This exercise (50 points) uses the AWS Cloud9 environment develop and fully test a set of tools and Web Forms to perform the following functionality This exercise involves creating a web application using Python within the AWS Cloud9 environment. The primary functionalities include user authentication with a password login form, a password update form, and comprehensive security measures aligned with NIST SP 800-63B standards. Additionally, the project entails implementing logging and log analysis features, as well as IP geolocation capabilities. Specifically, the application should allow users to log in with a username and password stored in a file. Following successful login, users are greeted and given the option to update their password. The password update process must validate the new password against security criteria, including length restrictions and against a list of commonly used or compromised passwords stored in a file named CommonPasswords.txt. The system must also incorporate rate limiting, locking out or restricting attempts after 15 failed login or password update attempts to prevent brute-force attacks. The application requires several Python functions that verify passwords according to NIST guidelines, including length requirements, password commonality checks, and attempt rate limiting. Failed login attempts are to be logged with timestamp, IP address, and date. A log analysis application must process these logs to identify IP addresses with suspicious activity, specifically those with more than ten failed attempts within five minutes. The analysis also includes geolocation of these IP addresses using the ip2geotools library, retrieving latitude and longitude coordinates. The project leverages Flask for web form handling, file I/O for user and password data, and Python data structures such as lists for efficient password checks. Network-related data, like IP addresses, is obtained using Flask’s request object. The ip2geotools library facilitates geolocation. The system design emphasizes modularity, reusability, and adherence to security best practices, providing a comprehensive solution to password management and security monitoring in a cloud-hosted web application environment.
Paper For Above instruction Secure Password Management System with Geolocation Analysis Secure Password Management System with Geolocation Analysis In the modern digital landscape, security is paramount, especially concerning user authentication processes. The development of a secure, modular, and user-friendly application that adheres to established