Skip navigation

Stefan Kimak

PhD in Computer Science and Digital Technologies

This thesis presents an analysis of, and enhanced security model for IndexedDB, the persistent HTML5 browser based data store.

This thesis firstly argues that IndexedDB is insecure by design. That is, the design of IndexedDB means that every implementation is vulnerable to attacks such as Cross Site Scripting, and even data from databases that have been deleted may readily be stolen using appropriate software tools. This is demonstrated experimentally on both mobile and desktop browsers. IndexedDB is however capable of very high performance levels.This is demonstrated through the development of a formal performance model.

In the final component of this thesis, we propose and implement security enhancement that corrects the weaknesses in IndexedDB local storage. The enhancement uses multi factor authentication, and so is resistant to Cross Site Scripting attacks. This enhancement is then demonstrated experimentally, showing HTML5 IndexedDb may be securely used both on and offline.

Research Supervisors

  • Dr. Jeremy Ellman
  • Ms Shelagh Keogh

Key Publications

Some potential issues with the security of HTML5 indexedDB. / Conference paper

Performance Testing and Comparison of Client Side Databases Versus Server Side. / Conference paper

An Investigation into Possible Attacks on HTML5 IndexedDB and their Prevention. / Conference paper

 

Student profiles

a sign in front of a crowd
+

Northumbria Open Days

Open Days are a great way for you to get a feel of the University, the city of Newcastle upon Tyne and the course(s) you are interested in.

a person sitting at a table using a laptop
+
NU World Virtual Tours
+

Virtual Tour

Get an insight into life at Northumbria at the click of a button! Come and explore our videos and 360 panoramas to immerse yourself in our campuses and get a feel for what it is like studying here using our interactive virtual tour.

Latest News and Features

a map showing areas of ice melt in Greenland
S2Cool project lead Dr Muhammad Wakil Shahzad
The Converted Flat in 2049, by the Interaction Research Studio, is one of seven period rooms built as part of the Real Rooms project which opened in July at the Museum of the Home in London.
The UK Centre for Polar Observation and Modelling (CPOM), based at Northumbria University, has been awarded over £400,000 by the European Space Agency to investigate tipping points in the Earth’s icy regions with a focus on the Antarctic. Photo by Professor Andrew Shepherd.
Nature Awards Inclusive Health Research
Some members of History’s editorial team (from left to right): Daniel Laqua (editor-in-chief), Katarzyna Kosior (reviews editor), Lewis Kimberley (editorial assistant), Charotte Alston (deputy editor) and Henry Miller (online editor).
More news

Social

More events

Upcoming events

The Future of Evaluation in Health and Social Care Symposium
-
Policing in the Digital Society Conference: Opportunities and challenges in digital policing – theoretical and practical perspectives
-
Viruses of Microbes-UK (VoM-UK) Conference 2025
-
North East Solicitor Apprenticeship: Information Event

Back to top