Development and Employment of Cyber Security of e201 File Web Application for Data Center College of the Philippines of Laoag City, Inc.

Abstract

Web-based systems in today's interconnected world play a vital role and need of enhanced cybersecurity measures to protect sensitive information since cybercrimes are increasing rapidly. The focus of the study is on the development of an e201 file web application for the Data Center College of the Philippines which will be accessed through a web browser. The objective study is to evaluate the cybersecurity of the developed application, particularly in handling essential personnel records using confidential data OWASP ZAP security testing tool and its software quality based on ISO 25010 specifically in software functionality, usability, and security to determine if it is ready for live deployment. The study utilizes the Research and Development model as its research design to achieve its purpose. The conceptual framework of the study utilized the used of Input-Process-Output model and the Agile Iterative model in the development. The result of the security testing and suggestions of the OWASP ZAP, cyber security was employed in the web application including Content Security Policy Header, HTTOnly Cookie flags, SameSite attribute, X-Content-Type-Options Header, and Anti-CSRF Token. With an overall mean of 4.41 in the result of Users Acceptance Testing, it implies that the system is a great help for the institution. The positive feedback received from evaluators confirmed that the development of the e201 files web application were successful. This study implies that utilizing the OWASP Zap is a great help in strengthening cybersecurity and ISO 25010 in the software quality assurance of web applications of educational institutions.