https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4145 2026-04-26T20:08:44Z https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4266 Title: Automated near real-time Cheque Clearing System with Digital Cheque Authors: Weerasinghe, A. Abstract: Cheque is the most demanded non-cash retail payment instrument in Sri Lanka, which is accounted for more than 90% of total non-cash retail payment transaction. Total value cheques cleared per day is gradually increasing and it has been surpassed more than 20billion per day. These volumes suggest the continual importance of cheques in Sri Lankan Economy. Various modes of digital payments are taking the space of this well mature payment mode due to its few weaknesses, such as time to realize a check, signature validation and logistics. To overcome such weaknesses, this research proposes a secure near real time cheque realization process based on blockchain technology. Ethereum platform has been chosen to demonstrate the proof of concept due to its ability to run the programming code of any decentralized application on blockchain technology. Signature validation of paper cheques are getting more and more difficult due to increasing cheque volumes. To properly validate the signatures, it is required to keep many factors to be accurate in cheque imaging. Signature forgery also is not easy to detect in this manual or semi-automatic process and leading many financial loses. To overcome these issues and instantly validate authenticity of cheques, digital signature and data encryption is used coming with blockchain technology. So entirely electronic based cheques, digital signature verification is instant and delivering cheques to the end recipient can have many different logistical modes. 2021-07-28T00:00:00Z https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4265 Title: Extending File Permission Granularity for Linux Authors: Wanigasinghe, P. M. Abstract: In the recent years, threats against intellectual properties, unauthorized information disclosures and data breaches have been raised high. Most of the above attacks initiated within the network, with the help of internal employees. Whether intentionally malicious or unintentionally hazardous, are by far the greater problem in online security. Therefore for system administrators and authorize parties, another level of security definition is needed to secure important files and documents while continuing business as it was. In Linux, traditional file system uses READ, WRITE and EXECUTE permissions over individual users and groups in order to control the file access and file operations. Although this has been the de-facto methodology, it has some disadvantages when it comes to highly secure and sensitive environments like banks and military. There is no straight forward way of defining permissions in operational aspect. The goal of this project is to increase the granularity levels of defining permissions of the Linux file system going beyond traditional read, write and execute permissions. It consists of mainly two modules. In meta header module, authorized user can define what, who and how things are accessible related to files. He can define on what operations needs to restrict on what devices, locations and domains. The other module is responsible for handling the file operations and restrict according to the defined permissions. Evaluation carried out on security, performance and usability aspects. There may have slight performance impact but it’s negligible compared to the requirements of security. Further, this implementation can extends go beyond ext4 and apply into main kernel development. 2021-07-28T00:00:00Z https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4264 Title: HCE Solution For Offline Transactions Authors: Punchihewa, D.H.T. Abstract: Electronic smart card payment are widely used in transport payment systems these days. During last few years most of transport operators have started to introduce smart card payments. Most of the existing systems accept offline transactions. The key feature of smart card payments is storing data in the smart card. Smart card has embedded integrated circuits which can be used to store data securely and to communicate with terminal application via Near-field communication(NFC). The objective of this research is to create a proof of concept(PoC) to replace existing smart cards by Android HCE application. HCE assumes that any data stored on a android device is vulnerable and therefore restricts the storage of sensitive data to host or “cloud” databases. Usually HCE provides more simple and less secure way for payment transaction. So this research focus on increasing the security of the stored data in mobile application and make payments without connecting to back-end services. I have selected Desfire EV1 as smart card to emulate on android device. Desfire EV1 card has complex file structure and security features with compare to other available smart cards. Server system is used to increase the security of emulated virtual card in Android device. HSM simulator is used to store keys and perform crypto operations. We present full design and implementation of the system architecture and security architecture involving with the project. We also provide a comparison of implemented system with the existing smart card solution. Android base terminal was used to simulate this bus ticketing terminal application. This terminal application uses Desfire AV2 SAM to store master keys of the virtual card and perform crypto operations to prepare PICC APDUs. 2021-07-28T00:00:00Z https://dl.ucsc.cmb.ac.lk/jspui/handle/123456789/4263 Title: Wi-Fi Tomographic intruder detection security alarm system Authors: Muller, D.P. Abstract: Tomographic Motion Detection (TMD) is a technology that provides complete coverage of an area using radio waves and detects any movement with the ability to be completely hidden from view as it is not a line of sight technology, using signals that penetrate through objects. The monitored area is surrounded by nodes that communicates with each other and detects movements by the disturbance to the Receive Signal Strength (RSS) of each node measured by a processing and controlling unit. 2.4 GHz signals are heavily attenuated by anything containing water such as the human body. Hence using Wi-Fi (Wireless Fidelity) signals which operate in the 2.4 GHz band, it is possible to identify the significant disturbances in the Receive Signal Strength Indicator (RSSI) and identify human movements without carrying additional transmitting devices. Today, protecting our valuable assets, confidential data, human life in a better way and avoiding unauthorised physical access to devices, in the field of Information Security, are demands in need. This is an eye opener for the use of TMD when compared with the limitations with commonly used Passive Infrared (PIR) motion detectors. This research is an attempt to use non-overlapping Wi-Fi channels, simultaneously to generate better TMD for human detection within the Wi-Fi frequency range. Initially, as the required hardware to capture the RSSI, ESP 8266, embedded Wi-Fi modules controlled by Arduino, connected to a computer via Universal Serial Bus (USB) were setup. The Wi-Fi modules can be configured for the required Wi-Fi channel, transmitting or receiving mode and capable of more configurations. Arduino, Integrated Development Environment (IDE) which is open source and MS Comm Control a freeware control are used for developing, uploading the developed programs into the Wi-Fi module microcontrollers and reading RSSI using a computer. Thereafter, identified the significant difference in the RSSI measured for humans, compared with other objects. For the analysis, data from RSSI readings were gathered in several tests placing objects and humans in between the Wi-Fi transmitters and receivers in a straight line obstructing the signals from the transmitters and graphs were generated. Finally, determined how accurately a human movement can be detected, using a probability based approach. Monitored the Wi-Fi, RSSI, with statistical calculations, detected an intruder entering into the defined boundaries and triggered an alarm, constructing a security alarm. 2021-07-28T00:00:00Z