Your security is elevated through the use of zero-knowledge encryption, but you need to make sure it's working. In this video, learn how to write a unit test to ensure that the server data is fully encrypted for a user.
- [Instructor] We're going to unit test … the creation of a new journal entry. … Recall that journal entries are encrypted … on the client's side. … To test Zero-knowledge encryption, … we start by creating the client's side key. … And we have to pad the key … for this particular algorithm. … And we also have to be 64 encoding … a mobile app client or web browser client … or desktop client can generate the private key used … to encrypt this message. … So this client side key outside of tests will be generated … on the client side. … So our plain text message will just be "hello world" … and we have to encode it. … And our encrypted text, … which will be encrypted on the client side, … using the client side key … will be done like this using Fornet. … You can use any other algorithm on the client side, … as long as the user has that key. … We also need to make sure … that the encrypted text is a list of bytes. … And then we're ready to assemble the rest API data … we're going to send over. …
Skill Level Advanced
Building a Paid Membership Site with Djangowith Nick Walter1h 15m Intermediate
OWASP Top 10: #7 XSS and #8 Insecure Deserializationwith Caroline Wong26m 31s Intermediate
Building RESTful Web APIs with Djangowith Rudolf Olah1h 9m Intermediate
1. Permissions, Access Controls, Activity Logs
2. Throttling a Flood of Requests
3. Protecting Data and Data Privacy
4. 2FA: Two-Factor Authentication
5. CSRF: Cross-Site Request Forgery Protection
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.