access. This vulnerability could be mitigated by removing the hard-coded credentials and implementing a proper authentication system, where users are required to set their own unique, strong passwords.

2. Steps

• Avoid using default credentials for authentication.

• Implement a strong and secure authentication mechanism.

• Use a secure password storage mechanism, such as hashing and salting.

• Enforce password complexity requirements.

• Implement account lockout mechanisms to prevent brute-force attacks.

• Regularly update and patch the system to address any security vulnerabilities.

• Perform security testing and code reviews to identify and fix any potential vulnerabilities.

3. Secure code example

import javax.servlet.http.*;
import javax.servlet.*;
import java.io.*;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;
import java.security.SecureRandom;

    ...

The updated code now includes a secure password storage mechanism. Instead of storing and comparing passwords in plain text, we are now hashing the password using SHA-512 and a salt. The salt is a random string that is used to add additional randomness to the hashing process. This makes it more difficult for an attacker to use precomputed tables (rainbow tables) to crack the password. The `get_SHA_512_SecurePassword` method is used to generate a hashed password. It takes the plain text password and the salt as input, and returns the hashed password. In the `doPost` method, we now hash the input password and compare it with the hashed password retrieved from the database. This means that even if an attacker manages to get the hashed password, they will not be able to reverse-engineer it to get the original password. Please note that this is a basic implementation and might not cover all security aspects. For a production system, consider using a well-tested authentication library or framework. Also, the salt should be securely stored and retrieved, and it should be unique for each user.