Meeting Notes

meeting - 09-05-2021 :

  • We have completed the preparation of the contract between the members of the group. Will be sent soon to the course lecturer.
  • Meet again this week this coming Wednesday at 19:00 England time. Before the meeting, each member of the group will review the NASA document. We will decide what development we are going for.
  • We will update the lecturer and ask her opinion this coming Thursday.
  • meeting – 12-05-2021 :

    Attendees: David , Evangelos, Adam Cox , Uzayr , Yohay
  • We brainstormed some ideas as to the assignment.
  • Adam suggested - Resource management feature. We all agreed.
  • Adam prepared the proposal to be discussed with the tutor – on 13-05-2021.
  • Walkthrough "draft work plan proposal" for the first assignment. The actual due date and responsibilities will be assigned soon.
  • meeting -15-05-2021 :

    Attendees: David , Evangelos, Adam Cox , Uzayr , Yohay
  • "Brainstorm" as to Class to be included in the assignment.
  • We will consider not including the "Research" objects.
  • Areas for responsibilities:
  • Adam - Docking Breakdown
  • Yohay - Resource Management Breakdown
  • Uzar - Accounts Breakdown
  • David - Exercise Breakdown
  • Evangelos – Accounts
  • For the breakdowns, we have decided to consider what classes/objects are involved in the feature, what the steps/process will look like and we can have a little think about security concerns. We do not need diagrams yet though.
  • Next meeting – Tuesday 18-05-2021, 19:00 UK time.
  • meeting – 26-05-2021 :

  • Our deadline for completing the first assignment is 10-06-2021.
  • More tasks to the team. (Encryption, logging).
  • Secure programing language – team discussion.
  • We all agree that at the end of the day the most important factor is the work and the approach of the programmer. In Python, the "import" functionality is problematic. Python modules can get access to code from another module by importing the file/function using import. You can import a code that is vulnerable to attacks without your knowledge.
  • Meeting with Dr Peoples – 28-05-2021, 10:30 UK time.
  • Next meeting Monday 31-05-2021 19:00 UK time.

    meeting – 28-05-2021 :

    Attendees: Dr Peoples, Adam Cox, Uzayr, Yohay.
  • Walkthrough the design document of the team.
  • Get excellent feedback from Dr Peoples.
  • Functional / Nonfunctional requirements. The differences between the two. Sequence of the Diagrams. Start with the Use case diagram. Move the diagrams to an appendix. Delete unnecessary sentences. Make "logging" / "secure channels" more prominent in diagrams.
  • meeting – 05-06-21 :

    Attendees: David, Evangelos, Adam Cox, Uzayr, Yohay.
  • Adam will carry on with the document & SQL.
  • Uzayr – Privacy issues.
  • David – references.
  • Evangelos – Logging & Encryption.
  • Yohay – ERD & SQL tables.
  • meeting – 05-06-21 :

    Attendees: David, Evangelos, Adam Cox, Uzayr , Yohay.
  • Adam will carry on with the document & SQL.
  • Uzayr – Privacy issues.
  • David – references.
  • Evangelos – Logging , Encryption ,MFA
  • Yohay – ERD & SQL tables.
  • meeting – 14-06-21 :

    Attendees: David, Adam Cox, Uzayr , Yohay.
  • Adam shows us the prototype that he worked on.
  • User & Password (excellent stuff).
  • We discussed the approach forward.
  • Logging (keep it simple).
  • Encryption.
  • Monitoring.
  • The importance of Security vs. Functionality.
  • How are we going to organize the code?
  • Meeting tomorrow the same time

    meeting – 15-06-21 :

    Attendees: David, Adam Cox, Uzayr , Yohay.
  • Synchronize the code with all the team members.
  • Walk through the code and share ideas about the security issues.
  • Next meeting 17-06-2021.
  • meeting – 17-06-21 :

    Attendees: David, Adam Cox, Uzayr , Yohay.
  • Discuss the issue of Two-Factor Authentication with Authy, Python and Flask – Uzayr.
  • Adam explains his (excellent) coding.
  • Walkthrough item's consumptions in the ISS – Yohay.
  • We try to find a unified approach for the coding.
  • Ideas as to how to integrate the code coming from each member of the team.
  • David had some problems with the code in his computer.
  • Yohay had some problems with the directories structure.
  • This week we will focus on the programming and next week will be more into security:
  • Logging.
  • Encryption.
  • Authentication.
  • Tasks are assigned to each member of the team.
  • Next meeting 19-06-2021.
  • meeting – 19-06-21 :

    Attendees: David, Adam Cox, Uzayr , Yohay. Tasks to the team:
  • David exercise.
  • Uzayr login.
  • Yohay consumption.
  • Adam Integration.
  • meeting – 21-06-21 :

    Attendees: David, Adam Cox, Uzayr , Yohay. Tasks to the team:
  • David exercise -very good.
  • Uzayr login -very good.
  • Yohay consumption-very good..
  • Adam the way forward.
  • meeting – 23-06-21 :

    Attendees: Adam Cox, Uzayr , Yohay.
  • Testing the application.
  • Discussion about Json.
  • Encryption.
  • Logging.
  • Carry on with the assignment.
  • meeting – 26-06-21 :

    Attendees: Adam Cox, Uzayr, Yohay.
  • PowerPoint presentation. List of security issues:
  • Encryption.
  • Database.
  • Communication.
  • Logging.
  • Monitoring.
  • Secure SQL injection.
  • Input validation.
  • Library vulnerability.
  • Access control – Admin.
  • Good coding practice (and comments).
  • Next meeting 28-06-2021.
  • meeting – 28-06-21 :

    Attendees: Adam Cox, Uzayr, David , Yohay.
  • PowerPoint presentation.
  • Yohay's Python problem with "from cryptography…."
  • Perpetration for the assignment.
  • Next meeting 30-06-2021.
  • meeting – 30-06-21 :

    Attendees: Adam Cox, Uzayr, David , Yohay.
  • Encryption (Passwords).
  • API logging.
  • Python vulnerability – using https://pypi.org/project/safety/.
  • Next meeting – 01-07-2021.
  • meeting – 1-07-21 :

    Attendees: Anrich Potgieter (from team 3 ), David , Yohay. One way as to how to use GitHub in a project:
  • Different programmers working on one system.
  • Git clone in my PC.
  • Git ignore.
  • Create Branch.
  • Make changes to the code(locally).
  • Push the changes to Git.
  • New Pull request in Git.
  • Merge pull request.
  • Delete the branch.
  • Switch Back to main (locally).
  • Pull the changes.
  • meeting – 1-07-21 :

    Attendees: Uzayr , David, Yohay.
  • Encryption password, problem with the key file.
  • Different attempts by the team to solve the issue.
  • Next meeting 03-07-21.
  • meeting –03-07-21 :

    Attendees: Uzayr , David, Yohay
  • Solve the problem of the encryption of a password.
  • Next working on Logging / Monitoring.
  • Next meeting 04-07-2021.
  • meeting –04-07-21 :

    Attendees: Uzayr , David, Yohay
  • Git Hub – download & upload.
  • Adam logging method. (backend->Servr.py), logging.basic.config.
  • Encryption password working on Yohay's machine. Problem solved.
  • Problems with David machine. Solved.
  • Next meeting 05-07-21.
  • meeting – 5-07-21 :

    Attendees: Adam, Uzayr, David , Yohay. This is the list of security features we will have implemented:
  • Logging
  • HTTPS Protocol
  • Encrypted passwords
  • Vulnerability
  • Monitoring
  • Multi-factor authentication
  • Privileges (basic)
  • Auth authorization (to be done).
  • Other issues to be discussed with Dr Peoples. Meeting ASAP.
  • meeting – 10-07-21 :

    Attendees: Adam, Uzayr, David , Yohay.
  • Working on presentation.
  • meeting – 11-07-21 :

    Attendees: Adam, Uzayr, David , Yohay.
  • Working on presentation.
  • meeting – 13-07-21 :

    Attendees: Adam, Uzayr, David, Yohay.
  • Working on presentation.
  • meeting – 14-07-21 :

    Attendees: Adam, Uzayr, David, Yohay.
  • Working on presentation.